CVE-2018-15632

Published December 22nd, 2020

View on NVD ↗

CVSS v3

9.1

CRITICAL

CVSS v2

8.5

HIGH

Affected

PROJECT

Description

Improper input validation in database creation logic in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier, allows remote attackers to initialize an empty database on which they can connect with default credentials.

odoo/odoo

Odoo. Open Source Apps To Grow Your Business.

GitHub

52.4K