CVE-2025-15624

UNKNOWN 0.0

Plaintext Storage of a Password in Sparx Pro Cloud Server.

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Plaintext Storage of a Password vulnerability in Sparx Systems Pty Ltd. Sparx Pro Cloud Server. In a setup where OpenID is used as the primary method of authentication to authenticate to Sparx EA, Pro Cloud Server creates local passwords to the users and stores them in plaintext.

CWE	CWE-256
Vendor	sparx systems pty ltd.
Product	sparx pro cloud server
Published	Apr 17, 2026
Last Updated	Apr 17, 2026

Stay Ahead of the Next One

Get instant alerts for sparx systems pty ltd. sparx pro cloud server

Be the first to know when new unknown vulnerabilities affecting sparx systems pty ltd. sparx pro cloud server are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Sparx Systems Pty Ltd. / Sparx Pro Cloud Server

6.0.163

References

NVD ↗ CVE.org ↗ EPSS Data ↗

sparxsystems.com: https://sparxsystems.com/products/procloudserver/6.1/history.html

Credits

Pasi Orovuo, Solita Oy Henri Hämäläinen, Solita Oy Samu Ahvenainen, Solita Oy