CVE-2018-15645

Improper access control in message routing in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier allows remote authenticated users to create arbitrary records via crafted payloads, which may allow privilege escalation.
References
Link Resource
https://github.com/odoo/odoo/issues/63705 Patch Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:odoo:odoo:*:*:*:*:community:*:*:*
cpe:2.3:a:odoo:odoo:*:*:*:*:enterprise:*:*:*

Information

Published : 2020-12-22 05:15

Updated : 2020-12-23 03:23


NVD link : CVE-2018-15645

Mitre link : CVE-2018-15645

Products Affected
No products.
CWE