Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Glances: Insecure Pickle Deserialization in Version Cache Leads to Arbitrary Code Execution
Vulnerability Description
Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, glances/outdated.py uses pickle.load() to read a version-check cache file stored at a predictable, world-accessible path (~/.cache/glances/glances-version.db or $XDG_CACHE_HOME/glances/glances-version.db). No integrity check, signature verification, or format validation is performed before deserialization. An attacker with write access to that path — through any of several realistic local or container-level scenarios — can plant a malicious pickle file and achieve arbitrary code execution as the OS user running Glances the next time it starts with version checking enabled (the default). This vulnerability is fixed in 4.5.5.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
可信数据的反序列化
Vulnerability Title
Nicolas Hennion Glances 反序列化注入漏洞
Vulnerability Description
Nicolas Hennion Glances是Nicolas Hennion个人开发者的一款系统监控工具。 Nicolas Hennion Glances 4.5.5之前版本存在反序列化注入漏洞,该漏洞源于outdated.py使用pickle.load()从可预测且全局可访问的路径读取版本检查缓存文件,且未进行完整性检查、签名验证或格式验证,可能导致具有写入权限的攻击者放置恶意pickle文件,在下次启动时实现任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A