CVE-2012-1842

Quantum Scalar I500 Firmware < i7.0.2 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in checkQKMProg.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with firmware before A20-00 (590G.GS00100), allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (7)

[US Government Resource] http://www.kb.cert.org/vuls/id/913483

[US Government Resource] http://www.kb.cert.org/vuls/id/MAPG-8NNKN8

[US Government Resource] http://www.kb.cert.org/vuls/id/MAPG-8NVRPY

[Third Party Advisory, VDB Entry] http://osvdb.org/80225

[Third Party Advisory, VDB Entry] http://osvdb.org/80239

[Third Party Advisory] http://secunia.com/advisories/48403

[Third Party Advisory] http://secunia.com/advisories/48453

Scores

EPSS 0.0178

EPSS Percentile 82.5%

Classification

CWE

CWE-79

Status published

Affected Products (23)

quantum/scalar_i500_firmware < i7.0.2

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500_firmware

quantum/scalar_i500

quantum/scalar_i500

... and 8 more

Timeline

Published Mar 22, 2012

Tracked Since Feb 18, 2026