Use of Web Browser Cache Containing Sensitive Information

CVE-2025-52659

Low

2.8/10

Summary

HCL AION version 2 is affected by a Cacheable HTTP Response vulnerability. This may lead to unintended storage of sensitive or dynamic content, potentially resulting in unauthorized access or information disclosure.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: LOW
Confidentiality Impact: NONE
Availability Impact: LOW

CWE-525 - Use of Web Browser Cache Containing Sensitive Information

The web application does not use an appropriate caching policy that specifies the extent to which each web page and associated form fields should be cached.

References

Advisory Timeline

Published Jan 19, 2026

Use of Web Browser Cache Containing Sensitive Information

CVE-2025-52659

Summary

CWE-525 - Use of Web Browser Cache Containing Sensitive Information

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS