CVE-2018-14733

Name of the Vulnerable Software and Affected Versions Odoo versions 8.x through 11.x

Description The issue concerns a ReDoS (regular expression denial of service) vulnerability in the dbfilter from header module provided by the Odoo Community Association (OCA). This vulnerability affects Odoo under certain circumstances.

Recommendations For Odoo versions 8.x through 11.x, consider disabling the dbfilter from header module as a temporary workaround until a patch is available. Restrict access to potentially vulnerable modules to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.