Lucene search
+L

6 matches found

CVE
CVE
added 2026/06/29 4:12 p.m.24 views

CVE-2026-13751

CVE-2026-13751 concerns Snowflake CLI prior to v3.19, where the SQL reader’s !source/!load directives could reference remote URLs retrieved at runtime. The root cause is improper handling of untrusted remote references, enabling server-side request forgery within the vulnerable command path. Impa...

9.6CVSS5.9AI score0.00118EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/06/29 4:7 p.m.6 views

CVE-2026-13750 Snowflake CLI Sensitive Credential Exposure Through Debug Logging

Insertion of sensitive information into log files in Snowflake CLI versions prior to 3.19 allowed plaintext credentials to be written to persistent local debug logs. An attacker could exploit this by obtaining read access to the affected user's local log files, causing credentials such as...

5.5CVSS5.9AI score0.00108EPSS
Exploits0References3
OSV
OSV
added 2026/06/29 3:51 p.m.4 views

CVE-2026-13746 Snowflake CLI SQL Injection Through Improper Neutralization of Local CLI Parameters

Improper neutralization of local CLI parameters in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. A user could trigger this issue by supplying crafted values to vulnerable Cortex SQL or object listing command paths, causing Snowflake CLI to execute unintended SQL in the...

3.6CVSS6.1AI score0.0013EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001993)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001993 advisory. The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local...

6.9CVSS7.9AI score0.00277EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/11/11 11:42 p.m.14 views

CVE-2025-11578

A privilege escalation vulnerability was identified in GitHub Enterprise Server that allowed an authenticated Enterprise admin to gain root SSH access to the appliance by exploiting a symlink escape in pre-receive hook environments. By crafting a malicious repository and environment, an attacker...

7.5CVSS7.3AI score0.00645EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/26 12:0 a.m.5 views

SQLite buffer overflow vulnerability in multiple Apple products (CNVD-2017-32738)

Apple iOS and so on are the products of the United States Apple Apple. Apple iOS is a set of operating systems developed for mobile devices; tvOS is a set of smart TV operating system. SQLite is one of the set of C-based open source embedded relational database management components developed by...

9.8CVSS9.1AI score0.01792EPSS
Exploits0References1
Rows per page
Query Builder