Lucene search
Ubuntu.comUB:CVE-2020-19725HistoryAug 22, 2023 - 12:00 a.m.
CVE-2020-19725
2023-08-2200:00:00
ubuntu.com
ubuntu.com
4
z3
file pdd_simplifier.cpp
vulnerability
use-after-free
memory access
segmentation faults
arbitrary code execution
unix
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
34.7%
There is a use-after-free vulnerability in file pdd_simplifier.cpp in Z3
before 4.8.8. It occurs when the solver attempt to simplify the constraints
and causes unexpected memory access. It can cause segmentation faults or
arbitrary code execution.
Related
cve
cve
CVE-2020-19725
2023-08-22 19:16:04
prion
prion
Design/Logic Flaw
2023-08-22 19:16:00
osv
osv
CVE-2020-19725
2023-08-22 19:16:04
veracode
veracode
Use After Free
2023-08-24 03:54:22
cvelist
cvelist
CVE-2020-19725
2023-08-22 00:00:00
nvd
nvd
CVE-2020-19725
2023-08-22 19:16:04
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
34.7%
Related for UB:CVE-2020-19725