Known Vulnerabilities for products from Odoo
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Odoo".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-30620 json | Not Provided | 2025-03-24 | 2026-04-01 | |
| CVE-2024-56299 json | Not Provided | 2025-01-07 | 2026-04-01 | |
| CVE-2021-45111 json | Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated u... | 8.1 - HIGH | 2023-04-25 | 2023-05-05 |
| CVE-2021-45071 json | Cross-site scripting (XSS) issue Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier, allows remote attacker... | 6.1 - MEDIUM | 2023-04-25 | 2023-05-05 |
| CVE-2021-44775 json | Cross-site scripting (XSS) issue in Website app of Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier, allo... | 6.1 - MEDIUM | 2023-04-25 | 2023-05-05 |
| CVE-2021-44547 json | A sandboxing issue in Odoo Community 15.0 and Odoo Enterprise 15.0 allows authenticated administrators to executed arbitrary ... | 9.1 - CRITICAL | 2023-04-25 | 2023-05-03 |
| CVE-2021-44476 json | A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrator... | 6.8 - MEDIUM | 2023-04-25 | 2023-05-05 |
| CVE-2021-44465 json | Improper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier allows authenticated attacker... | 4.3 - MEDIUM | 2023-04-25 | 2023-05-03 |
| CVE-2021-44461 json | Cross-site scripting (XSS) issue in Accounting app of Odoo Enterprise 13.0 through 15.0, allows remote attackers who are able... | 6.1 - MEDIUM | 2023-04-25 | 2023-05-02 |
| CVE-2021-44460 json | Improper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier allows users with deactivated... | 6.5 - MEDIUM | 2023-04-25 | 2023-05-02 |
| CVE-2021-26947 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2023-04-25 | 2023-05-05 |
| CVE-2021-26263 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2023-04-25 | 2023-05-05 |
| CVE-2021-23203 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2023-04-25 | 2023-05-05 |
| CVE-2021-23186 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.7 - HIGH | 2023-04-25 | 2023-05-05 |
| CVE-2021-23178 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2023-04-25 | 2023-05-05 |
| CVE-2021-23176 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2023-04-25 | 2023-05-05 |
| CVE-2021-23166 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.7 - HIGH | 2023-04-25 | 2023-05-05 |
| CVE-2020-29396 json | A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0, when running with Python 3.6 or... | 8.8 - HIGH | 2020-12-22 | 2023-02-02 |
| CVE-2019-11786 json | Improper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier, allows remote authenticated ... | 4.3 - MEDIUM | 2020-12-22 | 2021-11-02 |
| CVE-2019-11785 json | Improper access control in mail module (followers) in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier, a... | 4.3 - MEDIUM | 2020-12-22 | 2021-10-28 |
Known software with vulnerabilities from Odoo
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Odoo | Odoo | - |