CVE-2018-15632

Publication date

2020-12-22 16:25:31

Family

odoo

State

PUBLISHED

Description

Improper input validation in database creation logic in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier, allows remote attackers to initialize an empty database on which they can connect with default credentials.