4 matches found
CVE-2018-14859
Incorrect access control in the password reset component in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows authenticated users to reset the password of other users by being the first party to use the secure token...
CVE-2018-14859
Incorrect access control in the password reset component in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows authenticated users to reset the password of other users by being the first party to use the secure token...
CVE-2018-14859
Incorrect access control in the password reset component in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows authenticated users to reset the password of other users by being the first party to use the secure token...
CVE-2018-14859
CVE-2018-14859 affects Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier. The root cause is incorrect access control in the password reset component, permitting an authenticated user to reset another user’s password by being the first to use the secure token. Documented impact:...