CWE-525

Use of Web Browser Cache Containing Sensitive Information

AI Translation Available

The web application does not use an appropriate caching policy that specifies the extent to which each web page and associated form fields should be cached.

Status

incomplete

Abstraction

variant

Affected Platforms

Web Based Web Server

Technical Details

AI Translation

Common Consequences

confidentiality

Impacts

read application data

Potential Mitigations

Phases:

architecture and design implementation

Descriptions:

• Protect information stored in cache.

• Do not store unnecessarily sensitive information in the cache.

• Use a restrictive caching policy for forms and web pages that potentially contain sensitive information.

• Consider using encryption in the cache.

AI Generated Translation

Common Consequences

riservatezza

Impacts

leggere dati applicazione

Potential Mitigations

Phases:

architettura e design implementazione

Descriptions:

• Proteggi le informazioni memorizzate nella cache.

• Non memorizzare nel cache informazioni sensibili in modo non necessario.

• Utilizzare una politica di caching restrittiva per moduli e pagine web che potenzialmente contengono informazioni sensibili.

• Considera l'uso della crittografia nella cache.

CWE-525

Common Consequences

Impacts

Potential Mitigations

Common Consequences

Impacts

Potential Mitigations

Iscriviti alla newsletter