Browse all 23 CVE security advisories affecting snowflakedb. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Snowflakedb operates as a cloud-native data warehousing platform, enabling organizations to store and analyze large volumes of structured and semi-structured data. Despite its robust architecture, the software has accumulated 23 recorded Common Vulnerabilities and Exposures (CVEs), indicating persistent security challenges. Historically, these flaws predominantly involve privilege escalation and cross-site scripting (XSS), allowing unauthorized users to manipulate system permissions or inject malicious scripts. While remote code execution (RCE) incidents are less frequent, they remain critical when they occur. The platform lacks significant publicized major breaches, yet the recurring nature of these vulnerabilities suggests ongoing difficulties in patching legacy code or securing API endpoints. Security teams must prioritize rigorous input validation and strict access control mechanisms to mitigate these known risks, ensuring that the convenience of cloud-based analytics does not compromise data integrity or user privacy.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-46327 | Go Snowflake Driver has race condition when checking access to Easy Logging configuration file — gosnowflakeCWE-367 | 3.3 | Low | 2025-04-28 |
| CVE-2023-34231 | Snowflake Golang Driver vulnerable to Command Injection — gosnowflakeCWE-77 | 8.0 | - | 2023-06-08 |
This page lists every published CVE security advisory associated with snowflakedb. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.