Yandex Browser vulnerabilities
22 known vulnerabilities affecting yandex/yandex_browser.
Total CVEs
22
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH12MEDIUM9
Vulnerabilities
Page 2 of 2
CVE-2016-8504P4MEDIUMCVSS 4.3≤ 16.6.1.301652016-10-26
CVE-2016-8504 [MEDIUM] CWE-352 CVE-2016-8504: CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remo
CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remote attacker to steal saved data in browser profile.
nvd
CVE-2020-7369MEDIUMCVSS 4.3≥ 20.8.3, ≤ 20.8.32020-10-20
CVE-2020-7369 [MEDIUM] CWE-451 Yandex Browser Address Bar Spooofing
Yandex Browser Address Bar Spooofing
User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects the Yandex Browser version 20.8.3 and prior versions, and was fixed in version 20.8.4 released October 1, 2020.
cvelistv5
← Previous2 / 2