CVE-2021-23176
- Source
- https://cve.org/CVERecord?id=CVE-2021-23176
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-23176.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-23176
- Aliases
- Downstream
- Withdrawn
- 2026-01-27T04:16:58.316146Z
- Published
- 2023-04-25T19:15:09Z
- Modified
- 2026-01-27T04:16:58.316146Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets.
- References