CVE-2020-8895

Summary

Untrusted Search Path vulnerability in the windows installer of Google Earth Pro versions prior to 7.3.3 allows an attacker to insert malicious local files to execute unauthenticated remote code on the targeted system.

Affected Software

VendorProductVersion RangeStatus
GoogleEarth Prounspecified < 7.3.3affected

Weaknesses

  • CWE-427: CWE-427 Uncontrolled Search Path Element
  • DLL Hijacking

ADP Enrichment

CVE Program Container

Additional References

References