Security Advisory
CVE-2025-24021
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
iTop is an web based IT Service Management tool. Prior to versions 2.7.12, 3.1.3, and 3.2.1, anyone with an account having portal access can set value to object fields when theyre not supposed to. Versions 2.7.12, 3.1.3, and 3.2.1 contain a fix for the issue.