11 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-30801
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to change t...
openSUSE 15 Security Update : libtorrent-rasterbar, qbittorrent (openSUSE-SU-2023:0391-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0391-1 advisory. - All versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to...
Security update for libtorrent-rasterbar, qbittorrent (moderate)
openSUSE Security Update: Security update for libtorrent-rasterbar, qbittorrent Announcement ID: openSUSE-SU-2023:0391-1 Rating: moderate References: 1217677 Cross-References: CVE-2023-30801 CVSS scores: CVE-2023-30801 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products:...
Fedora 39 : qbittorrent (2023-1bbfc445a2)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-1bbfc445a2 advisory. - Update Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issue but...
Fedora 38 : qbittorrent (2023-185f3e8ad7)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-185f3e8ad7 advisory. - Update Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issue but...
CVE-2023-30801
creationtimestamp| type| source ---|---|--- 2023-10-10 18:16:40+00:00| exploited| https://t.me/cibsecurity/71941 2026-06-19 12:46:47+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/acbd87d4-2cf7-443c-b844-85171fed11c0 2026-06-23 14:04:05+00:00| exploited|...
CVE-2023-30801
All versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to change the default credentials. As of 4.5.5, this issue has not been fixed. A remote attacker can use the default credentials to authenticate and...
CVE-2023-30801
All versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to change the default credentials. As of 4.5.5, this issue has not been fixed. A remote attacker can use the default credentials to authenticate and...
CVE-2023-30801 qBittorrent Web UI Default Credentials Lead to RCE
All versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to change the default credentials. As of 4.5.5, this issue has not been fixed. A remote attacker can use the default credentials to authenticate and...
CVE-2023-30801
CVE-2023-30801 affects qbittorrent up to version 4.5.5, where the web UI uses default credentials and admins are not forced to change them. A remote attacker could authenticate via the Web UI's external program feature and execute OS commands. Exploitation reports existed in the wild in March 202...
CVE-2023-30801
All versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to change the default credentials. As of 4.5.5, this issue has not been fixed. A remote attacker can use the default credentials to authenticate and...