CVE-2025-15623

UNKNOWN 0.0

Sparx Pro Cloud Server reveals sensitive information to an unauthenticated user

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Exposure of Private Personal Information to an Unauthorized Actor, : Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Sparx Systems Pty Ltd. Sparx Pro Cloud Server. Unauthenticated user can retrieve database password in plaintext in certain situations

CWE	CWE-359 CWE-497
Vendor	sparx systems pty ltd.
Product	sparx pro cloud server
Published	Apr 17, 2026
Last Updated	Apr 17, 2026

Stay Ahead of the Next One

Get instant alerts for sparx systems pty ltd. sparx pro cloud server

Be the first to know when new unknown vulnerabilities affecting sparx systems pty ltd. sparx pro cloud server are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Sparx Systems Pty Ltd. / Sparx Pro Cloud Server

6.0.163

References

NVD ↗ CVE.org ↗ EPSS Data ↗

sparxsystems.com: https://sparxsystems.com/products/procloudserver/6.1/history.html

Credits

Pasi Orovuo, Solita Oy Henri Hämäläinen, Solita Oy Samu Ahvenainen, Solita Oy