CVE-2021-23166

Опубликовано: 25 апр. 2023

Источник: debian

EPSS Низкий

Описание

A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to read and write local files on the server.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
odoo	fixed	16.0.0+dfsg.1-1		package

Примечания

https://github.com/odoo/odoo/issues/107687
14.0 patch at https://github.com/odoo/odoo/commit/1f1e03ff29f711dd26cfbcadc60b7d03fdb59ed7

EPSS

Процентиль: 62%

0.00422

Низкий

Связанные уязвимости

CVE-2021-23166

CVSS3: 8.7

ubuntu

почти 3 года назад

A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to read and write local files on the server.

CVE-2021-23166

CVSS3: 8.7

nvd

почти 3 года назад

A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to read and write local files on the server.

GHSA-7pm2-436m-jff6

CVSS3: 8.7

github

почти 3 года назад

A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to read and write local files on the server.

EPSS

Процентиль: 62%

0.00422

Низкий