Browse all 5 CVE security advisories affecting Sparx Systems Pty Ltd.. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Sparx Systems Pty Ltd develops enterprise architecture software, primarily the Enterprise Architect tool for modeling, design, and documentation. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from input validation flaws and insecure default configurations. While no major public security incidents have been widely documented, the five CVEs on record highlight recurring issues in web interface components and integration points. The company typically addresses these through patch releases, though their security response timeline varies. Users should implement network segmentation and access controls to mitigate potential risks from unpatched vulnerabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-15625 | Unauthenticated execution of arbitrary SQL queries in Sparx Pro Cloud Server — Sparx Pro Cloud ServerCWE-89 | 9.8AI | CriticalAI | 2026-04-17 |
| CVE-2025-15624 | Plaintext Storage of a Password in Sparx Pro Cloud Server. — Sparx Pro Cloud ServerCWE-256 | 6.2AI | MediumAI | 2026-04-17 |
| CVE-2025-15623 | Sparx Pro Cloud Server reveals sensitive information to an unauthenticated user — Sparx Pro Cloud ServerCWE-359 | 7.5AI | HighAI | 2026-04-17 |
| CVE-2025-15622 | Sparx Enterprise Architect Client reveals plaintext OAuth2 client secret — Sparx Enterprise ArchitectCWE-522 | 6.5AI | MediumAI | 2026-04-17 |
| CVE-2025-15621 | Sparx Enterprise Architect Client does not verify the receiver of OAuth2 credentials during OpenID authentication — Sparx Enterprise ArchitectCWE-522 | 8.8AI | HighAI | 2026-04-16 |
This page lists every published CVE security advisory associated with Sparx Systems Pty Ltd.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.