CVE-2025-15621 | Sparx Systems Sparx Enterprise Architect up to 16.1.1627/17.1.1713 OAuth2 Credential insufficiently protected credentials (EUVD-2025-209499)

Inserito da Angelo Barbosa | Apr 16, 2026 | CVE

A vulnerability identified as problematic has been detected in Sparx Systems Sparx Enterprise Architect up to 16.1.1627/17.1.1713. Affected by this issue is some unknown functionality of the component OAuth2 Credential Handler. This manipulation causes insufficiently protected credentials.

The identification of this vulnerability is CVE-2025-15621. The attack can only be executed locally. There is no exploit available.

You should upgrade the affected component.

CVE-2025-15621 | Sparx Systems Sparx Enterprise Architect up to 16.1.1627/17.1.1713 OAuth2 Credential insufficiently protected credentials (EUVD-2025-209499)

Post correlati

VDB-247604 | Microsoft denial of service

CVE-2026-31424 | Linux Kernel up to 6.1.167/6.6.133/6.12.80/6.18.21/6.19.11 netfilter null pointer dereference

CVE-2026-24347 | EZCast Pro II 1.17478.146 /tmp input validation (ntcf-2025-32806)

CVE-2025-11530 | code-projects Online Complaint Site 1.0 /cms/admin/state.php state sql injection