What is CVE-2026-42100?

CVE-2026-42100 is a high-severity vulnerability in Sparx Systems Pro Cloud Server, classified under CWE-228. CVSS score: 7.5/10. Published 2026-05-19.

How severe is CVE-2026-42100?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Sparx Systems Pro Cloud Server

CVE-2026-42100

Improper Handling of Syntactically Invalid Structure in Sparx Pro Cloud Server allows Denial of Service (DoS) attack to be executed by sending an specially crafted SQL query. This causes the Pro Cloud Server service to terminate unexpected…

EPSS: 0.000 (14.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Sparx Systems Pro Cloud Server — versions 0
Sparxsystems Pro_cloud_server

Weakness classification (CWE)

CWE-228

References

cvd@cert.pl (Third Party Advisory, third-party-advisory)
cvd@cert.pl (Product, product)
cvd@cert.pl (Exploit, technical-description, Third Party Advisory)
cvd@cert.pl (Third Party Advisory, third-party-advisory)

Frequently asked questions

What is CVE-2026-42100?: CVE-2026-42100 is a high-severity vulnerability in Sparx Systems Pro Cloud Server, classified under CWE-228. CVSS score: 7.5/10. Published 2026-05-19.
How severe is CVE-2026-42100?: High severity. CVSS v3 base score is 7.5 out of 10.