Yandex Browser Desktop CSRF Vulnerability: Remote Data Theft Exploit

CVE-2016-8504 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remote attacker to steal saved data in browser profile.

Learn more about our Cis Benchmark Audit For Desktop Software.