CWE · MITRE source
CWE-525Use of Web Browser Cache Containing Sensitive Information
The web application does not use an appropriate caching policy that specifies the extent to which each web page and associated form fields should be cached.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2025-15554 | 1.6 | 7.8 | 0.0002 | 2026-03-16 |
CVE-2026-27514 | 1.3 | 6.5 | 0.0005 | 2026-02-23 |
CVE-2024-31906 | 1.2 | 6.2 | 0.0002 | 2025-01-26 |
CVE-2025-36364 | 1.2 | 6.2 | 0.0001 | 2026-03-03 |
CVE-2021-42015 | 1.1 | 5.5 | 0.0013 | 2021-11-09 |
CVE-2024-25142 | 1.1 | 5.5 | 0.0010 | 2024-06-14 |
CVE-2025-62276 | 1.1 | 5.5 | 0.0002 | 2025-11-01 |
CVE-2026-24437 | 1.1 | 5.5 | 0.0001 | 2026-01-26 |
CVE-2026-41322 | 1.1 | 5.3 | 0.0005 | 2026-04-24 |
CVE-2023-23469 | 0.8 | 4.0 | 0.0005 | 2023-02-01 |
CVE-2023-27545 | 0.8 | 4.0 | 0.0003 | 2024-02-29 |
CVE-2023-46181 | 0.8 | 4.0 | 0.0003 | 2024-03-15 |
CVE-2024-22343 | 0.8 | 4.0 | 0.0003 | 2024-05-14 |
CVE-2022-43841 | 0.8 | 4.0 | 0.0004 | 2024-05-30 |
CVE-2022-38383 | 0.8 | 4.0 | 0.0005 | 2024-06-28 |
CVE-2024-30130 | 0.8 | 3.7 | 0.0031 | 2024-07-19 |
CVE-2024-22349 | 0.8 | 4.0 | 0.0002 | 2025-01-20 |
CVE-2023-43035 | 0.8 | 4.0 | 0.0006 | 2025-04-10 |
CVE-2025-27525 | 0.8 | 3.9 | 0.0006 | 2025-05-15 |
CVE-2025-1334 | 0.8 | 4.0 | 0.0008 | 2025-06-03 |
CVE-2025-1348 | 0.8 | 4.0 | 0.0007 | 2025-06-18 |
CVE-2025-36082 | 0.8 | 4.0 | 0.0001 | 2025-09-15 |
CVE-2024-22333 | 0.7 | 3.3 | 0.0005 | 2024-06-13 |
CVE-2024-45314 | 0.7 | 3.6 | 0.0013 | 2024-09-04 |
CVE-2025-52625 | 0.7 | 3.7 | 0.0004 | 2025-10-10 |