Use of Cache Containing Sensitive Information Affecting @angular/common package, versions <19.2.23>=20.0.0-next.0 <20.3.22>=21.0.0-next.0 <21.2.15>=22.0.0-next.0 <22.0.0-rc.2


Severity

Recommended
0.0
low
0
10

CVSS assessment by Snyk's Security Team. Learn more

Threat Intelligence

EPSS
0.27% (19th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-JS-ANGULARCOMMON-17356499
  • published17 Jun 2026
  • disclosed15 Jun 2026
  • creditUnknown

Introduced: 15 Jun 2026

NewCVE-2026-50170  (opens in a new tab)
CWE-524  (opens in a new tab)

How to fix?

Upgrade @angular/common to version 19.2.23, 20.3.22, 21.2.15, 22.0.0-rc.2 or higher.

Overview

Affected versions of this package are vulnerable to Use of Cache Containing Sensitive Information via the HttpTransferCache utility. An attacker can access sensitive user-specific information by making requests to pages that have been cached by a shared caching layer after another user has authenticated and triggered credentialed requests during server-side rendering.

Note: This is only exploitable if server-side rendering and hydration are enabled, credentialed HTTP requests are performed during SSR, and the SSR-rendered HTML is cached by a shared caching layer without proper cache-control headers to distinguish authenticated users.

CVSS Base Scores

version 4.0
version 3.1