CVE-2026-41918

Published: Giu 02, 2026 Last Modified: Giu 02, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,9

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: low

User Interaction: passive

Confidentiality: N/A

Integrity: N/A

Availability: N/A

MEDIUM 5,7

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: low

User Interaction: required

Scope: unchanged

Confidentiality: high

Integrity: none

Availability: none

Description

AI Translation Available

A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V4.0). The affected applications stores sensitive information in the browser cache when an authenticated user modify specific configurations. This could allow an authenticated attacker to access sensitive data stored in the browser.

525

Use of Web Browser Cache Containing Sensitive Information

Incomplete

Abstraction: Variant Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality

Potential Impacts:

Read Application Data

Applicable Platforms

Technologies: Web Based, Web Server

View CWE Details

https://cert-portal.siemens.com/productcert/html/ssa-253495…

https://cert-portal.siemens.com/productcert/html/ssa-253495.html

CVE-2026-41918

Description

Use of Web Browser Cache Containing Sensitive Information

Common Consequences

Applicable Platforms

Iscriviti alla newsletter