CVE-2018-14863

EPSS 0.35% · P57 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-14863

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Incorrect access control in the RPC framework in Odoo Community 8.0 through 11.0 and Odoo Enterprise 9.0 through 11.0 allows authenticated users to call private functions via RPC.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Odoo 访问控制错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Odoo是比利时Odoo公司的一套企业资源计划（ERP）和客户关系管理（CRM）系统。该系统采用Python语言开发，PostgreSQL作为数据库，并包括销售管理、库存管理、财务管理等模块。 Odoo 8.0版本至11.0版本（社区版）和9.0版本至11.0版本（企业版）中的RPC框架存在访问控制错误漏洞。该漏洞源于网络系统或产品未正确限制来自未授权角色的资源访问。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-14863

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-14863

请登录查看更多情报信息。

https://github.com/odoo/odoo/issues/32508x_refsource_CONFIRM
https://nvd.nist.gov/vuln/detail/CVE-2018-14863

Same Patch Batch · n/a · 2019-07-03 · 74 CVEs total

CVE-2017-18346		CMS Web-Gooroo SQL注入漏洞
CVE-2018-11425		Moxa OnCell G3470A-LTE 缓冲区错误漏洞
CVE-2018-10986		Open-Xchange Guard 跨站请求伪造漏洞
CVE-2017-9327		Cloudera Manager 授权问题漏洞
CVE-2017-9326		Cloudera Manager 信任管理问题漏洞
CVE-2017-9325		Cloudera Manager 授权问题漏洞
CVE-2018-15811		DNN 加密问题漏洞
CVE-2017-6900		RIELLO UPS NetMan 信任管理问题漏洞
CVE-2017-6216		novaksolutions/infusionsoft-php-sdk 跨站脚本漏洞
CVE-2018-11686		Devaldi FlexPaper 输入验证错误漏洞
CVE-2019-13186		MiniCMS 跨站脚本漏洞
CVE-2018-15812		DNN 安全特征问题漏洞
CVE-2017-17972		Archon 跨站脚本漏洞
CVE-2018-18325		DNN 加密问题漏洞
CVE-2018-18326		DNN 安全特征问题漏洞
CVE-2018-12250		Elite Graphix Elite CMS Pro SQL注入漏洞
CVE-2018-12715		DIGISOL SYSTEMS DG-HR3400 跨站脚本漏洞
CVE-2019-12570		WordPress Server Status by Hostname/IP插件SQL注入漏洞
CVE-2019-7165		DOSBox 缓冲区错误漏洞
CVE-2018-14866		Odoo 权限许可和访问控制问题漏洞

Showing top 20 of 74 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-14863

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-14863

I. Basic Information for CVE-2018-14863

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-14863

III. Intelligence Information for CVE-2018-14863

Same Patch Batch · n/a · 2019-07-03 · 74 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-14863

Leave a comment