NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2025-15623

Summary	Exposure of Private Personal Information to an Unauthorized Actor, : Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Sparx Systems Pty Ltd. Sparx Pro Cloud Server. Unauthenticated user can retrieve database password in plaintext in certain situations
Publication Date	April 17, 2026, 6:16 p.m.
Registration Date	April 18, 2026, 4:10 a.m.
Last Update	April 18, 2026, 12:13 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://sparxsystems.com/products/procloudserver/6.1/history.html	db4dfee8-a97e-4877-bfae-eba6d14a2166

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-497	認可されていない制御領域への重要情報の漏えい	https://cwe.mitre.org/data/definitions/497.html
2	CWE-497	認可されていない制御領域への重要情報の漏えい	https://cwe.mitre.org/data/definitions/497.html
3	CWE-359	認可されていないアクターへの個人情報の漏えい	https://cwe.mitre.org/data/definitions/359.html