Lucene search

[email protected]CVE-2012-1844

HistoryMar 22, 2012 - 10:17 a.m.

CVE-2012-1844

2012-03-2210:17:11

CWE-255

[email protected]

web.nvd.nist.gov

quantum scalar

i500

tape library

dell ml6000

ibm ts3310

firmware

vulnerability

default passwords

remote access

nvd

cve-2012-1844

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.0%

JSON

The Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with firmware before A20-00 (590G.GS00100) and the IBM TS3310 tape library with firmware before R6C (606G.GS001), uses default passwords for unspecified user accounts, which makes it easier for remote attackers to obtain access via unknown vectors.

Affected configurations

NVD

Node

quantumscalar_i500_firmwareRange≤i7.0.2

quantumscalar_i500_firmwareMatchi2

quantumscalar_i500_firmwareMatchi3

quantumscalar_i500_firmwareMatchi3.1

quantumscalar_i500_firmwareMatchi4

quantumscalar_i500_firmwareMatchi5

quantumscalar_i500_firmwareMatchi5.1

quantumscalar_i500_firmwareMatchi6

quantumscalar_i500_firmwareMatchi6.1

quantumscalar_i500_firmwareMatchi7

quantumscalar_i500_firmwareMatchi7.0.1

quantumscalar_i500_firmwareMatchsp4

quantumscalar_i500_firmwareMatchsp4.2

AND

quantumscalar_i500Match5u

quantumscalar_i500Match14u

quantumscalar_i500Match23u

Node

dellpowervault_ml6000_firmwareMatch585g.gs003

AND

dellpowervault_ml6000Match32u

dellpowervault_ml6000Match41u

dellpowervault_ml6010Match5u

dellpowervault_ml6020Match14u

dellpowervault_ml6030Match23u

Node

ibmts3310_tape_library_firmwareRange≤605g.g002

AND

ibmts3310_tape_libraryMatch3573

ibmts3310_tape_libraryMatch3576

CPENameOperatorVersion
quantum:scalar_i500_firmwarequantum scalar i500 firmwarelei7.0.2
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi2
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi3
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi3.1
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi4
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi5
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi5.1
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi6
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi6.1
quantum:scalar_i500_firmwarequantum scalar i500 firmwareeqi7

CPE	Name	Operator	Version
quantum:scalar_i500_firmware	quantum scalar i500 firmware	le	i7.0.2
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i2
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i3
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i3.1
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i4
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i5
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i5.1
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i6
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i6.1
quantum:scalar_i500_firmware	quantum scalar i500 firmware	eq	i7