Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-10803

Опубликовано: 04 июл. 2017
Источник: debian
EPSS Низкий

Описание

In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, insecure handling of anonymization data in the Database Anonymization module allows remote authenticated privileged users to execute arbitrary Python code, because unpickle is used.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
odoonot-affectedpackage

Примечания

  • https://github.com/odoo/odoo/issues/17898

EPSS

Процентиль: 81%
0.01551
Низкий

Связанные уязвимости

nvd логотип

CVE-2017-10803

CVSS3: 6.5
nvd
больше 8 лет назад

In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, insecure handling of anonymization data in the Database Anonymization module allows remote authenticated privileged users to execute arbitrary Python code, because unpickle is used.

github логотип

GHSA-wm9r-8vrh-fgpv

CVSS3: 6.5
github
больше 3 лет назад

In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, insecure handling of anonymization data in the Database Anonymization module allows remote authenticated privileged users to execute arbitrary Python code, because unpickle is used.

EPSS

Процентиль: 81%
0.01551
Низкий