CVE-2018-14861

Improper data access control in Odoo Community 10.0 and 11.0 and Odoo Enterprise 10.0 and 11.0 allows authenticated users to perform a CSV export of the secure hashed passwords of other users.
References
Link Resource
https://github.com/odoo/odoo/issues/32506 Patch Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:odoo:odoo:10.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:odoo:odoo:10.0:*:*:*:community:*:*:*
cpe:2.3:a:odoo:odoo:11.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:odoo:odoo:11.0:*:*:*:community:*:*:*

Information

Published : 2019-07-03 07:15

Updated : 2020-08-24 05:37


NVD link : CVE-2018-14861

Mitre link : CVE-2018-14861

Products Affected
No products.
CWE