This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
This update to qbittorrent 3.3.11 fixes the security issues and bugs.
The following vulnerabilities were fixed :
- CVE-2017-6504: WebUI did not set the X-Frame-Options
- CVE-2017-6503: WebUI did not escape many values,
allowing for XSS (bsc#1028072)
See also :
Update the affected qbittorrent packages.
Risk factor :
Medium / CVSS Base Score : 4.3