Known Vulnerabilities for products from Odoo

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Odoo".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2025-30620 Not Provided 2025-03-24 2026-04-01
CVE-2024-56299 Not Provided 2025-01-07 2026-04-01
CVE-2021-26947 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 6.1 - MEDIUM 2023-04-25 2023-05-05
CVE-2021-26263 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 6.1 - MEDIUM 2023-04-25 2023-05-05
CVE-2021-23203 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 7.5 - HIGH 2023-04-25 2023-05-05
CVE-2021-23186 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 8.7 - HIGH 2023-04-25 2023-05-05
CVE-2021-23178 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 7.5 - HIGH 2023-04-25 2023-05-05
CVE-2021-23176 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 6.5 - MEDIUM 2023-04-25 2023-05-05
CVE-2021-23166 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 8.7 - HIGH 2023-04-25 2023-05-05
CVE-2020-29396 A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0, when running with Python 3.6 or... 8.8 - HIGH 2020-12-22 2023-02-02
CVE-2019-11786 Improper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier, allows remote authenticated ... 4.3 - MEDIUM 2020-12-22 2021-11-02
CVE-2019-11785 Improper access control in mail module (followers) in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier, a... 4.3 - MEDIUM 2020-12-22 2021-10-28
CVE-2019-11784 Improper access control in mail module (notifications) in Odoo Community 14.0 and earlier and Odoo Enterprise 14.0 and earlie... 6.5 - MEDIUM 2020-12-22 2021-10-28
CVE-2019-11783 Improper access control in mail module (channel partners) in Odoo Community 14.0 and earlier and Odoo Enterprise 14.0 and ear... 6.5 - MEDIUM 2020-12-22 2021-10-28
CVE-2019-11782 Improper access control in Odoo Community 14.0 and earlier and Odoo Enterprise 14.0 and earlier, allows remote authenticated ... 6.5 - MEDIUM 2020-12-22 2021-11-02
CVE-2019-11781 Improper input validation in portal component in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier, allows... 8.8 - HIGH 2020-12-22 2020-12-23
CVE-2019-11780 Improper access control in the computed fields system of the framework of Odoo Community 13.0 and Odoo Enterprise 13.0 allows... 8.1 - HIGH 2019-12-19 2021-11-02
CVE-2018-15645 Improper access control in message routing in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier allows rem... 6.5 - MEDIUM 2020-12-22 2020-12-23
CVE-2018-15641 Cross-site scripting (XSS) issue in web module in Odoo Community 11.0 through 14.0 and Odoo Enterprise 11.0 through 14.0, all... 5.4 - MEDIUM 2020-12-22 2020-12-22
CVE-2018-15640 Improper access control in the Helpdesk App of Odoo Enterprise 10.0 through 12.0 allows remote authenticated attackers to obt... 8.8 - HIGH 2019-04-09 2020-09-18
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Odoo

Type Vendor Product Version
ApplicationOdooOdoo-