utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.
https://appgateresearch.blogspot.com/2020/02/bravestarr-fedora-31-netkit-telnetd_28.html
https://lists.debian.org/debian-lts-announce/2020/05/msg00012.html
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-telnetd-EFJrEzPx
https://lists.debian.org/debian-lts-announce/2020/08/msg00038.html
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.arista.com/en/support/advisories-notices/security-advisories/10702-security-advisory-48
Source: MITRE
Published: 2020-03-06
Updated: 2021-11-30
Type: CWE-120
Base Score: 10
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 10
Severity: HIGH
Base Score: 9.8
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 3.9
Severity: CRITICAL