A sandboxing issue in Odoo Community 15.0 and Odoo Enterprise 15.0 allows authenticated administrators to executed arbitrary code, leading to privilege escalation.
A particular privilege, role, capability, or right can be used to perform unsafe actions that were not intended, even when it is assigned to the correct entity.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Odoo | Odoo | * | 15.0 (including) |
| Odoo | Ubuntu | kinetic | * |
| Odoo | Ubuntu | lunar | * |
| Odoo | Ubuntu | mantic | * |
| Odoo | Ubuntu | trusty | * |
| Odoo | Ubuntu | xenial | * |