glances · threatengine.sh

CVE-2026-35588

< 4.5.4

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, the Cassandra export module (`glances/exp

6.3MEDIUM

CVE-2026-35587

< 4.5.4

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, a Server-Side Request Forgery (SSRF) vuln

8.8HIGH

CVE-2026-34839

< 4.5.4

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, the Glances web server exposes a REST API

6.5MEDIUM

CVE-2026-33641

< 4.5.3

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.3, Glances supports dynamic configuration va

7.8HIGH

CVE-2026-33533

< 4.5.3

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.3, the Glances XML-RPC server (activated wit

6.5MEDIUM

CVE-2026-32634

< 4.5.2

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, in Central Browser mode, Glances stores b

8.1HIGH

CVE-2026-32633

< 4.5.2

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, in Central Browser mode, the `/api/4/serv

9.1CRITICAL

CVE-2026-32632

< 4.5.2

Glances is an open-source system cross-platform monitoring tool. Glances recently added DNS rebinding protection for the MCP endpo

5.9MEDIUM

CVE-2026-32611

< 4.5.2

Glances is an open-source system cross-platform monitoring tool. The GHSA-x46r fix (commit 39161f0) addressed SQL injection in the

7.0HIGH

CVE-2026-32610

< 4.5.2

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, the Glances REST API web server ships wit

8.1HIGH

CVE-2026-32609

< 4.5.2

Glances is an open-source system cross-platform monitoring tool. The GHSA-gh4x fix (commit 5d3de60) addressed unauthenticated conf

7.5HIGH

CVE-2026-32608

< 4.5.2

Glances is an open-source system cross-platform monitoring tool. The Glances action system allows administrators to configure shel

7.0HIGH

CVE-2026-32596

< 4.5.2

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.2, Glances web server runs without authentication by

7.5HIGH

CVE-2026-30930

< 4.5.1

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.1, The TimescaleDB export module constructs SQL quer

9.8CRITICAL

CVE-2026-30928

< 4.5.1

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.1, the /api/4/config REST API endpoint returns the e

7.5HIGH

CVE-2021-23418

< 3.2.1

The package glances before 3.2.1 are vulnerable to XML External Entity (XXE) Injection via the use of Fault to parse untrusted XML

6.3MEDIUM

nicolargo glances