Known Vulnerabilities for products from Snowflake
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Snowflake".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33682 json | Streamlit is a data oriented application development framework for python. Streamlit Open Source versions prior to 1.54.0 run... | Not Provided | 2026-03-26 | 2026-04-01 |
| CVE-2026-6442 json | Not Provided | 2026-04-16 | 2026-04-16 | |
| CVE-2023-51662 json | 7.5 - HIGH | 2023-12-22 | 2024-01-03 | |
| CVE-2023-34233 json | The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and... | 8.8 - HIGH | 2023-06-08 | 2023-06-16 |
| CVE-2023-34232 json | snowflake-connector-nodejs, a NodeJS driver for Snowflake, is vulnerable to command injection via single sign on (SSO) browse... | 8.8 - HIGH | 2023-06-08 | 2023-06-20 |
| CVE-2023-34231 json | gosnowflake is th Snowflake Golang driver. Prior to version 1.6.19, a command injection vulnerability exists in the Snowflake... | 8.8 - HIGH | 2023-06-08 | 2023-06-20 |
| CVE-2023-34230 json | snowflake-connector-net, the Snowflake Connector for .NET, is vulnerable to command injection prior to version 2.0.18 via SSO... | 8.8 - HIGH | 2023-06-08 | 2023-06-20 |
| CVE-2023-30535 json | Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake.... | 8.8 - HIGH | 2023-04-14 | 2023-04-24 |
| CVE-2022-42965 json | An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the snowflake-connector-python PyPI package, ... | 7.5 - HIGH | 2022-11-09 | 2023-09-25 |
| CVE-2010-0798 json | SQL injection vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to execute arbitrary ... | 7.5 - HIGH | 2010-03-02 | 2010-03-03 |
| CVE-2010-0797 json | Cross-site scripting (XSS) vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to injec... | 4.3 - MEDIUM | 2010-03-02 | 2010-03-03 |