Incorrect access control in the database manager component in Odoo Community 10.0 and 11.0 and Odoo Enterprise 10.0 and 11.0 allows a remote attacker to restore a database dump without knowing the super-admin password. An arbitrary password succeeds.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2019-06-28T17:35:21
Updated: 2024-08-05T09:46:23.891Z
Reserved: 2018-08-03T00:00:00
Link: CVE-2018-14885

No data.

Status : Modified
Published: 2019-06-28T18:15:10.520
Modified: 2024-11-21T03:50:00.760
Link: CVE-2018-14885

No data.