Lucene search
K

5 matches found

UbuntuCve
UbuntuCve
added 2026/04/21 12:16 a.m.8 views

CVE-2026-35587

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, a Server-Side Request Forgery SSRF vulnerability exists in the Glances IP plugin due to improper validation of the publicapi configuration parameter. The value of publicapi is used directly in outbound HTTP...

8.8CVSS5.9AI score0.00396EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/10 6:18 p.m.4 views

CVE-2026-30928

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.1, the /api/4/config REST API endpoint returns the entire parsed Glances configuration file glances.conf via self.config.asdict with no filtering of sensitive values. The configuration file contains credentials for all...

8.7CVSS7.2AI score0.01657EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/10 6:18 p.m.4 views

CVE-2026-30930

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.1, The TimescaleDB export module constructs SQL queries using string concatenation with unsanitized system monitoring data. The normalize method wraps string values in single quotes but does not escape embedded single...

9.8CVSS5.9AI score0.00364EPSS
Exploits1References2
Fedora
Fedora
added 2022/10/28 11:16 a.m.36 views

[SECURITY] Fedora 36 Update: glances-3.3.0.1-2.fc36

Glances is a cross-platform monitoring tool which aims to present a large amount of monitoring information through a curses or Web based interface. The information dynamically adapts depending on the size of the user interface It can also work in client/server mode. Remote monitoring could be don...

7.5CVSS6.2AI score0.04658EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2022/04/14 12:0 a.m.4 views

The vulnerability of the Glances monitoring tool arises from improper restrictions on XML links to external objects. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Glances monitoring tool is related to incorrect restrictions on XML links to external objects. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures...

10CVSS7.8AI score0.01639EPSS
Exploits1References8Affected Software2
Rows per page
Query Builder