exploitDog

GHSA-3p44-pgj6-cf97

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

A vulnerability in the windows installer of Google Earth Pro versions prior to 7.3.3 allows an attacker using DLL hijacking to insert malicious local files to execute unauthenticated remote code on the targeted system.

A vulnerability in the windows installer of Google Earth Pro versions prior to 7.3.3 allows an attacker using DLL hijacking to insert malicious local files to execute unauthenticated remote code on the targeted system.

Ссылки

EPSS

Процентиль: 5%

0.0002

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-426

Связанные уязвимости

CVE-2020-8895

CVSS3: 7.8

nvd

почти 6 лет назад

Untrusted Search Path vulnerability in the windows installer of Google Earth Pro versions prior to 7.3.3 allows an attacker to insert malicious local files to execute unauthenticated remote code on the targeted system.

EPSS

Процентиль: 5%

0.0002

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-426