Vulnerabilities > HP > Palm Webos > 1.4.5.1

DATE CVE VULNERABILITY TITLE RISK
2011-05-13 CVE-2011-1738 Permissions, Privileges, and Access Controls vulnerability in HP Palm Webos 1.4.5/1.4.5.1
HP Palm webOS 1.4.5 and 1.4.5.1 does not properly restrict Plug-in Development Kit (PDK) applications, which allows local users to gain privileges by leveraging unintended filesystem write access.
local
low complexity
hp CWE-264
7.2
7.2
2011-05-13 CVE-2011-1737 Cross-Site Scripting vulnerability in HP Palm Webos 1.4.5/1.4.5.1
Multiple cross-site scripting (XSS) vulnerabilities in the Email application in HP Palm webOS 1.4.5 and 1.4.5.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
hp CWE-79
4.3
4.3