CVEs-PoC/2020/CVE-2020-8895.md

### [CVE-2020-8895](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8895)
![](https://img.shields.io/static/v1?label=Product&message=Earth%20Pro&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%207.3.3%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-427%20Uncontrolled%20Search%20Path%20Element&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=DLL%20Hijacking&color=brighgreen)

### Description

Untrusted Search Path vulnerability in the windows installer of Google Earth Pro versions prior to 7.3.3 allows an attacker to insert malicious local files to execute unauthenticated remote code on the targeted system.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/Live-Hack-CVE/CVE-2020-8895