High severity7.5NVD Advisory· Published Apr 17, 2026· Updated Jun 2, 2026
CVE-2025-15623
CVE-2025-15623
Description
Exposure of Private Personal Information to an Unauthorized Actor, : Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Sparx Systems Pty Ltd. Sparx Pro Cloud Server.
Unauthenticated user can retrieve database password in plaintext in certain situations
Affected products
2cpe:2.3:a:sparxsystems:pro_cloud_server:6.0.163:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sparxsystems:pro_cloud_server:6.0.163:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
1- sparxsystems.com/products/procloudserver/6.1/history.htmlnvdRelease Notes
News mentions
0No linked articles in our index yet.