Lucene search
OdooVULNRICHMENT:CVE-2021-44547HistoryApr 25, 2023 - 6:33 p.m.
CVE-2021-44547
2023-04-2518:33:42
CWE-267
odoo
github.com
3
odoo community 15.0
odoo enterprise 15.0
sandboxing
code execution
privilege escalation
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N
AI Score
7.1
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
A sandboxing issue in Odoo Community 15.0 and Odoo Enterprise 15.0 allows authenticated administrators to executed arbitrary code, leading to privilege escalation.
CNA Affected
[
{
"vendor": "Odoo",
"product": "Odoo Community",
"versions": [
{
"status": "affected",
"version": "15.0"
}
],
"defaultStatus": "unaffected"
},
{
"vendor": "Odoo",
"product": "Odoo Enterprise",
"versions": [
{
"status": "affected",
"version": "15.0"
}
],
"defaultStatus": "unaffected"
}
]References
Related
prion
prion
Privilege escalation
2023-04-25 19:15:00
osv
osv
BIT-odoo-2021-44547
2024-03-06 10:59:43
cvelist
cvelist
CVE-2021-44547
2023-04-25 18:33:42
nvd
nvd
CVE-2021-44547
2023-04-25 19:15:09
ubuntucve
ubuntucve
CVE-2021-44547
2023-04-25 00:00:00
debiancve
debiancve
CVE-2021-44547
2023-04-25 19:15:09
cve
cve
CVE-2021-44547
2023-04-25 19:15:09
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N
AI Score
7.1
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2021-44547