Skip to main content

CWE-525

Use of Web Browser Cache Containing Sensitive Information

24 CVEs Avg CVSS 4.8 MITRE
0
CRITICAL
2
HIGH
15
MEDIUM
7
LOW
0
POC
0
KEV

Monthly

CVE-2026-41918 MEDIUM CISA This Month

Sensitive configuration data exposure in Siemens RUGGEDCOM RST2428P industrial network switch (all firmware versions before V4.0) allows authenticated attackers to retrieve confidential information from the browser cache. The web management interface fails to enforce proper cache-control directives when an authenticated user performs specific configuration modification workflows, persisting sensitive data in the local browser cache. No public exploit code exists and the vulnerability is not listed in CISA KEV, though the High confidentiality impact (VC:H) on the vulnerable component elevates concern for OT/industrial network environments where configuration data can expose network topology or credentials.

Information Disclosure
NVD
CVSS 4.0
5.9
EPSS
0.0%
CVE-2026-41322 npm MEDIUM PATCH GHSA This Month

Cache poisoning in @astrojs/node versions 9.4.4 and earlier allows unauthenticated remote attackers to poison CDN caches by sending malformed if-match headers to static asset endpoints, causing the server to return 500 errors with immutable one-year cache directives instead of the correct 412 Precondition Failed response. This vulnerability affects all subsequent requests to poisoned assets until the cache expires, breaking application functionality for legitimate users. The vulnerability is not actively exploited in the wild, but proof-of-concept exploitation is straightforward and requires only a single crafted HTTP request.

Kubernetes Information Disclosure Mozilla
NVD GitHub VulDB
CVSS 3.1
5.3
EPSS
0.0%
CVE-2025-15554 MEDIUM PATCH This Month

LAPSWebUI before version 2.4 by Truesec improperly caches LAPS (Local Administrator Password Solution) passwords in browser storage, allowing a local attacker with user-level access to retrieve plaintext or weakly protected admin credentials from the browser cache. An attacker who gains access to a workstation where an administrator has used LAPSWebUI can escalate privileges to local administrator by exploiting this caching behavior. While the CVSS score is moderate at 6.0, the practical impact is high because successful exploitation directly enables privilege escalation to administrative access.

Privilege Escalation Lapswebui
NVD
CVSS 4.0
6.0
EPSS
0.0%
CVE-2025-36364 MEDIUM This Month

IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by another user on the system. [CVSS 6.2 MEDIUM]

IBM Devops Plan
NVD
CVSS 3.1
6.2
EPSS
0.0%
CVE-2026-24437 MEDIUM This Month

Tenda W30E V2 firmware through version 16.01.0.19(5037) fails to implement proper cache-control headers on sensitive administrative responses, allowing a local authenticated attacker to retrieve cached credentials from the browser's storage. This high-confidentiality impact vulnerability has no available patch and affects users on vulnerable firmware versions.

Authentication Bypass W30e Firmware
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2025-52659 LOW Monitor

Aion versions up to 2.0 contains a vulnerability that allows attackers to unintended storage of sensitive or dynamic content, potentially resulting in una (CVSS 2.8).

Information Disclosure Authentication Bypass Aion
NVD
CVSS 3.1
2.8
EPSS
0.0%
CVE-2025-13083 PHP LOW PATCH Monitor

Use of Web Browser Cache Containing Sensitive Information vulnerability in Drupal Drupal core allows Exploiting Incorrectly Configured Access Control Security Levels.0.0 before 10.4.9, from 10.5.0. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Drupal
NVD HeroDevs
CVSS 3.1
3.7
EPSS
0.0%
CVE-2025-62276 Maven MEDIUM PATCH Monitor

The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Digital Experience Platform Liferay Portal
NVD
CVSS 4.0
4.6
EPSS
0.0%
CVE-2025-52625 LOW Monitor

HCL AION 2.0 improperly caches sensitive SSL/HTTPS page content, allowing attackers or local users with device or browser access to retrieve cached credentials, system identifiers, and internal file paths. The vulnerability has a CVSS score of 3.7 (low severity) due to high attack complexity and local/physical access requirements, with no public exploit or active exploitation confirmed.

Information Disclosure Aion
NVD
CVSS 3.1
3.7
EPSS
0.0%
CVE-2025-36082 MEDIUM Monitor

IBM OpenPages 9.0 and 9.1 allows web page cache to be stored locally which can be read by another user on the system. Rated medium severity (CVSS 4.0), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure Openpages
NVD
CVSS 3.1
4.0
EPSS
0.0%
EPSS 0% CVSS 5.9
MEDIUM This Month

Sensitive configuration data exposure in Siemens RUGGEDCOM RST2428P industrial network switch (all firmware versions before V4.0) allows authenticated attackers to retrieve confidential information from the browser cache. The web management interface fails to enforce proper cache-control directives when an authenticated user performs specific configuration modification workflows, persisting sensitive data in the local browser cache. No public exploit code exists and the vulnerability is not listed in CISA KEV, though the High confidentiality impact (VC:H) on the vulnerable component elevates concern for OT/industrial network environments where configuration data can expose network topology or credentials.

Information Disclosure
NVD
EPSS 0% CVSS 5.3
MEDIUM PATCH This Month

Cache poisoning in @astrojs/node versions 9.4.4 and earlier allows unauthenticated remote attackers to poison CDN caches by sending malformed if-match headers to static asset endpoints, causing the server to return 500 errors with immutable one-year cache directives instead of the correct 412 Precondition Failed response. This vulnerability affects all subsequent requests to poisoned assets until the cache expires, breaking application functionality for legitimate users. The vulnerability is not actively exploited in the wild, but proof-of-concept exploitation is straightforward and requires only a single crafted HTTP request.

Kubernetes Information Disclosure Mozilla
NVD GitHub VulDB
EPSS 0% CVSS 6.0
MEDIUM PATCH This Month

LAPSWebUI before version 2.4 by Truesec improperly caches LAPS (Local Administrator Password Solution) passwords in browser storage, allowing a local attacker with user-level access to retrieve plaintext or weakly protected admin credentials from the browser cache. An attacker who gains access to a workstation where an administrator has used LAPSWebUI can escalate privileges to local administrator by exploiting this caching behavior. While the CVSS score is moderate at 6.0, the practical impact is high because successful exploitation directly enables privilege escalation to administrative access.

Privilege Escalation Lapswebui
NVD
EPSS 0% CVSS 6.2
MEDIUM This Month

IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by another user on the system. [CVSS 6.2 MEDIUM]

IBM Devops Plan
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Tenda W30E V2 firmware through version 16.01.0.19(5037) fails to implement proper cache-control headers on sensitive administrative responses, allowing a local authenticated attacker to retrieve cached credentials from the browser's storage. This high-confidentiality impact vulnerability has no available patch and affects users on vulnerable firmware versions.

Authentication Bypass W30e Firmware
NVD
EPSS 0% CVSS 2.8
LOW Monitor

Aion versions up to 2.0 contains a vulnerability that allows attackers to unintended storage of sensitive or dynamic content, potentially resulting in una (CVSS 2.8).

Information Disclosure Authentication Bypass Aion
NVD
EPSS 0% CVSS 3.7
LOW PATCH Monitor

Use of Web Browser Cache Containing Sensitive Information vulnerability in Drupal Drupal core allows Exploiting Incorrectly Configured Access Control Security Levels.0.0 before 10.4.9, from 10.5.0. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Drupal
NVD HeroDevs
EPSS 0% CVSS 4.6
MEDIUM PATCH Monitor

The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Digital Experience Platform Liferay Portal
NVD
EPSS 0% CVSS 3.7
LOW Monitor

HCL AION 2.0 improperly caches sensitive SSL/HTTPS page content, allowing attackers or local users with device or browser access to retrieve cached credentials, system identifiers, and internal file paths. The vulnerability has a CVSS score of 3.7 (low severity) due to high attack complexity and local/physical access requirements, with no public exploit or active exploitation confirmed.

Information Disclosure Aion
NVD
EPSS 0% CVSS 4.0
MEDIUM Monitor

IBM OpenPages 9.0 and 9.1 allows web page cache to be stored locally which can be read by another user on the system. Rated medium severity (CVSS 4.0), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure Openpages
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy