CVE-2021-23176 Information

Description

Improper access control in reporting engine of l10n_fr_fec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets.

Reference

https://github.com/odoo/odoo/issues/107682