CVE-2019-11780

Summary

Improper access control in the computed fields system of the framework of Odoo Community 13.0 and Odoo Enterprise 13.0 allows remote authenticated attackers to access sensitive information via crafted RPC requests, which could lead to privilege escalation.

Affected Software

VendorProductVersion RangeStatus
OdooOdoo Community13.0affected
OdooOdoo Enterprise13.0affected

Weaknesses

  • CWE-284: CWE-284 Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References