CVE-2025-69727
Deferred Deferred - Pending Action
Incorrect Access Control in INDEX-EDUCATION PRONOTE Allows Unauthorized Profile Image Access

Publication date: 2026-03-16

Last updated on: 2026-05-05

Assigner: MITRE

Description
An Incorrect Access Control vulnerability exists in INDEX-EDUCATION PRONOTE prior to 2025.2.8. The affected components (index.js and composeUrlImgPhotoIndividu) allow the construction of direct URLs to user profile images based solely on predictable identifiers such as user IDs and names. Due to missing authorization checks and lack of rate-limiting when generating or accessing these URLs, an unauthenticated or unauthorized actor may retrieve profile pictures of users by crafting requests with guessed or known identifiers.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-16
Last Modified
2026-05-05
Generated
2026-06-16
AI Q&A
2026-03-16
EPSS Evaluated
2026-06-14
NVD
CVE-2025-69727
EUVD
EUVD-2025-208763
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
index-education pronote to 2025.2.8 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-639 The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.
CWE-284 The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-69727 is an Incorrect Access Control vulnerability in INDEX-EDUCATION PRONOTE versions prior to 2025.2.8. The issue lies in the way the software constructs direct URLs to user profile images using predictable identifiers like user IDs and names.

Because there are no proper authorization checks or rate-limiting mechanisms, an unauthenticated or unauthorized attacker can guess or know these identifiers and retrieve profile pictures by crafting requests to these URLs.

Impact Analysis

This vulnerability allows unauthorized individuals to access user profile images without authentication. This can lead to privacy violations as sensitive user information (profile pictures) can be accessed and potentially misused.

Additionally, the lack of rate-limiting means attackers can perform mass retrieval of profile images, increasing the scale of the privacy breach.

Compliance Impact

I don't know

Detection Guidance

This vulnerability can be detected by attempting to access user profile images through crafted URLs based on predictable user identifiers such as user IDs and sanitized usernames.

A practical approach is to iterate over a list of known or guessed user IDs and usernames, replacing whitespace with underscores, and then constructing URLs to profile images using the pattern described in the vulnerability.

For example, you can use command-line tools like curl or wget to send HTTP requests to these constructed URLs and check if the profile images are accessible without authentication.

  • Use a script or command to generate URLs like: https://demo.index-education.net/pronote/<path> where <path> is built from user IDs and sanitized usernames.
  • Example curl command to test access: curl -I https://demo.index-education.net/pronote/path_to_profile_image
  • Automate requests over a range of user IDs and usernames to detect unauthorized access to profile images.
Mitigation Strategies

Immediate mitigation steps include applying the official update to INDEX-EDUCATION PRONOTE version 2025.2.8 or later, where this vulnerability has been fixed.

Until the update can be applied, restrict access to the affected components by implementing proper authorization checks and rate-limiting on the server side to prevent unauthorized and mass retrieval of profile images.

Additionally, monitor access logs for unusual patterns of requests targeting user profile images and block suspicious IP addresses if necessary.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-69727. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart