CVE-2018-14885

2019-06-28T18:15:00
ID CVE-2018-14885
Type cve
Reporter cve@mitre.org
Modified 2019-07-05T13:36:00

Description

Incorrect access control in the database manager component in Odoo Community 10.0 and 11.0 and Odoo Enterprise 10.0 and 11.0 allows a remote attacker to restore a database dump without knowing the super-admin password. An arbitrary password succeeds.