浏览 23+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-3293 | snowflakedb snowflake-jdbc JDBC URL SdkProxyRoutePlanner.java SdkProxyRoutePlanner redos | snowflakedb | snowflake-jdbc | Low | 3.3 | 2026-02-27 05:32:09 | Deep Dive |
| CVE-2025-46329 | Snowflake Connector for C/C++ inserts client-side encryption key in DEBUG logs | snowflakedb | libsnowflakeclient | Low | 3.3 | 2025-04-29 04:35:49 | Deep Dive |
| CVE-2025-46330 | Snowflake Connector for C/C++ retries malformed requests | snowflakedb | libsnowflakeclient | Low | 3.3 | 2025-04-29 04:34:37 | Deep Dive |
| CVE-2025-46328 | NodeJS Driver for Snowflake has race condition when checking access to Easy Logging configuration file | snowflakedb | snowflake-connector-nodejs | Low | 3.3 | 2025-04-28 22:33:10 | Deep Dive |
| CVE-2025-46327 | Go Snowflake Driver has race condition when checking access to Easy Logging configuration file | snowflakedb | gosnowflake | Low | 3.3 | 2025-04-28 22:33:05 | Deep Dive |
| CVE-2025-46326 | Snowflake Connector for .NET has race condition when checking access to Easy Logging configuration file | snowflakedb | snowflake-connector-net | Low | 3.3 | 2025-04-28 22:33:02 | Deep Dive |
| CVE-2025-27496 | Snowflake JDBC Driver client-side encryption key in DEBUG logs | snowflakedb | snowflake-jdbc | Low | 3.3 | 2025-03-13 19:01:33 | Deep Dive |
| CVE-2025-24795 | The Snowflake Connector for Python uses insecure cache files permissions | snowflakedb | snowflake-connector-python | Medium | 4.4 | 2025-01-29 20:30:18 | Deep Dive |
| CVE-2025-24794 | The Snowflake Connector for Python uses insecure deserialization of the OCSP response cache | snowflakedb | snowflake-connector-python | Medium | 6.7 | 2025-01-29 20:25:16 | Deep Dive |
| CVE-2025-24793 | Snowflake Connector for Python has an SQL Injection in write_pandas | snowflakedb | snowflake-connector-python | High | 7.0 | 2025-01-29 20:23:02 | Deep Dive |
| CVE-2025-24788 | Snowflake Connector for .NET has weak temporary files permissions | snowflakedb | snowflake-connector-net | Medium | 5.0 | 2025-01-29 20:19:16 | Deep Dive |
| CVE-2025-24790 | Snowflake JDBC uses insecure temporary credential cache file permissions | snowflakedb | snowflake-jdbc | Medium | 4.4 | 2025-01-29 17:49:20 | Deep Dive |
| CVE-2025-24789 | Snowflake JDBC allows an untrusted search path on Windows | snowflakedb | snowflake-jdbc | High | 7.8 | 2025-01-29 17:46:21 | Deep Dive |
| CVE-2025-24791 | snowflake-connector-nodejs has incorrect validation of temporary credential cache file permissions | snowflakedb | snowflake-connector-nodejs | Medium | 4.4 | 2025-01-29 16:59:25 | Deep Dive |
| CVE-2025-24792 | Snowflake PHP PDO Driver has a Signed-to-Unsigned Conversion Error | snowflakedb | pdo_snowflake | Medium | 4.4 | 2025-01-29 15:27:06 | Deep Dive |
| CVE-2024-49750 | Snowflake Connector for Python has sensitive data in logs | snowflakedb | snowflake-connector-python | Medium | 5.5 | 2024-10-24 22:03:07 | Deep Dive |
| CVE-2024-28851 | Elevation of privilege in Snowflake Hive MetaStore Connector Helper script | snowflakedb | snowflake-hive-metastore-connector | Medium | 4.0 | 2024-03-15 18:59:31 | Deep Dive |
| CVE-2023-51662 | Snowflake Connector .NET does not properly check the Certificate Revocation List (CRL) | snowflakedb | snowflake-connector-net | Medium | 6.0 | 2023-12-22 16:27:05 | Deep Dive |
| CVE-2023-34230 | Snowflake Connector vulnerable to Command Injection | snowflakedb | snowflake-connector-net | High | 7.3 | 2023-06-08 20:29:50 | Deep Dive |
| CVE-2023-34233 | Snowflake Python Connector vulnerable to Command Injection | snowflakedb | snowflake-connector-python | 高危 | - | 2023-06-08 20:22:13 | Deep Dive |