CWE-524: Use of Cache Containing Sensitive Information

Description

The code uses a cache that contains sensitive information, but the cache can be read by an actor outside of the intended control sphere.

Extended Description

Applications may use caches to improve efficiency when communicating with remote entities or performing intensive calculations. A cache maintains a pool of objects, threads, connections, pages, financial data, passwords, or other resources to minimize the time it takes to initialize and access these resources. If the cache is accessible to unauthorized actors, attackers can read the cache and obtain this sensitive information.

ThreatScore

Threat Mapped score: 3.25

Industry: Finiancial

Threat priority: P2 - Serious (High)

Observed Examples (CVEs)

No observed examples available.

Related Attack Patterns (CAPEC)

CAPEC-204

Attack TTPs

T1005 — Data from Local System (collection)

Malware

APTs (Intrusion Sets)

Modes of Introduction

Phase	Note
Implementation	N/A

Common Consequences

Impact: Read Application Data — Notes:

Potential Mitigations

Architecture and Design: Protect information stored in cache. (N/A)
Architecture and Design: Do not store unnecessarily sensitive information in the cache. (N/A)
Architecture and Design: Consider using encryption in the cache. (N/A)

Applicable Platforms

None listed.

Demonstrative Examples

N/A

Notes

No notes available.

← Back to CWE list