CVE-2021-23418 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Xml external entity injection |
| Description | The package glances before 3.2.1 is vulnerable to XML External Entity (XXE) Injection via the use of Fault to parse untrusted XML data, which is known to be vulnerable to XML attacks. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2242 | glances | 3.2.0-1 | 3.2.1-1 | Medium | Fixed |
| References |
|---|
https://snyk.io/vuln/SNYK-PYTHON-GLANCES-1311807 https://github.com/nicolargo/glances/issues/1025 https://github.com/nicolargo/glances/commit/9d6051be4a42f692392049fdbfc85d5dfa458b32 |