PT-2023-11533 · Z3 · Z3

Hadowblad3

Published

2023-08-22

Updated

2023-08-25

CVE-2020-19725

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Z3 versions prior to 4.8.8

Description The issue is related to a use-after-free vulnerability in the file pdd simplifier.cpp. It occurs when the solver attempts to simplify constraints, leading to unexpected memory access. This can result in segmentation faults or arbitrary code execution.

Recommendations For versions prior to 4.8.8, update to version 4.8.8 or later to resolve the issue.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

AZL-27991

AZL-37067

CVE-2020-19725

PT-2023-11533 · Z3 · Z3

CVE-2020-19725

Weakness Enumeration

Related Identifiers

Affected Products

References · 8