Which versions of Glances are affected by CVE-2026-30930?

CVE-2026-30930 is a SQL injection vulnerability in Glances TimescaleDB export module that allows local attackers to execute arbitrary SQL commands against monitoring databases through malicious…. A patch is available.

How to fix or mitigate CVE-2026-30930?

Within 24 hours: Identify all systems running Glances with TimescaleDB export enabled and confirm current versions. Within 7 days: Test and deploy Glances version 4.5.1 or later in non-production environments. Within 30 days: Complete production rollout of patched version to all affected instances; verify TimescaleDB export functionality post-patch.

Glances CVE-2026-30930

Q: What is the CVSS score of CVE-2026-30930?

CVE-2026-30930 has a CVSS 4.0 base score of 7.3 (High). CVSS vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

HIGH

SQL Injection (CWE-89)

2026-03-10 security-advisories@github.com

GHSA-x46r-mf5g-xpr6

SQLi Glances

7.3

CVSS 4.0 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

7.3 HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

SUSE

9.8 CRITICAL

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Analysis Updated

Apr 29, 2026 - 01:37 vuln.today

v2 (cvss_changed)

Re-analysis Queued

Apr 29, 2026 - 01:11 vuln.today

cvss_changed

Severity Changed

Apr 29, 2026 - 01:11 NVD

CRITICAL HIGH

CVSS changed

Apr 29, 2026 - 01:11 NVD

9.8 (CRITICAL) 7.3 (HIGH)

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

CVE Published

Mar 10, 2026 - 18:18 nvd

CRITICAL 9.8

DescriptionGitHub Advisory

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.1, The TimescaleDB export module constructs SQL queries using string concatenation with unsanitized system monitoring data. The normalize() method wraps string values in single quotes but does not escape embedded single quotes, making SQL injection trivial via attacker-controlled data such as process names, filesystem mount points, network interface names, or container names. This vulnerability is fixed in 4.5.1.

AnalysisAI

SQL injection in Glances TimescaleDB export module allows local attackers to execute arbitrary SQL commands against the monitoring database. The vulnerability stems from unsafe string concatenation when constructing queries with system monitoring data (process names, mount points, network interfaces, container names). …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Gain local system access

Delivery

Create process/container with SQL injection payload in name

Exploit

Glances monitoring cycle collects malicious name

Execution

TimescaleDB export constructs vulnerable SQL query

Persist

Arbitrary SQL executes against monitoring database

Impact

Exfiltrate or manipulate time-series data

Access

Gain local system access

Delivery

Create process/container with SQL injection payload in name

Exploit

Glances monitoring cycle collects malicious name

Execution

TimescaleDB export constructs vulnerable SQL query

Persist

Arbitrary SQL executes against monitoring database

Impact

Exfiltrate or manipulate time-series data

Vulnerability AssessmentAI

Exploitation	TimescaleDB export module must be explicitly configured and enabled in Glances configuration (non-default setting in most installations). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	Real-world risk is MODERATE despite the 7.3 CVSS score. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	A local attacker with access to create processes or Docker containers launches a process named "malicious' OR 1=1; DROP TABLE metrics; --" on the monitored system. Glances' monitoring cycle collects this process name and passes it to the TimescaleDB export module. …
Remediation	Upgrade to Glances version 4.5.1 or later, which implements proper SQL parameterization in the TimescaleDB export module per commit 39161f0d6fd723d83f534b48f24cdca722573336 (https://github.com/nicolargo/glances/commit/39161f0d6fd723d83f534b48f24cdca722573336). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all systems running Glances with TimescaleDB export enabled and confirm current versions. …

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Critical

CVE-2026-30930 vulnerability details – vuln.today

Back

Glances CVE-2026-30930

Severity by source

CVSS VectorGitHub Advisory

Lifecycle Timeline

DescriptionGitHub Advisory

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Vendor StatusVendor

SUSE

Share

External POC / Exploit Code