CVE-2026-40342 | FirebirdSQL Firebird up to 3.0.13/4.0.6/5.0.3 ENGINE Name path traversal (GHSA-7pxc-h3rv-r257)

A vulnerability described as critical has been identified in FirebirdSQL Firebird up to 3.0.13/4.0.6/5.0.3. Affected is an unknown function of the component ENGINE Name Handler. The manipulation results in path traversal.

This vulnerability is cataloged as CVE-2026-40342. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More