A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0, when running with Python 3.6 or later, allows remote authenticated users to execute arbitrary code, leading to privilege escalation.
References
Link | Resource |
---|---|
https://github.com/odoo/odoo/issues/63712 | Patch Third Party Advisory |
https://www.oracle.com/security-alerts/cpujul2022.html | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: odoo
Published: 2020-12-22T16:25:39
Updated: 2022-07-25T16:17:33
Reserved: 2020-11-30T00:00:00
Link: CVE-2020-29396
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-12-22T17:15:13.550
Modified: 2023-02-02T22:21:50.217
Link: CVE-2020-29396
JSON object: View
Redhat Information
No data.