All 6 CVE vulnerabilities found in snowflake-connector-python, with AI-generated Chinese analysis, references, and POCs.
Vendor: snowflake-connector-python
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-24795 | The Snowflake Connector for Python uses insecure cache files permissions CWE-276 | 4.4 | Medium | 2025-01-29 |
| CVE-2025-24794 | The Snowflake Connector for Python uses insecure deserialization of the OCSP response cache CWE-502 | 6.7 | Medium | 2025-01-29 |
| CVE-2025-24793 | Snowflake Connector for Python has an SQL Injection in write_pandas CWE-89 | 7.0 | High | 2025-01-29 |
| CVE-2024-49750 | Snowflake Connector for Python has sensitive data in logs CWE-532 | 5.5 | Medium | 2024-10-24 |
| CVE-2023-34233 | Snowflake Python Connector vulnerable to Command Injection CWE-77 | 8.0 | - | 2023-06-08 |
| CVE-2022-42965 | Exponential ReDoS in snowflake-connector-python leads to denial of service CWE-1333 | 3.7 | Low | 2022-11-09 |
All 6 known CVE vulnerabilities affecting snowflake-connector-python with full Chinese analysis, references, and POCs where available.