Vulnerabilities

Report: CVE-2025-15621 - Sparx Enterprise Architect Client does not verify the receiver of OAuth2 credent

2026-04-16 0 views admin

CVE ID :CVE-2025-15621 Published : April 16, 2026, 12:40 p.m. | 12 minutes ago Description :Insufficiently Protected Credentials in Sparx Systems Pty Ltd. Sparx Enterprise Architect. Client does not verify the receiver of OAuth2 credentials during OpenID authentication Severity: 5.7 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-15621

Severity

MEDIUM

Published

April 16, 2026

🏷️ Tags

report15621sparxenterprisearchitectclientverifyreceiveroauth2credent

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2025-15621 - Sparx Enterprise Architect Client does not verify the receiver of OAuth2 credent

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Latest: CVE-2026-31843 - Apache Goodone Laravel Remote Code Execution

Report: Update: CVE-2026-6414 - @fastify/static vulnerable to route guard bypass via encoded path separators

Report: CVE-2026-33804 - @fastify/middie vulnerable to middleware bypass via deprecated ignoreDuplicateSl

Report: - Apache Airflow: JWT token appearing in logs CVE-2026-31987

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting