Vulnerability-Lookup

WID-SEC-W-2025-1857

Vulnerability from csaf_certbund - Published: 2025-08-17 22:00 - Updated: 2025-08-31 22:00

Summary

Firebird: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Firebird ist ein relationales Open-Source-Datenbankmanagementsystem.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Firebird ausnutzen, um Sicherheitsvorkehrungen zu umgehen und um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2025-24975

CVE-2025-54989

References

URL

Category

	https://wid.cert-bund.de/.well-known/csaf/white/2…	self
	https://wid.cert-bund.de/portal/wid/securityadvis…	self
	https://github.com/FirebirdSQL/firebird/security/…	external
	https://github.com/FirebirdSQL/firebird/security/…	external
	https://lists.debian.org/debian-lts-announce/2025…	external
	https://lists.suse.com/pipermail/sle-security-upd…	external
	https://lists.debian.org/debian-security-announce…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Firebird ist ein relationales Open-Source-Datenbankmanagementsystem.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Firebird ausnutzen, um Sicherheitsvorkehrungen zu umgehen und um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1857 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1857.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1857 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1857"
      },
      {
        "category": "external",
        "summary": "GitHub Security Advisory GHSA-fx9r-rj68-7p69 vom 2025-08-17",
        "url": "https://github.com/FirebirdSQL/firebird/security/advisories/GHSA-fx9r-rj68-7p69"
      },
      {
        "category": "external",
        "summary": "GitHub Security Advisory GHSA-7qp6-hqxj-pjjp vom 2025-08-17",
        "url": "https://github.com/FirebirdSQL/firebird/security/advisories/GHSA-7qp6-hqxj-pjjp"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4282 vom 2025-08-25",
        "url": "https://lists.debian.org/debian-lts-announce/2025/08/msg00021.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:02991-1 vom 2025-08-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022281.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5992 vom 2025-08-30",
        "url": "https://lists.debian.org/debian-security-announce/2025/msg00156.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Firebird: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-08-31T22:00:00.000+00:00",
      "generator": {
        "date": "2025-09-01T07:11:12.776+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-1857",
      "initial_release_date": "2025-08-17T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-08-17T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-08-21T22:00:00.000+00:00",
          "number": "2",
          "summary": "Referenz(en) aufgenommen: ZDI-25-859"
        },
        {
          "date": "2025-08-25T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2025-08-27T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-08-31T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Debian aufgenommen"
        }
      ],
      "status": "final",
      "version": "5"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c6.0.0.609",
                "product": {
                  "name": "Firebird Firebird \u003c6.0.0.609",
                  "product_id": "T046299"
                }
              },
              {
                "category": "product_version",
                "name": "6.0.0.609",
                "product": {
                  "name": "Firebird Firebird 6.0.0.609",
                  "product_id": "T046299-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:firebird:firebird:6.0.0.609"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c5.0.2.1610",
                "product": {
                  "name": "Firebird Firebird \u003c5.0.2.1610",
                  "product_id": "T046300"
                }
              },
              {
                "category": "product_version",
                "name": "5.0.2.1610",
                "product": {
                  "name": "Firebird Firebird 5.0.2.1610",
                  "product_id": "T046300-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:firebird:firebird:5.0.2.1610"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.0.6.3183",
                "product": {
                  "name": "Firebird Firebird \u003c4.0.6.3183",
                  "product_id": "T046301"
                }
              },
              {
                "category": "product_version",
                "name": "4.0.6.3183",
                "product": {
                  "name": "Firebird Firebird 4.0.6.3183",
                  "product_id": "T046301-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:firebird:firebird:4.0.6.3183"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c5.0.3",
                "product": {
                  "name": "Firebird Firebird \u003c5.0.3",
                  "product_id": "T046302"
                }
              },
              {
                "category": "product_version",
                "name": "5.0.3",
                "product": {
                  "name": "Firebird Firebird 5.0.3",
                  "product_id": "T046302-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:firebird:firebird:5.0.3"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.0.6",
                "product": {
                  "name": "Firebird Firebird \u003c4.0.6",
                  "product_id": "T046303"
                }
              },
              {
                "category": "product_version",
                "name": "4.0.6",
                "product": {
                  "name": "Firebird Firebird 4.0.6",
                  "product_id": "T046303-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:firebird:firebird:4.0.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c3.0.13",
                "product": {
                  "name": "Firebird Firebird \u003c3.0.13",
                  "product_id": "T046304"
                }
              },
              {
                "category": "product_version",
                "name": "3.0.13",
                "product": {
                  "name": "Firebird Firebird 3.0.13",
                  "product_id": "T046304-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:firebird:firebird:3.0.13"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Firebird"
          }
        ],
        "category": "vendor",
        "name": "Firebird"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-24975",
      "product_status": {
        "known_affected": [
          "T046303",
          "2951",
          "T002207",
          "T046301",
          "T046302",
          "T046299",
          "T046300"
        ]
      },
      "release_date": "2025-08-17T22:00:00.000+00:00",
      "title": "CVE-2025-24975"
    },
    {
      "cve": "CVE-2025-54989",
      "product_status": {
        "known_affected": [
          "T046303",
          "T046304",
          "2951",
          "T002207",
          "T046301",
          "T046302",
          "T046299",
          "T046300"
        ]
      },
      "release_date": "2025-08-17T22:00:00.000+00:00",
      "title": "CVE-2025-54989"
    }
  ]
}

CVE-2025-54989 (GCVE-0-2025-54989)

Vulnerability from cvelistv5 – Published: 2025-08-15 15:04 – Updated: 2025-11-03 18:13

Title

Firebird XDR Message Parsing NULL Pointer Dereference Denial-of-Service Vulnerability

Summary

Firebird is a relational database. Prior to versions 3.0.13, 4.0.6, and 5.0.3, there is an XDR message parsing NULL pointer dereference denial-of-service vulnerability in Firebird. This specific flaw exists within the parsing of xdr message from client. It leads to NULL pointer dereference and DoS. This issue has been patched in versions 3.0.13, 4.0.6, and 5.0.3.

Severity ?

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE

CWE-476 - NULL Pointer Dereference

Assigner

GitHub_M

References

URL

	Vendor	Product	Version
	FirebirdSQL	firebird	Affected: < 3.0.13 Affected: < 4.0.6 Affected: < 5.0.3

CVE-2025-24975 (GCVE-0-2025-24975)

Vulnerability from cvelistv5 – Published: 2025-08-15 15:11 – Updated: 2025-08-20 19:50

Title

Firebird Non-Authorized Access to Encrypted Database Using Execute Statement on External

Summary

Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when created versus what is available could result in a segfault in the server process. Encrypted databases, accessed by execute statement on external, may be accessed later by an attachment missing a key to that database. In a case when execute statement are chained, segfault may happen. Additionally, the segfault may affect unencrypted databases. This issue has been patched in snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609 and point releases 4.0.6 and 5.0.2. A workaround for this issue involves setting ExtConnPoolSize equal to 0 in firebird.conf.

Severity ?

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE

CWE-754 - Improper Check for Unusual or Exceptional Conditions

Assigner

GitHub_M

References

URL

Tags

	https://github.com/FirebirdSQL/firebird/security/…	x_refsource_CONFIRM
	https://github.com/FirebirdSQL/firebird/issues/8429	x_refsource_MISC
	https://github.com/FirebirdSQL/firebird/commit/65…	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	FirebirdSQL	firebird	Affected: < 6.0.0.609 Affected: < 5.0.2.1610 Affected: < 4.0.6.3183

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-24975",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-08-15T19:09:49.364643Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-08-15T19:09:59.992Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-08-20T19:50:53.827Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://www.vicarius.io/vsociety/posts/cve-2025-24975-detect-vulnerable-firebird"
          },
          {
            "url": "https://www.vicarius.io/vsociety/posts/cve-2025-24975-mitigate-firebird-vulnerability"
          }
        ],
        "title": "CVE Program Container",
        "x_generator": {
          "engine": "ADPogram 0.0.1"
        }
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "firebird",
          "vendor": "FirebirdSQL",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 6.0.0.609"
            },
            {
              "status": "affected",
              "version": "\u003c 5.0.2.1610"
            },
            {
              "status": "affected",
              "version": "\u003c 4.0.6.3183"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when created versus what is available could result in a segfault in the server process. Encrypted databases, accessed by execute statement on external, may be accessed later by an attachment missing a key to that database. In a case when execute statement are chained, segfault may happen. Additionally, the segfault may affect unencrypted databases. This issue has been patched in snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609 and point releases 4.0.6 and 5.0.2. A workaround for this issue involves setting ExtConnPoolSize equal to 0 in firebird.conf."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-754",
              "description": "CWE-754: Improper Check for Unusual or Exceptional Conditions",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-15T15:11:29.986Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/FirebirdSQL/firebird/security/advisories/GHSA-fx9r-rj68-7p69",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/FirebirdSQL/firebird/security/advisories/GHSA-fx9r-rj68-7p69"
        },
        {
          "name": "https://github.com/FirebirdSQL/firebird/issues/8429",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/FirebirdSQL/firebird/issues/8429"
        },
        {
          "name": "https://github.com/FirebirdSQL/firebird/commit/658abd20449f72097fbbce57e8e6ae42ff837fb6",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/FirebirdSQL/firebird/commit/658abd20449f72097fbbce57e8e6ae42ff837fb6"
        }
      ],
      "source": {
        "advisory": "GHSA-fx9r-rj68-7p69",
        "discovery": "UNKNOWN"
      },
      "title": "Firebird Non-Authorized Access to Encrypted Database Using Execute Statement on External"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-24975",
    "datePublished": "2025-08-15T15:11:29.986Z",
    "dateReserved": "2025-01-29T15:18:03.211Z",
    "dateUpdated": "2025-08-20T19:50:53.827Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2025-1857

CVE-2025-54989 (GCVE-0-2025-54989)

CVE-2025-24975 (GCVE-0-2025-24975)

Tags

Sightings

Nomenclature