Unrated severityNVD Advisory· Published Mar 22, 2012· Updated Jun 16, 2026
CVE-2012-1843
CVE-2012-1843
Description
Cross-site request forgery (CSRF) vulnerability in saveRestore.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with firmware before A20-00 (590G.GS00100), allows remote attackers to hijack the authentication of users for requests that execute Linux commands via the fileName parameter, related to a "command-injection vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
24cpe:2.3:a:dell:powervault_ml6000_firmware:585g.gs003:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:dell:powervault_ml6000_firmware:585g.gs003:*:*:*:*:*:*:*
- cpe:2.3:h:dell:powervault_ml6000:32u:*:*:*:*:*:*:*
- cpe:2.3:h:dell:powervault_ml6000:41u:*:*:*:*:*:*:*
- cpe:2.3:h:dell:powervault_ml6010:5u:*:*:*:*:*:*:*
- cpe:2.3:h:dell:powervault_ml6030:23u:*:*:*:*:*:*:*
cpe:2.3:a:quantum:scalar_i500_firmware:*:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:quantum:scalar_i500_firmware:*:*:*:*:*:*:*:*range: <=i7.0.2
- cpe:2.3:a:quantum:scalar_i500_firmware:i2:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i3:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i3.1:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i4:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i5:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i5.1:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i6:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i6.1:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i7:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:i7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:sp4:*:*:*:*:*:*:*
- cpe:2.3:a:quantum:scalar_i500_firmware:sp4.2:*:*:*:*:*:*:*
- cpe:2.3:h:quantum:scalar_i500:14u:*:*:*:*:*:*:*
- cpe:2.3:h:quantum:scalar_i500:23u:*:*:*:*:*:*:*
- cpe:2.3:h:quantum:scalar_i500:5u:*:*:*:*:*:*:*
- (no CPE)range: < i7.0.3
- cpe:2.3:h:dell:powervault_ml6020:14u:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
7- www.kb.cert.org/vuls/id/913483nvdUS Government Resource
- www.kb.cert.org/vuls/id/MAPG-8NNKN8nvdUS Government Resource
- www.kb.cert.org/vuls/id/MAPG-8NVRPYnvdUS Government Resource
- osvdb.org/80227nvd
- secunia.com/advisories/48403nvd
- secunia.com/advisories/48453nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/74161nvd
News mentions
0No linked articles in our index yet.