CVE-2024-36259 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information vi…
High CVSS: 7.5

CVE-2024-36259

Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information via an oracle-based (yes/no response) crafted attack.
Vendor
Odoo
Product
Odoo
CWE
CWE-284
Yayın Tarihi
2025-02-25 19:15:14
Güncelleme
2025-02-28 14:42:55
Source Identifier
security@odoo.com
KEV Date Added
-

Kategoriler

CWE-284 Odoo HIGH Odoo 2025

Referanslar

https://github.com/odoo/odoo/issues/199330