Vulnerabilidades em Yandex
19 resultadosCVE-2021-43305—Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operationsEPSS 1.6%CVE-2021-43304—Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operationsEPSS 1.6%CVE-2021-42388—Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl() loop, a 1EPSS 1.5%CVE-2021-42387—Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl() loop, a 1EPSS 1.5%CVE-2021-42391—Divide-by-zero in Clickhouse's Gorilla compression codec when parsing a malicious query. The first byte of the compressed buffer is used in EPSS 1.4%CVE-2021-42389—Divide-by-zero in Clickhouse's Delta compression codec when parsing a malicious query. The first byte of the compressed buffer is used in a EPSS 1.2%CVE-2021-42390—Divide-by-zero in Clickhouse's DeltaDouble compression codec when parsing a malicious query. The first byte of the compressed buffer is usedEPSS 1.2%CVE-2020-7369MEDIUMYandex Browser Address Bar SpooofingEPSS 1.0%CVE-2024-6473HIGHDLL Hijacking in Yandex BrowserEPSS 0.7%CVE-2021-25255HIGHYandex Browser Lite for Android prior to version 21.1.0 allows remote attackers to cause a denial of service.EPSS 0.7%CVE-2021-25254HIGHYandex Browser Lite for Android before 21.1.0 allows remote attackers to spoof the address bar.EPSS 0.5%CVE-2021-25262MEDIUMYandex Browser for Android prior to version 21.3.0 allows remote attackers to perform IDN homograph attack.EPSS 0.4%CVE-2023-26226HIGHA use after free memory corruption issue exists in Yandex Browser for Desktop prior to version 24.4.0.682EPSS 0.3%CVE-2026-10549MEDIUMPrivilege escalation in Yandex DatabaseEPSS 0.3%CVE-2025-5471HIGHDylib Hijacking in Yandex TelemostEPSS 0.2%CVE-2026-25865HIGHPunto Switcher 4.5.0.583 Unquoted Search Path via WinExecEPSS 0.1%CVE-2025-5470HIGHDylib Hijacking in Yandex DiskEPSS 0.1%CVE-2025-5469HIGHDylib Hijacking in Yandex MessengerEPSS 0.1%CVE-2024-12168HIGHDLL Hijacking in Yandex TelemostEPSS 0.1%