CyberSec.Space Logo
Back to CVE Browser

CVE-2011-1738

HIGH
7.2
CVSS Severity Score
EPSS Score0.1310%
EPSS Percentile4.24th
PublishedMay 13, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

HP Palm webOS 1.4.5 and 1.4.5.1 does not properly restrict Plug-in Development Kit (PDK) applications, which allows local users to gain privileges by leveraging unintended filesystem write access.

Affected Platforms (CPE)

πŸ’»
Hp

Palm Webos

= 1.4.5
πŸ’»
Hp

Palm Webos

= 1.4.5.1

References & Advisories

πŸ”— http://www.securityfocus.com/bid/47788
πŸ”— http://www.securitytracker.com/id?1025514
πŸ”— https://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02822174
πŸ”— http://www.securityfocus.com/bid/47788
πŸ”— http://www.securitytracker.com/id?1025514
πŸ”— https://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02822174

Related Vulnerabilities

CVE-2009-507110.0

Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has unknown impact and attack vectors related to an "included contact tem...

CVE-2010-40259.3

Unspecified vulnerability in Doc Viewer in HP Palm webOS 1.4.1 allows remote attackers to execute arbitrary code via a crafted doc...

CVE-2009-50977.1

Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScri...

CVE-2010-40266.2

Unspecified vulnerability in the service API in HP Palm webOS 1.4.1 allows local users to gain privileges by leveraging the abilit...