EUVD-2025-209514

ID: EUVD-2025-209514

Severity: critical

CVSS v4: 9.3 (CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/S:P/AU:Y/V:C/RE:M/U:Red)

CVSS v3: Not provided

CWE: None listed

Source: ENISA

Description

Plaintext Storage of a Password vulnerability in Sparx Systems Pty Ltd. Sparx Pro Cloud Server. In a setup where OpenID is used as the primary method of authentication to authenticate to Sparx EA, Pro Cloud Server creates local passwords to the users and stores them in plaintext.

Timestamps

Normalized: 2026-04-17T10:15:02Z UTC
Last updated: 2026-04-17T10:15:02Z UTC

References

No references provided.

VulnAI

EUVD-2025-209514

Description

Timestamps

References