|
196501
|
7.5 |
HIGH
Network
|
odoo
|
odoo
|
Improper access control in reporting engine of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to download PDF reports for arbitrary documents, via cr…
|
NVD-CWE-Other
|
CVE-2021-23203
|
2024-11-21 14:51 |
2023-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196502
|
8.7 |
HIGH
Network
|
odoo
|
odoo
|
A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to access and modify database contents of other tenants, in a multi-tena…
|
NVD-CWE-noinfo
|
CVE-2021-23186
|
2024-11-21 14:51 |
2023-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196503
|
7.5 |
HIGH
Network
|
odoo
|
odoo
|
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows attackers to validate online payments with a tokenized payment method that belongs to another us…
|
NVD-CWE-noinfo
|
CVE-2021-23178
|
2024-11-21 14:51 |
2023-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196504
|
6.5 |
MEDIUM
Network
|
odoo
|
odoo
|
Improper access control in reporting engine of l10n_fr_fec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting infor…
|
NVD-CWE-noinfo
|
CVE-2021-23176
|
2024-11-21 14:51 |
2023-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196505
|
8.7 |
HIGH
Network
|
odoo
|
odoo
|
A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to read and write local files on the server.
|
NVD-CWE-noinfo
|
CVE-2021-23166
|
2024-11-21 14:51 |
2023-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196506
|
5.5 |
MEDIUM
Local
|
sox_project
|
sox
|
A floating point exception (divide-by-zero) issue was discovered in SoX in functon read_samples() of voc.c file. An attacker with a crafted file, could cause an application to crash.
|
-
|
CVE-2021-23210
|
2024-11-21 14:51 |
2022-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196507
|
5.5 |
MEDIUM
Local
|
sox_project
|
sox
|
A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function startread() in hcom.c file. The vulnerability is exploitable with a crafted hcomn file, that could cause an applicati…
|
-
|
CVE-2021-23172
|
2024-11-21 14:51 |
2022-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196508
|
5.5 |
MEDIUM
Local
|
sox_project
|
sox
|
A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsx_read_w_buf() in formats_i.c file. The vulnerability is exploitable with a crafted file, that could cause an appli…
|
-
|
CVE-2021-23159
|
2024-11-21 14:51 |
2022-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196509
|
7.8 |
HIGH
Local
|
libarchive
fedoraproject
redhat
debian
|
libarchive
fedora
enterprise_linux
enterprise_linux_for_power_little_endian
enterprise_linux_for_ibm_z_systems
enterprise_linux_server_for_power_little_endian_update_services_for_sap_s…
|
An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of the link. An attacker may provide a malicious archive to a victim user…
|
-
|
CVE-2021-23177
|
2024-11-21 14:51 |
2022-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196510
|
7.8 |
HIGH
Local
|
intel
|
killer_wi-fi_6e_ax1690_firmware
killer_wi-fi_6e_ax1675_firmware
proset_wi-fi_6e_ax210_firmware
wi-fi_6e_ax211_firmware
wi-fi_6e_ax411_firmware
|
Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-665
Improper Initialization
|
CVE-2021-23223
|
2024-11-21 14:51 |
2022-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
