Security Advisory

CVE-2021-23178

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-25 18:33:37

Last updated 2024-08-03 19:05:53

Assigner odoo

State PUBLISHED

Description

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows attackers to validate online payments with a tokenized payment method that belongs to another user, causing the victims payment method to be charged instead.

← Browse all CVEs View on cve.org ↗