Vulnerability in Sparx Systems Pty Ltd. Enterprise Architect
CVE-2025-15622
Insufficiently Protected Credentials vulnerability in Sparx Systems Pty Ltd. Sparx Enterprise Architect. Client reveals plaintext OAuth2 client secretDesktop client decodes the secret and uses the plaintext secret to exchange it into an ac…
EPSS: 0.000 (6.7th percentile) — read the EPSS interpretation.
Affected products
- Sparx Systems Pty Ltd. Enterprise Architect — versions 16.1.1627, 17.1.1714