Description
Insufficiently Protected Credentials in Sparx Systems Pty Ltd. Sparx Enterprise Architect. Client does not verify the receiver of OAuth2 credentials during OpenID authentication
INFO
Published Date :
2026-04-16T12:40:08.962Z
Last Modified :
2026-04-16T12:51:51.633Z
Source :
NCSC-FI
AFFECTED PRODUCTS
The following products are affected by CVE-2025-15621 vulnerability.
| Vendors | Products |
|---|---|
| Sparxsystems |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2025-15621.
CVSS Vulnerability Scoring System
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability