Vulnerabilities > CVE-2020-29396 - Unspecified vulnerability in Odoo 11.0/12.0/13.0

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
odoo

Summary

A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0, when running with Python 3.6 or later, allows remote authenticated users to execute arbitrary code, leading to privilege escalation.

Vulnerable Configurations

Part Description Count
Application
Odoo
6
Application
Python
1