DEBIAN-CVE-2021-23418
- Source
- https://security-tracker.debian.org/tracker/CVE-2021-23418
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2021-23418.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2021-23418
- Upstream
- Published
- 2021-07-29T18:15:07Z
- Modified
- 2025-09-30T03:54:39Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The package glances before 3.2.1 are vulnerable to XML External Entity (XXE) Injection via the use of Fault to parse untrusted XML data, which is known to be vulnerable to XML attacks.
- References
Affected packages
Debian:12 / glances
Package
- Name
- glances
- Purl
- pkg:deb/debian/glances?arch=source
Debian:13 / glances
Package
- Name
- glances
- Purl
- pkg:deb/debian/glances?arch=source
Debian:14 / glances
Package
- Name
- glances
- Purl
- pkg:deb/debian/glances?arch=source