Security Advisory

CVE-2021-23203

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-25 18:35:38

Last updated 2025-02-03 17:14:04

Assigner odoo

State PUBLISHED

Description

Improper access control in reporting engine of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to download PDF reports for arbitrary documents, via crafted requests.

← Browse all CVEs View on cve.org ↗