CVE-2021-47765 MEDIUM

CVE-2021-47765: AbsoluteTelnet 11.24 - 'Username' Denial of Service (PoC)

Vendor Celestialsoftware

Product AbsoluteTelnet

Weakness CWE-787

Published January 15, 2026

Last update January 26, 2026

View on NVD All CVEs

CVSS base score

6.7/10

Attack vector Local

Attack complexity Low

Privileges required None

User interaction —

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by manipulating username and error report fields. Attackers can trigger the crash by inserting 1000 characters into the username or email address fields, causing the application to become unresponsive.

Key dates

02Disclosure timeline

January 15, 2026 CVE published

January 26, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-47765 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/787.html

Related vulnerabilities

CVE-2021-47765: AbsoluteTelnet 11.24 - 'Username' Denial of Service (PoC)

01Description

02Disclosure timeline

03References

04Related CVE