Lucene search
OdooCVELIST:CVE-2021-44547HistoryApr 25, 2023 - 6:33 p.m.
CVE-2021-44547
2023-04-2518:33:42
CWE-267
odoo
www.cve.org
3
odoo
sandboxing
privilege escalation
cve-2021-44547
authenticated administrators
arbitrary code
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N
AI Score
9.3
Confidence
High
EPSS
0.001
Percentile
33.3%
A sandboxing issue in Odoo Community 15.0 and Odoo Enterprise 15.0 allows authenticated administrators to executed arbitrary code, leading to privilege escalation.
CNA Affected
[
{
"vendor": "Odoo",
"product": "Odoo Community",
"defaultStatus": "unaffected",
"versions": [
{
"version": "15.0",
"status": "affected"
}
]
},
{
"vendor": "Odoo",
"product": "Odoo Enterprise",
"defaultStatus": "unaffected",
"versions": [
{
"version": "15.0",
"status": "affected"
}
]
}
]References
Related
prion
prion
Privilege escalation
2023-04-25 19:15:00
osv
osv
BIT-odoo-2021-44547
2024-03-06 10:59:43
nvd
nvd
CVE-2021-44547
2023-04-25 19:15:09
ubuntucve
ubuntucve
CVE-2021-44547
2023-04-25 00:00:00
vulnrichment
vulnrichment
CVE-2021-44547
2023-04-25 18:33:42
debiancve
debiancve
CVE-2021-44547
2023-04-25 19:15:09
cve
cve
CVE-2021-44547
2023-04-25 19:15:09
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N
AI Score
9.3
Confidence
High
EPSS
0.001
Percentile
33.3%
Related for CVELIST:CVE-2021-44547