CVE-2026-28214 MEDIUM

CVE-2026-28214: Firebird server hangs when using specific clumplet on batch creation

Vendor Firebirdsql
Product firebird
Weakness CWE-190
Published April 17, 2026
Last update April 20, 2026

CVSS base score

6.0/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

What the vulnerability does

01Description

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the ClumpletReader::getClumpletSize() function can overflow the totalLength value when parsing a Wide type clumplet, causing an infinite loop. An authenticated user with INSERT privileges on any table can exploit this via a crafted Batch Parameter Block to cause a denial of service against the server. This issue has been fixed in versions 5.0.4, 4.0.7 and 3.0.14.

Key dates

02Disclosure timeline

April 17, 2026 CVE published
April 20, 2026 Record updated