Releases1
Last Release
Package Description

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
= 17.07.5 HIGH

Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information via an oracle-based (yes/no response) crafted attack.

= 15.08.1 HIGH

Improper access control in the auth_oauth module of Odoo Community 15.0 and Odoo Enterprise 15.0 allows an internal user to export the OAuth tokens of other users.