Improper access control in message routing in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier allows remote authenticated users to create arbitrary records via crafted payloads, which may allow privilege escalation.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/odoo/odoo/issues/63705 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: odoo
Published: 2020-12-22T16:25:35
Updated: 2024-08-05T10:01:54.575Z
Reserved: 2018-08-21T00:00:00
Link: CVE-2018-15645
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-12-22T17:15:13.033
Modified: 2024-11-21T03:51:12.613
Link: CVE-2018-15645
Redhat
No data.