Use of Web Browser Cache Containing Sensitive Information

CVE-2023-46181

Medium

4/10

Summary

IBM Sterling Secure Proxy 6.0.3 and 6.1.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 269686.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: LOW
Availability Impact: NONE

CWE-525 - Use of Web Browser Cache Containing Sensitive Information

The web application does not use an appropriate caching policy that specifies the extent to which each web page and associated form fields should be cached.

References

Advisory Timeline

Published Mar 15, 2024

Use of Web Browser Cache Containing Sensitive Information

CVE-2023-46181

Summary

CWE-525 - Use of Web Browser Cache Containing Sensitive Information

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS