A critical Telnet vulnerability with a CVSS rating of 9.8 enables attackers to take full control of affected systems before authentication even kicks in, security researchers at Dream Security have warned. Tracked as CVE-2026-32746, the vulnerability is in GNU inetutils telnetd, is a widely deployed implementation of the Telnet remote access protocol found across legacy infrastructure, networking equipment, and embedded systems. The protocol has largely been replaced by SSH (Secure Shell) in modern environments since the early 2000s. In systems that still run the vulnerable Telnet service, the newly disclosed flaw allows an out-of-bounds write stemming from a buffer overflow issue, which can...