Releases124
Frequency4 days 7 hours
Last Release
Downloads51.4M
Stars1.51K
Odoo (formerly known as OpenERP) is a suite of open-source business apps.

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
= 17.07.5 HIGH

Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information via an oracle-based (yes/no response) crafted attack.

= 15.08.1 HIGH

Improper access control in the auth_oauth module of Odoo Community 15.0 and Odoo Enterprise 15.0 allows an internal user to export the OAuth tokens of other users.