Yandex: Security Vulnerabilities
Uncontrolled Search Path Element vulnerability in Yandex Telemost on MacOS allows Search Order Hijacking.This issue affects Telemost: before 2.19.1.
CVSS Score
7.3
EPSS Score
0.0
Published
2025-12-09
Yandex Telemost for Desktop before 2.7.0 has a DLL Hijacking Vulnerability because an untrusted search path is used.
CVSS Score
8.4
EPSS Score
0.001
Published
2025-06-02
A use after free memory corruption issue exists in Yandex Browser for Desktop prior to version 24.4.0.682
CVSS Score
7.4
EPSS Score
0.003
Published
2025-05-30
Yandex Browser Lite for Android prior to version 21.1.0 allows remote attackers to cause a denial of service.
CVSS Score
8.3
EPSS Score
0.007
Published
2025-05-21
Yandex Browser for Android prior to version 21.3.0 allows remote attackers to perform IDN homograph attack.
CVSS Score
6.9
EPSS Score
0.002
Published
2025-05-21
Yandex Browser Lite for Android before 21.1.0 allows remote attackers to spoof the address bar.
CVSS Score
8.2
EPSS Score
0.003
Published
2025-05-21
Yandex Browser for Desktop before 24.7.1.380 has a DLL Hijacking Vulnerability because an untrusted search path is used.
CVSS Score
8.4
EPSS Score
0.031
Published
2024-09-03
An issue found in Yandex Navigator v.6.60 for Android allows unauthorized apps to cause a persistent denial of service by manipulating the SharedPreference files.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-06-09
An issue found in Yandex Navigator v.6.60 for Android allows unauthorized apps to cause escalation of privilege attacks by manipulating the SharedPreference files.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-06-09
Local privilege vulnerability in Yandex Browser for Windows prior to 22.5.0.862 allows a local, low privileged, attacker to execute arbitary code with the SYSTEM privileges through manipulating symlinks to installation file during Yandex Browser update process.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-06-15
Page 1