CVE-2021-23203

Published: 2023-04-25T19:15Z

Last Modified: 2025-02-03T18:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Improper access control in reporting engine of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to download PDF reports for arbitrary documents, via crafted requests. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt