Lucene search
+L

15 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:10 a.m.1 views

SUSE CVE-2019-13640

In qBittorrent before 4.1.7, the function Application::runExternalProgram located in app/application.cpp allows command injection via shell metacharacters in the torrent name parameter or current tracker parameter, as demonstrated by remote command execution via a crafted name within an RSS feed...

9.8CVSS9.5AI score0.07913EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2019-0379)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.5AI score0.07913EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2020/04/03 12:0 a.m.33 views

Debian DSA-4650-1 : qbittorrent - security update

Miguel Onoro reported that qbittorrent, a bittorrent client with a Qt5 GUI user interface, allows command injection via shell metacharacters in the torrent name parameter or current tracker parameter, which could result in remote command execution via a crafted name within an RSS feed if...

9.8CVSS8.4AI score0.07913EPSS
Exploits1References6
Debian
Debian
added 2020/04/02 8:49 p.m.112 views

[SECURITY] [DSA 4650-1] qbittorrent security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4650-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 02, 2020 https://www.debian.org/security/faq -...

9.8CVSS9.7AI score0.07913EPSS
Exploits1
Debian
Debian
added 2020/04/02 8:49 p.m.63 views

[SECURITY] [DSA 4650-1] qbittorrent security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4650-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 02, 2020 https://www.debian.org/security/faq -...

7.5CVSS2.4AI score0.07913EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/01/09 12:0 a.m.17 views

openSUSE: Security Advisory for qbittorrent (openSUSE-SU-2019:2005-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.07913EPSS
Exploits1References2
Mageia
Mageia
added 2019/12/13 6:25 p.m.30 views

Updated qbittorrent packages fix security vulnerability

In qBittorrent before 4.1.7, the function Application::runExternalProgram located in app/application.cpp allows command injection via shell metacharacters in the torrent name parameter or current tracker parameter, as demonstrated by remote command execution via a crafted name within an RSS feed...

9.8CVSS6.2AI score0.07913EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/09/19 12:0 a.m.25 views

Fedora 29 : 1:qbittorrent (2019-ce6c6de3cc)

Update to 4.1.7 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc. T...

9.8CVSS8.2AI score0.07913EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/09/19 12:0 a.m.28 views

Fedora 30 : 1:qbittorrent (2019-2cb551904b)

Update to 4.1.7 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc. T...

9.8CVSS8.2AI score0.07913EPSS
Exploits1References2
OSV
OSV
added 2019/08/30 4:21 a.m.1 views

OPENSUSE-SU-2019:2024-1 Security update for qbittorrent

This update for qbittorrent fixes the following issues: - CVE-2019-13640: avoid command injection boo1141967 This update was imported from the openSUSE:Leap:15.1:Update update project...

9.8CVSS9.8AI score0.07913EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
added 2019/08/30 12:0 a.m.75 views

Security update for qbittorrent (moderate)

openSUSE Security Update: Security update for qbittorrent Announcement ID: openSUSE-SU-2019:2024-1 Rating: moderate References: 1141967 Cross-References: CVE-2019-13640 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This upda...

9.8CVSS8.2AI score0.07913EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2019/08/26 12:0 a.m.40 views

openSUSE Security Update : qbittorrent (openSUSE-2019-2005)

This update for qbittorrent fixes the following issues : - CVE-2019-13640: avoid command injection boo1141967 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2019-2005. The text description of this plugi...

9.8CVSS10AI score0.07913EPSS
Exploits1References2
OSV
OSV
added 2019/08/24 4:19 p.m.3 views

OPENSUSE-SU-2019:2005-1 Security update for qbittorrent

This update for qbittorrent fixes the following issues: - CVE-2019-13640: avoid command injection boo1141967...

9.8CVSS9.8AI score0.07913EPSS
Exploits1References3
CVE
CVE
added 2019/07/17 9:7 p.m.1456 views

CVE-2019-13640

CVE-2019-13640 affects qbittorrent prior to 4.1.7, where Application::runExternalProgram() in app/application.cpp allows command injection via shell metacharacters in torrent name or current tracker, enabling remote command execution. Multiple connected advisories confirm this is real, with Debia...

9.8CVSS9.4AI score0.07913EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2019/07/17 9:7 p.m.34 views

CVE-2019-13640

In qBittorrent before 4.1.7, the function Application::runExternalProgram located in app/application.cpp allows command injection via shell metacharacters in the torrent name parameter or current tracker parameter, as demonstrated by remote command execution via a crafted name within an RSS feed...

9.8CVSS9.7AI score0.07913EPSS
Exploits1
Rows per page
Query Builder