Vulnerabilidades en snowflakedb
23 resultadosCVE-2023-34231HIGHSnowflake Golang Driver vulnerable to Command InjectionEPSS 2.0%CVE-2023-34232HIGHSnowflake NodeJS Driver vulnerable to Command InjectionEPSS 1.9%CVE-2023-34233HIGHSnowflake Python Connector vulnerable to Command InjectionEPSS 1.8%CVE-2023-30535HIGHSnowflake JDBC vulnerable to command injection via SSO URL authenticationEPSS 1.7%CVE-2023-34230HIGHSnowflake Connector vulnerable to Command InjectionEPSS 1.4%CVE-2023-51662MEDIUMSnowflake Connector .NET does not properly check the Certificate Revocation List (CRL)EPSS 0.3%CVE-2025-24793HIGHSnowflake Connector for Python has an SQL Injection in write_pandasEPSS 0.3%CVE-2024-28851MEDIUMElevation of privilege in Snowflake Hive MetaStore Connector Helper scriptEPSS 0.3%CVE-2025-24789HIGHSnowflake JDBC allows an untrusted search path on WindowsEPSS 0.2%CVE-2025-24794MEDIUMThe Snowflake Connector for Python uses insecure deserialization of the OCSP response cacheEPSS 0.2%CVE-2026-3293MEDIUMsnowflakedb snowflake-jdbc JDBC URL SdkProxyRoutePlanner.java SdkProxyRoutePlanner redosEPSS 0.2%CVE-2024-49750MEDIUMSnowflake Connector for Python has sensitive data in logsEPSS 0.2%CVE-2025-24790MEDIUMSnowflake JDBC uses insecure temporary credential cache file permissionsEPSS 0.2%CVE-2025-24791MEDIUMsnowflake-connector-nodejs has incorrect validation of temporary credential cache file permissionsEPSS 0.1%CVE-2025-46328LOWNodeJS Driver for Snowflake has race condition when checking access to Easy Logging configuration fileEPSS 0.1%CVE-2025-46330LOWSnowflake Connector for C/C++ retries malformed requestsEPSS 0.1%CVE-2025-24788MEDIUMSnowflake Connector for .NET has weak temporary files permissionsEPSS 0.1%CVE-2025-24795MEDIUMThe Snowflake Connector for Python uses insecure cache files permissionsEPSS 0.1%CVE-2025-46326LOWSnowflake Connector for .NET has race condition when checking access to Easy Logging configuration fileEPSS 0.1%CVE-2025-24792MEDIUMSnowflake PHP PDO Driver has a Signed-to-Unsigned Conversion ErrorEPSS 0.1%