Program vulnerability detection method and device, electronic equipment and medium

The invention provides a program vulnerability detection method and device, electronic equipment and a medium, and relates to the field of network security or financial science and technology. The program vulnerability detection method comprises the steps of obtaining a program source code, extracting an intermediate code in the program source code, and generating a control flow diagram according to the intermediate code; according to a pre-created vulnerability pattern library, traversing each node in the control flow diagram, and collecting vulnerability path constraints corresponding to preset target defects; after SMT standardization conversion is carried out on the vulnerability path constraint, using an SMT solver for solving the vulnerability path constraint, and judging whether the vulnerability path is reachable or not; if yes, detecting whether a reachable path in the vulnerability path has a security vulnerability; otherwise, filtering the unreachable paths in the vulnerability paths. 本公开提供了一种程序漏洞检