CVE-2016-8504

CVE-2016-8504

EPSS 0.6%

CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remote attacker to steal saved data in browser profile.

Produtos afetados

Yandex N.V. · Yandex Browser for desktop

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://browser.yandex.com/security/changelogs/http://www.securityfocus.com/bid/93924