PT-2021-12042 · Solidity · Solidity

Published

2021-07-01

Updated

2021-07-06

CVE-2020-36402

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Solidity version 0.7.5

Description: The issue is related to a stack-use-after-return problem in the smtutil::CHCSmtLib2Interface::querySolver function.

Recommendations: For Solidity version 0.7.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2020-36402

Solidity