Glances vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-53925Highglances: Glances has arbitrary file write and command execution via `secure_popen` redirection and chaining…CVE-2026-46611Mediumglances: Glances: XML-RPC Server Missing Host Header Validation Enables DNS Rebinding AttackCVE-2026-46608Highglances: Glances: XML-RPC Multi-Origin CORS Configuration Silently Falls Back to Wildcard (Incomplete Fix…CVE-2026-46607Highglances: Glances has Insecure Pickle Deserialization in its Version Cache that Leads to Arbitrary Code…CVE-2026-46606Highglances: Glances is Vulnerable to Command Injection via KVM/QEMU VM Domain Names in…CVE-2026-35588Mediumglances: Glances has CQL Injection in its Cassandra Export Module via Unsanitized Config ValuesCVE-2026-35587Highglances: Glances has SSRF in IP Plugin via public_api leading to credential leakageCVE-2026-34839HighGlances: Glances: Cross-Origin Information Disclosure via Unauthenticated REST API (/api/4) due to…CVE-2026-33641HighGlances: Glances Vulnerable to Command Injection via Dynamic Configuration ValuesCVE-2026-33533HighGlances: Glances Vulnerable to Cross-Origin System Information Disclosure via XML-RPC Server CORS WildcardCVE-2026-32634HighGlances: Glances Central Browser Autodiscovery Leaks Reusable Credentials to Zeroconf-Spoofed ServersCVE-2026-32633CriticalGlances: Glances's Browser API Exposes Reusable Downstream Credentials via `/api/4/serverslist`CVE-2026-32632MediumGlances: Glances's REST/WebUI Lacks Host Validation and Remains Exposed to DNS RebindingCVE-2026-32611HighGlances: Glances has a SQL Injection in DuckDB Export via Unparameterized DDL StatementsCVE-2026-32610HighGlances: Glances's Default CORS Configuration Allows Cross-Origin Credential TheftCVE-2026-32609HighGlances: Glances has Incomplete Secrets Redaction: /api/v4/args Endpoint Leaks Password Hash and SNMP…CVE-2026-32608HighGlances: Glances has a Command Injection via Process Names in Action Command TemplatesCVE-2026-32596HighGlances: Glances exposes the REST API without authenticationCVE-2026-30930HighGlances: Glances has SQL Injection via Process Names in TimescaleDB ExportCVE-2026-30928Highglances: Glances Exposes Unauthenticated Configuration SecretsCVE-2021-23418MediumGlances: XML External Entity Reference in Glances

Stop the waste.
Protect your environment with Kodem.