Описание
An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement.
Ссылки
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- ExploitMitigationThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- ExploitMitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:firebirdsql:firebird:2.5.7:*:*:*:*:*:*:*
cpe:2.3:a:firebirdsql:firebird:3.0.2:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.10885
Средний
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 8.8
ubuntu
почти 8 лет назад
An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement.
CVSS3: 8.8
redhat
около 8 лет назад
An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement.
CVSS3: 8.8
debian
почти 8 лет назад
An authenticated remote attacker can execute arbitrary code in Firebir ...
CVSS3: 8.8
github
больше 3 лет назад
An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement.
EPSS
Процентиль: 93%
0.10885
Средний
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-89