Vulnerabilities > CVE-2018-15631 - Unspecified vulnerability in Odoo
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Improper access control in the Discuss App of Odoo Community 12.0 and earlier, and Odoo Enterprise 12.0 and earlier allows remote authenticated attackers to e-mail themselves arbitrary files from the database, via a crafted RPC request.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 8 |