CVE-2026-32596 - Glances - Information Disclosure

Overview

Glances < 4.5.2 contains an information disclosure vulnerability caused by the web server running without authentication by default, letting remote attackers access sensitive system information including credentials, exploit requires no special privileges.

Severity & Score

Severity: High

CVSS Score: 7.5

EPSS Score: 6.8%(Probability of exploitation in next 30 days)

Impact

Remote attackers can access sensitive system information including credentials, risking data exposure and system compromise.

Mitigation

Update to version 4.5.2 or later.

References

Social Media Activity(2 posts)

TheHackerWire

@thehackerwire

Mar 18, 2026

🟠 CVE-2026-32596 - High (7.5) Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.2, Glances web server runs without authentication by default when started with `glances -w`, exposing REST API with sensitive system information including process comman... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32596/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

TheHackerWire

@thehackerwire

Mar 18, 2026

🟠 CVE-2026-32596 - High (7.5) Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.2, Glances web server runs without authentication by default when started with `glances -w`, exposing REST API with sensitive system information including process comman... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32596/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

CVE-2026-32596 - Vulnerability Analysis

Overview

Severity & Score

Impact

Mitigation

References

Social Media Activity(2 posts)

Related Resources

Details

CWE

CVSS Metrics

EPSS Score