What is the yandex CNA?
yandex is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 36 CVE records since 2016.
How many CVEs has yandex published?
yandex has published 36 CVE records, including 10 in the last two years.
What is yandex's CVE data quality grade?
RadicalNotion.AI grades yandex's CVE data quality as F, with an overall completeness score of 55.6%. This reflects how consistently its CVE records include vendor (61.1%), product (100%), CVSS (27.8%), and CWE (33.3%) information.
What products does yandex publish CVEs for?
yandex most frequently publishes CVEs for Yandex Browser, ClickHouse, Yandex Browser for Desktop, Yandex Browser (Desktop), Browser.
Which vendors does yandex cover?
yandex publishes CVEs across 4 distinct vendors, most often Yandex, Yandex N.V., ClickHouse, microsoft, userver.
Is yandex actively publishing CVEs?
yandex is currently active, based on 10 CVEs in the last two years.
What is the average severity of yandex's CVEs?
The average CVSS base score across yandex's scored CVEs is 7.8.
How many critical CVEs has yandex published?
yandex has published 1 critical-severity CVEs and 10 high-severity CVEs.
Are any of yandex's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of yandex's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in yandex's CVEs?
yandex's CVEs most often map to these CWE weakness types: CWE-427 (Uncontrolled Search Path Element), CWE-116 (Improper Encoding or Escaping of Output), CWE-426 (Untrusted Search Path), CWE-20 (Improper Input Validation).
How does yandex rank among CNAs?
By total CVE volume, yandex ranks #201 of 370 CNAs, and it reports more complete CVE records than 11% of all CNAs.
