CVE-2020-8896
published 2020-05-04CVE-2020-8896: A Buffer Overflow vulnerability in the khcrypt implementation in Google Earth Pro versions up to and including 7.3.2 allows an attacker to perform a…
medium5.9CVSS 3.1
AVNACHPRNUINSUCHINAN
A Buffer Overflow vulnerability in the khcrypt implementation in Google Earth Pro versions up to and including 7.3.2 allows an attacker to perform a Man-in-the-Middle attack using a specially crafted key to read data past the end of the buffer used to hold it. Mitigation: Update to Google Earth Pro 7.3.3.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| earth | < 7.3.3 | 7.3.3 | |
| google_llc | google_earth_pro | stable – 7.3.2 | — |