CVE-2025-24969 – iTop Information Disclosure

CVE ID : CVE-2025-24969

Published : May 14, 2025, 4:15 p.m. | 39 minutes ago

Description : iTop is an web based IT Service Management tool. Prior to version 3.2.1, a portal user can see any other contacts picture by changing the picture ID in the URL. Version 3.2.1 contains a patch for the issue.

Severity: 5.0 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…