CVE-2025-5470

Vulnerability Description

Uncontrolled Search Path Element vulnerability in Yandex Disk on MacOS allows Search Order Hijacking.This issue affects Disk: before 3.2.45.3275.

Related Weaknesses (CWE)

CWE-427

References

https://yandex.com/bugbounty/i/hall-of-fame-products

FAQ

What is CVE-2025-5470?

CVE-2025-5470 is a documented vulnerability. Uncontrolled Search Path Element vulnerability in Yandex Disk on MacOS allows Search Order Hijacking.This issue affects Disk: before 3.2.45.3275.

How severe is CVE-2025-5470?

CVSS scoring is not yet available for CVE-2025-5470. Check NVD for updates.

Is there a patch for CVE-2025-5470?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.