cpe:/a:odoo:odoo:9.0::~~community~~~ cpe:/a:odoo:odoo:9.0::~~enterprise~~~ cpe:/a:odoo:odoo:10.0::~~community~~~ cpe:/a:odoo:odoo:10.0::~~enterprise~~~ cpe:/a:odoo:odoo:11.0::~~community~~~ cpe:/a:odoo:odoo:11.0::~~enterprise~~~ CVE-2018-14862 2019-07-03T15:15:10.580-04:00 2019-07-05T14:23:28.953-04:00 5.5 NETWORK LOW SINGLE_INSTANCE NONE PARTIAL PARTIAL http://nvd.nist.gov 2019-07-05T13:22:08.893-04:00 CONFIRM https://github.com/odoo/odoo/issues/32504 Incorrect access control in the mail templating system in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows authenticated internal users to delete arbitrary menuitems via a crafted RPC request.