Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2024-36259

Опубликовано: 25 фев. 2025
Источник: ubuntu
Приоритет: medium
CVSS3: 7.5

Описание

Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information via an oracle-based (yes/no response) crafted attack.

РелизСтатусПримечание
devel

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

esm-infra/focal

DNE

focal

DNE

jammy

needs-triage

noble

needs-triage

oracular

ignored

end of life, was needs-triage
plucky

ignored

end of life, was needs-triage
questing

needs-triage

Показывать по

Ссылки на источники

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2024-36259

CVSS3: 7.5
nvd
12 месяцев назад

Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information via an oracle-based (yes/no response) crafted attack.

debian логотип

CVE-2024-36259

CVSS3: 7.5
debian
12 месяцев назад

Improper access control in mail module of Odoo Community 17.0 and Odoo ...

github логотип

GHSA-x3g3-3qwm-w95x

CVSS3: 7.5
github
12 месяцев назад

Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information via an oracle-based (yes/no response) crafted attack.

7.5 High

CVSS3