Known Vulnerabilities for products from FirebirdSQL
Listed below are 20 of the newest known vulnerabilities associated with the vendor "FirebirdSQL".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2017-11509 json | An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a ma... | 8.8 - HIGH | 2018-03-28 | 2021-11-23 |
| CVE-2017-6369 json | Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated use... | 8.8 - HIGH | 2017-03-24 | 2019-10-03 |
| CVE-2016-1569 json | FireBird 2.5.5 allows remote authenticated users to cause a denial of service (daemon crash) by using service manager to invo... | 6.5 - MEDIUM | 2016-01-13 | 2016-12-06 |
| CVE-2014-9323 json | The xdr_status_vector function in Firebird before 2.1.7 and 2.5.x before 2.5.3 SU1 allows remote attackers to cause a denial ... | 5 - MEDIUM | 2014-12-16 | 2021-03-05 |
| CVE-2013-2492 json | Stack-based buffer overflow in Firebird 2.1.3 through 2.1.5 before 18514, and 2.5.1 through 2.5.3 before 26623, on Windows al... | 6.8 - MEDIUM | 2013-03-15 | 2016-12-07 |
| CVE-2012-5529 json | TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of servi... | 3.5 - LOW | 2012-11-20 | 2017-08-29 |
| CVE-2009-2620 json | src/remote/server.cpp in fbserver.exe in Firebird SQL 1.5 before 1.5.6, 2.0 before 2.0.6, 2.1 before 2.1.3, and 2.5 before 2.... | 5 - MEDIUM | 2009-07-29 | 2017-09-19 |
| CVE-2008-0467 json | Stack-based buffer overflow in Firebird before 2.0.4, and 2.1.x before 2.1.0 RC1, might allow remote attackers to execute arb... | 10 - HIGH | 2008-01-29 | 2017-08-08 |
| CVE-2008-0387 json | Integer overflow in Firebird SQL 1.0.3 and earlier, 1.5.x before 1.5.6, 2.0.x before 2.0.4, and 2.1.x before 2.1.0 RC1 might ... | 7.8 - HIGH | 2008-01-29 | 2018-10-26 |
| CVE-2007-5246 json | Multiple stack-based buffer overflows in Firebird LI 2.0.0.12748 and 2.0.1.12855, and WI 2.0.0.12748 and 2.0.1.12855, allow r... | 10 - HIGH | 2007-10-06 | 2018-10-15 |
| CVE-2007-5245 json | Multiple stack-based buffer overflows in Firebird LI 1.5.3.4870 and 1.5.4.4910, and WI 1.5.3.4870 and 1.5.4.4910, allow remot... | 10 - HIGH | 2007-10-06 | 2018-10-15 |
| CVE-2007-4992 json | Stack-based buffer overflow in the process_packet function in fbserver.exe in Firebird SQL 2.0.2 allows remote attackers to e... | 10 - HIGH | 2007-10-11 | 2018-10-15 |
| CVE-2007-4669 json | The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log ... | 4 - MEDIUM | 2007-09-04 | 2008-09-05 |
| CVE-2007-4668 json | Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to determine the existence of arbitr... | 5 - MEDIUM | 2007-09-04 | 2011-03-08 |
| CVE-2007-4667 json | Unspecified vulnerability in the Services API in Firebird before 2.0.2 allows remote attackers to cause a denial of service, ... | 5 - MEDIUM | 2007-09-04 | 2017-07-29 |
| CVE-2007-4666 json | Unspecified vulnerability in the server in Firebird before 2.0.2, when a Superserver/TCP/IP environment is configured, allows... | 5 - MEDIUM | 2007-09-04 | 2017-07-29 |
| CVE-2007-4665 json | Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to cause a denial of service (daemon... | 5 - MEDIUM | 2007-09-04 | 2017-07-29 |
| CVE-2007-4664 json | Unspecified vulnerability in the (1) attach database and (2) create database functionality in Firebird before 2.0.2, when a f... | 7.5 - HIGH | 2007-09-04 | 2017-07-29 |
| CVE-2007-3527 json | Integer overflow in Firebird 2.0.0 allows remote authenticated users to cause a denial of service (CPU consumption) via certa... | 6.8 - MEDIUM | 2007-07-03 | 2012-10-31 |
| CVE-2007-3181 json | Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows remote attackers to execute arbitrary code via a large ... | 10 - HIGH | 2007-06-12 | 2017-07-29 |
Known software with vulnerabilities from FirebirdSQL
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Firebirdsql | Firebird | - |