← volver
CVE-2026-33641

Glances Vulnerable to Command Injection via Dynamic Configuration Values

CVSS 7.8 HIGHEPSS 0.9%CWE-78
Vexday Risk Score
41Atención
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
CVSS 7.8EPSS 0.9%KEV nãoPoC públicaPatch
Ciclo de vida
02 abr 2026Publicada en NVD
13 may 2026PoC pública
Recomendación: Planificar corrección próxima — ya existe PoC pública.
Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.3, Glances supports dynamic configuration values in which substrings enclosed in backticks are executed as system commands during configuration parsing. This behavior occurs in Config.get_value() and is implemented without validation or restriction of the executed commands. If an attacker can modify or influence configuration files, arbitrary commands will execute automatically with the privileges of the Glances process during startup or configuration reload. In deployments where Glances runs with elevated privileges (e.g., as a system service), this may lead to privilege escalation. This issue has been patched in version 4.5.3.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Productos afectados
nicolargo · glances
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/52559no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/nicolargo/glances/commit/358d76a225fc21a9f95d2c4d7e46fafe64a644c6https://github.com/nicolargo/glances/releases/tag/v4.5.3https://github.com/nicolargo/glances/security/advisories/GHSA-qhj7-v7h7-q4c7