2 matches found
CVE-2026-13746 Snowflake CLI SQL Injection Through Improper Neutralization of Local CLI Parameters
Improper neutralization of local CLI parameters in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. A user could trigger this issue by supplying crafted values to vulnerable Cortex SQL or object listing command paths, causing Snowflake CLI to execute unintended SQL in the...
libsnowflakeclient 安全漏洞
libsnowflakeclient is a Snowflake open source Snowflake tool. A security vulnerability exists in libsnowflakeclient versions prior to 0.5.0 through 2.2.0, which stems from the fact that incorrectly handling malformed requests may cause the application to hang...