Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-23176

Опубликовано: 25 апр. 2023
Источник: debian
EPSS Низкий

Описание

Improper access control in reporting engine of l10n_fr_fec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
odoofixed16.0.0+dfsg.1-1package

Примечания

  • https://github.com/odoo/odoo/issues/107682

  • 14.0 patch at https://github.com/odoo/odoo/commit/f166400c7ddd1bc571fcad52d18d2371f2c3fd87

EPSS

Процентиль: 64%
0.00462
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2021-23176

CVSS3: 6.5
ubuntu
почти 3 года назад

Improper access control in reporting engine of l10n_fr_fec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets.

nvd логотип

CVE-2021-23176

CVSS3: 6.5
nvd
почти 3 года назад

Improper access control in reporting engine of l10n_fr_fec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets.

github логотип

GHSA-942r-qfrq-7vvc

CVSS3: 6.5
github
почти 3 года назад

Improper access control in reporting engine of l10n_fr_fec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets.

EPSS

Процентиль: 64%
0.00462
Низкий