First published: Tue Apr 21 2020(Updated: )
Untrusted Search Path vulnerability in the windows installer of Google Earth Pro versions prior to 7.3.3 allows an attacker to insert malicious local files to execute unauthenticated remote code on the targeted system.
Credit: cve-coordination@google.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Earth | <7.3.3 |
Recommended to update to Google Earth Pro 7.3.3 at your earliest convenience.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2020-8895 is high with a severity value of 7.8.
CVE-2020-8895 is an Untrusted Search Path vulnerability in the Windows installer of Google Earth Pro versions prior to 7.3.3.
The exploit allows an attacker to insert malicious local files to execute unauthenticated remote code on the targeted system.
Versions of Google Earth Pro prior to 7.3.3 are affected by CVE-2020-8895.
To fix CVE-2020-8895, update Google Earth Pro to version 7.3.3 or later.