Skip to main content

Inetutils CVE-2026-28372

HIGH
Inclusion of Functionality from Untrusted Control Sphere (CWE-829)
2026-02-27 cve@mitre.org
Linux Privilege Escalation Inetutils
7.4
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.4 HIGH
AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Analysis Generated
Mar 12, 2026 - 21:55 vuln.today
PoC Detected
Mar 07, 2026 - 17:15 vuln.today
Public exploit code
Patch released
Mar 07, 2026 - 17:15 nvd
Patch available
CVE Published
Feb 27, 2026 - 06:18 nvd
HIGH 7.4

DescriptionCVE.org

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login(1) implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALS_DIRECTORY environment variable, and requires an unprivileged local user to create a login.noauth file.

AnalysisAI

Inetutils versions up to 2.7 is affected by inclusion of functionality from untrusted control sphere (CVSS 7.4).

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Local user creates login.noauth file
Exploit
Manipulate CREDENTIALS_DIRECTORY environment variable
Execution
Exploit systemd service credentials in login(1)
Impact
Escalate privileges via telnetd
Sign in to reveal

Vulnerability AssessmentAI

Exploitation GNU inetutils through version 2.7 with util-linux 2.40+ login(1) implementation supporting systemd service credentials; unprivileged local user access required; ability to create files in exploitable directory path; telnetd service must respect CREDENTIALS_DIRECTORY environment variable. Additional conditions and limiting factors are described in the full assessment.
Risk Assessment CVSS 7.4 (HIGH). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker could exploit this vulnerability to compromise the affected system.
Remediation A vendor patch is available — apply it immediately. Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Inventory all systems running Inetutils up to version 2.7 and assess exposure level. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-28372 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy