CVE-2018-15632

Summary

Improper input validation in database creation logic in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier, allows remote attackers to initialize an empty database on which they can connect with default credentials.

Affected Software

VendorProductVersion RangeStatus
OdooOdoo Communityunspecified <= 11.0affected
OdooOdoo Enterpriseunspecified <= 11.0affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References