
CVE-2026-24061 ã¯ãCVSS 9.8ïŒCriticalïŒã«åé¡ãããé«ãªã¹ã¯ã®è匱æ§ã§ãããGNU Inetutils ã® telnetd ãµãŒãã¹ã«ãããŠçºçãããªã¢ãŒãèªèšŒãã€ãã¹ïŒAuthentication BypassïŒã®åé¡ã§ãã
æ¬è匱æ§ã¯ãtelnetd ã Telnet æ¥ç¶æã«æž¡ããã USER ç°å¢å€æ°ã®å€ãä¿¡é Œããæ€èšŒãè¡ããã«åŠçããèšèšã«èµ·å ããŠçºçããŸããæ»æè
ã¯ãã®æåãæªçšããããšã§ãèªèšŒããã»ã¹ãå®å
šã«åé¿ããroot æš©éãååŸããããšãå¯èœã§ãã
æ¬çš¿ã§ã¯ãCVE-2026-24061 ã®åäœåçãšå®éã®æªçšææ³ãããã« Criminal IP ã®ããŒã¿ãåºã«ããã€ã³ã¿ãŒãããäžã§ã®é²åºç¶æ³ã«ã€ããŠè§£èª¬ããŸãã
è匱æ§ã®æŠèŠãšæ ¹æ¬åå ã®åæ

<캡ì : USER ç°å¢å€æ°ã«èªèšŒãã€ãã¹çšãªãã·ã§ã³ãçŽæ¥æž¡ãããæ§é >
telnetd ã¯ããªã¢ãŒãã¯ã©ã€ã¢ã³ãã Telnet ã§æ¥ç¶ããéã«ãå éšçã« /bin/login ãåŒã³åºããŠãŠãŒã¶ãŒèªèšŒãå®è¡ããŸãããã®éçšã«ãããŠããã°ã€ã³ã«äœ¿çšããããŠãŒã¶ãŒåã¯ãç°å¢å€æ° USER ã®å€ãåºã«ããŠæž¡ãããŸãã
ãã® USER ã®å€ã¯ãç¹å¥ãªæ€èšŒåŠçãè¡ãããªããŸãŸããã®ãŸãŸ /bin/login ã®å®è¡åŒæ°ãšããŠæž¡ãããŸãã

åé¡ãšãªãã®ã¯ãUSER ã®å€ã«å¯ŸããŠãªãã·ã§ã³ã€ã³ãžã§ã¯ã·ã§ã³ïŒoption injectionïŒã鲿¢ããããã®æ€èšŒããžãã¯ãååšããªãç¹ã§ããæ»æè ã USER ç°å¢å€æ°ã«éåžžã®ãŠãŒã¶ãŒåã§ã¯ãªãã-f root ã®ãããªå€ãæå®ããå Žåããã®å€ã¯ãŠãŒã¶ãŒåã§ã¯ãªã /bin/login ã®å®è¡ãªãã·ã§ã³ãšããŠè§£éãããåŠçãããŸãã
æ ¹æ¬åå ïŒ/bin/login ã«ããã -f ãªãã·ã§ã³ã®èª€çš
/bin/login ãæäŸãã -f ãªãã·ã§ã³ã¯ã察象ãŠãŒã¶ãŒããã§ã«èªèšŒæžã¿ã§ãããšã¿ãªãããã¹ã¯ãŒãæ€èšŒãçç¥ããããã«èšèšãããæ©èœã§ããã€ãŸãã-f root ãæž¡ãããå Žåã/bin/login 㯠root ãŠãŒã¶ãŒãèªèšŒæžã¿ã®ç¶æ ãšããŠæ±ãããã¹ã¯ãŒã確èªãè¡ãããšãªããã°ã€ã³åŠçãå®äºããŸãã
telnetd ã¯ããããŠãŒã¶ãŒå ¥åã«ããäžæ£ãªæäœã§ã¯ãªããæ£èŠã®ãã°ã€ã³èŠæ±ãšããŠèªèããŠããŸãããã®çµæãroot æš©éã®ã·ã§ã«ããã®ãŸãŸæäŸããããšã«ãªããŸãã
è匱æ§ã®æªçšã·ããªãªããã³åœ±é¿
æ»æè ã¯ãTelnet æ¥ç¶æã«ä»¥äžã®ããã« USER ç°å¢å€æ°ãžçŽæ¥ãªãã·ã§ã³å€ãæ³šå ¥ããããšãã§ããŸãã

USER=â-f rootâ telnet -a 127.0.0.1 XXXX
ããã«ããããã¹ã¯ãŒãèªèšŒã®ããã»ã¹ãå®å šã«çç¥ãããæ»æè ã¯å³åº§ã« root ãŠãŒã¶ãŒãšããŠãã°ã€ã³ããroot æš©éã®ã·ã§ã«ãååŸããããšãå¯èœãšãªããŸãã

ãã®åŸãæ»æè 㯠/etc/passwd ãã¯ãããšããéèŠãªã·ã¹ãã ãã¡ã€ã«ãžå¶éãªãã¢ã¯ã»ã¹ã§ããããã«ãªããã·ã¹ãã ã¢ã«ãŠã³ãã®ä¹ã£åããããã¯ãã¢ã®èšçœ®ããããªãæ»ææ ç¹ã®ç¢ºä¿ãžãšçºå±ããå¯èœæ§ããããŸãã
圱é¿ç¯å²
- GNU Inetutils telnetd
- 1.9.3 †ããŒãžã§ã³ †2.7
äžèšããŒãžã§ã³ç¯å²ã䜿çšããŠããããã€å€éšãã Telnet æ¥ç¶ãå¯èœãªç¶æ ã«ããã·ã¹ãã ã¯ãå®è³ªçã«å®å šãªã·ã¹ãã ææ¡ã®ãªã¹ã¯ã«ãããããŠãããšãããŸãã
Criminal IP ãéããŠèŠ³æž¬ãããå®éã®é²åºç¶æ³
è匱æ§ã®å®éã®ãªã¹ã¯ã¯ãPoC ã®æç¡ãã®ãã®ã§ã¯ãªããåœè©²ãµãŒãã¹ãã€ã³ã¿ãŒãããäžã«ã©ã®çšåºŠé²åºããŠãããã«ãã£ãŠå·Šå³ãããŸãã
ãã®ç¹ã確èªãããããCriminal IP ã® ITè³ç£æ€çŽ¢ ã«ãããŠã以äžã®æ€çŽ¢ã¯ãšãªãé©çšããŸããã
Criminal IP æ€çŽ¢ã¯ãšãª: product:telnetd

2026幎2æ3æ¥æç¹ã§ã87,443 ä»¶ã®è³ç£ãæ€çŽ¢çµæãšããŠç¢ºèªãããŠããŸããããã¯ãTelnet ããŒã¹ã®ç®¡çã€ã³ã¿ãŒãã§ãŒã¹ãçŸåšãäžçåå°ã§å€éšãããã¯ãŒã¯ã«åºãé²åºããç¶æ ã§éçšãããŠããããšã瀺ããŠããŸãã

æ€çŽ¢ãããè³ç£ã®äžã€ã確èªãããšãåœè©²è³ç£ã§ã¯ Telnet ãµãŒãã¹ãå€éšã«çŽæ¥å ¬éãããŠããããã°ã€ã³ãããŒãéããŠè£œåããã³ãã³ããŒæ å ±ããã®ãŸãŸé²åºããŠããããšãåãããŸãããã®ãããæ»æè ã¯äºåæ¢çŽ¢ã®æ®µéã§ãåœè©²ãµãŒãã¹ãè匱ã§ãããã©ããã容æã«èå¥ããããšãå¯èœãšãªããŸãã
ãã®ãããªè³ç£ãè匱㪠telnetd ããŒãžã§ã³ã䜿çšããŠããå ŽåãCVE-2026-24061 ã¯å³åº§ã«æªçšå¯èœãªç¶æ ã«ãããšãããŸãã
察å¿ããã³æšå¥šäºé
- Telnet ãµãŒãã¹ã峿ã«ç¡å¹å
- ãããåŸãç¶ç¶å©çšããå Žå:
- telnetd ãææ°ããŒãžã§ã³ãžãããé©çš
- å€éšããã®ã¢ã¯ã»ã¹ã鮿(ãã¡ã€ã¢ãŠã©ãŒã« / ACL)
- SSH ãªã©ã®å®å šãªãããã³ã«ãžç§»è¡
- Criminal IP ã® ITè³ç£æ€çŽ¢ ãæŽ»çšãã
- å€éšã«é²åºããŠããè³ç£ãäºåã«ç¹æ€
- ã¬ã¬ã·ãŒãªç®¡çã€ã³ã¿ãŒãã§ãŒã¹ã®ç¹å®
FAQ
Q1. Telnet ãµãŒãã¹ãå éšå©çšã®ã¿ã«éå®ããŠããå Žåã§ãå±éºã§ããããã
å éšåãã®ãµãŒãã¹ã§ãã£ãŠããèšå®ãã¹ããã¡ã€ã¢ãŠã©ãŒã«ããªã·ãŒã®å€æŽããã¹ãç°å¢ã®èª€å ¬éãªã©ã«ãããå€éšããã¢ã¯ã»ã¹å¯èœãªç¶æ ã«ãªãå¯èœæ§ããããŸãããã®ãããäºåã®ç¹æ€ãå¿ èŠã§ããÂ
Q2. ããããé©çšããã ãã§ååã§ããããã
ãããé©çšã«å ããŠãå€éšãžã®é²åºæç¡ã®ç¢ºèªã䞊è¡ããŠè¡ããªããã°ãåæ§ã®ãªã¹ã¯ãç¹°ãè¿ãçºçããå¯èœæ§ããããŸããÂ
çµè«
CVE-2026-24061 ã¯åãªãå®è£
äžã®äžå
·åã§ã¯ãªããTelnet ã®ãããªã¬ã¬ã·ãŒç®¡çãµãŒãã¹ãå€éšã«é²åºããå ŽåãèªèšŒãã€ãã¹è匱æ§ãå³åº§ã«ã·ã¹ãã ææ¡ãžãšçŽçµãåŸãããšã瀺ãäºäŸã§ãã
ãã®ããã察å¿ã®èŠç¹ã¯ãããé©çšã®æç¡ã«ãšã©ãŸãããå€éšã«é²åºããŠããè³ç£ãå
è¡ããŠç¹å®ããã¬ã¬ã·ãŒãªç®¡çã€ã³ã¿ãŒãã§ãŒã¹ãé©åã«ç®¡çã»çµ±å¶ããããšã«ãããŸãã
ãªããé¢é£æ å ±ãšããŠClawdbotïŒMoltbotïŒèªåŸå AI ãšãŒãžã§ã³ãã®é²åºãªã¹ã¯ã«é¢ããã»ãã¥ãªãã£åæ èšäºãåèã«ããŠãã ããã
Criminal IPïŒsearch.criminalip.io/ja/register) ã«ç»é²ãããšãããã«è匱è³ç£ã®æ€ç¥ãéå§ã§ããŸããããã«ãäžèšãã¿ã³ãããã¢ããäŸé Œããã ãããšã§ããšã³ã¿ãŒãã©ã€ãºç°å¢ã«ãããŠå€éšã«é²åºããè³ç£ã察象ãšããCriminal IP ã®è åšã€ã³ããªãžã§ã³ã¹ïŒTIïŒåæãçŽæ¥ã確èªããã ããŸãã
ããŒã¿ãœãŒã¹ : Criminal IP (https://www.criminalip.io/ja), GitHub(https://github.com/h3athen/CVE-2026-24061)
é¢é£èšäº: https://www.criminalip.io/ja/knowledge-hub/blog/7898

