CVE-2010-4026

Unspecified vulnerability in the service API in HP Palm webOS 1.4.1 allows local users to gain privileges by leveraging the ability to perform certain service calls.

CVSS v2.0 6.2 MEDIUM

6.2^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:H/Au:N/C:C/I:C/A:C

Exploitability : 1.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://marc.info/?l=bugtraq&m=128820663424237&w=2	Vendor Advisory
http://marc.info/?l=bugtraq&m=128820663424237&w=2	Vendor Advisory
http://secunia.com/advisories/42023
http://www.securitytracker.com/id?1024647
http://marc.info/?l=bugtraq&m=128820663424237&w=2	Vendor Advisory
http://marc.info/?l=bugtraq&m=128820663424237&w=2	Vendor Advisory
http://secunia.com/advisories/42023
http://www.securitytracker.com/id?1024647

Configurations

Configuration 1 (hide)

cpe:2.3:o:hp:palm_webos:1.4.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-10-28 20:00

Updated : 2025-04-11 00:51

NVD link : CVE-2010-4026

Mitre link : CVE-2010-4026

CVE.ORG link : CVE-2010-4026

JSON object : View

Products Affected

hp

palm_webos

CWE

NVD-CWE-noinfo

{"id": "CVE-2010-4026", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "HIGH", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-10-28T20:00:03.200", "references": [{"url": "http://marc.info/?l=bugtraq&m=128820663424237&w=2", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}, {"url": "http://marc.info/?l=bugtraq&m=128820663424237&w=2", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}, {"url": "http://secunia.com/advisories/42023", "source": "hp-security-alert@hp.com"}, {"url": "http://www.securitytracker.com/id?1024647", "source": "hp-security-alert@hp.com"}, {"url": "http://marc.info/?l=bugtraq&m=128820663424237&w=2", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=128820663424237&w=2", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/42023", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1024647", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the service API in HP Palm webOS 1.4.1 allows local users to gain privileges by leveraging the ability to perform certain service calls."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el servicio API de HP Palm webOS v1.4.1 permite a los usuarios locales escalar privilegios aprovechando la capacidad de realizar ciertas llamadas al servicio."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:palm_webos:1.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83B6C36E-CA68-4419-BBD8-64742B099270"}], "operator": "OR"}]}], "sourceIdentifier": "hp-security-alert@hp.com"}