CVE-2019-11780

Published December 19th, 2019

View on NVD ↗

CVSS v3

8.1

HIGH

CVSS v2

5.5

MEDIUM

Affected

PROJECT

Description

Improper access control in the computed fields system of the framework of Odoo Community 13.0 and Odoo Enterprise 13.0 allows remote authenticated attackers to access sensitive information via crafted RPC requests, which could lead to privilege escalation.

odoo/odoo

Odoo. Open Source Apps To Grow Your Business.

GitHub

52.4K