← Retour aux CVEs
CVE-2016-8504
N/ADescription
CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remote attacker to steal saved data in browser profile.
Details CVE
Score CVSS v3.1N/A
Publie10/26/2016
Derniere modification4/12/2025
Sourcenvd
Observations honeypot0
Produits affectes
yandex:yandex_browser
Faiblesses (CWE)
CWE-352
References
http://www.securityfocus.com/bid/93924(browser-security@yandex-team.ru)
https://browser.yandex.com/security/changelogs/(browser-security@yandex-team.ru)
http://www.securityfocus.com/bid/93924(af854a3a-2127-422b-91ae-364da2661108)
https://browser.yandex.com/security/changelogs/(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.