QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-15623

Back to search

CVE-2025-15623

Published: Apr 17, 2026

Modified: Apr 17, 2026

PUBLISHED

Description

Exposure of Private Personal Information to an Unauthorized Actor, : Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Sparx Systems Pty Ltd. Sparx Pro Cloud Server. Unauthenticated user can retrieve database password in plaintext in certain situations

VendorProductVersions

Sparx Systems Pty Ltd.

Sparx Pro Cloud Server

affected
6.0.163

Weaknesses (CWE)

CWE-359
CWE-497

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now