Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-1842
HistoryMar 22, 2012 - 10:17 a.m.

CVE-2012-1842

2012-03-2210:17:11
CWE-79
[email protected]
web.nvd.nist.gov
22
cve-2012-1842
cross-site scripting
xss
quantum scalar i500
tape library
firmware vulnerability
dell ml6000
nvd

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON

Cross-site scripting (XSS) vulnerability in checkQKMProg.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with firmware before A20-00 (590G.GS00100), allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

NVD
Node
quantumscalar_i500_firmwareRangei7.0.2
OR
quantumscalar_i500_firmwareMatchi2
OR
quantumscalar_i500_firmwareMatchi3
OR
quantumscalar_i500_firmwareMatchi3.1
OR
quantumscalar_i500_firmwareMatchi4
OR
quantumscalar_i500_firmwareMatchi5
OR
quantumscalar_i500_firmwareMatchi5.1
OR
quantumscalar_i500_firmwareMatchi6
OR
quantumscalar_i500_firmwareMatchi6.1
OR
quantumscalar_i500_firmwareMatchi7
OR
quantumscalar_i500_firmwareMatchi7.0.1
OR
quantumscalar_i500_firmwareMatchsp4
OR
quantumscalar_i500_firmwareMatchsp4.2
AND
quantumscalar_i500Match5u
OR
quantumscalar_i500Match14u
OR
quantumscalar_i500Match23u
Node
dellpowervault_ml6000_firmwareMatch585g.gs003
AND
dellpowervault_ml6000Match32u
OR
dellpowervault_ml6000Match41u
OR
dellpowervault_ml6010Match5u
OR
dellpowervault_ml6020Match14u
OR
dellpowervault_ml6030Match23u

Related

prion 1
cvelist 1
nvd 1
openvas 2
cert 1
prion
prion
Cross site scripting
2012-03-22 10:17:00
cvelist
cvelist
CVE-2012-1842
2012-03-22 10:00:00
nvd
nvd
CVE-2012-1842
2012-03-22 10:17:11
openvas
openvas
Multiple Vendor Products Security Vulnerabilities
2012-04-11 00:00:00
Multiple Vendor Products Security Vulnerabilities
2012-04-11 00:00:00
cert
cert
Quantum Scalar i500, Dell ML6000 and IBM TS3310 tape libraries web interface and preconfigured password vulnerabilities
2012-03-19 00:00:00

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON
Related for CVE-2012-1842
prion1cvelist1nvd1openvas2cert1