Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description CLI curses-based monitoring tool
Version 3.3.0-1 [community]


Group Affected Fixed Severity Status Ticket
AVG-2242 3.2.0-1 3.2.1-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2021-23418 AVG-2242 Medium Yes Xml external entity injection
The package glances before 3.2.1 is vulnerable to XML External Entity (XXE) Injection via the use of Fault to parse untrusted XML data, which is known to be...