Incorrect Permission Assignment for Critical Resource

Overview snowflake-connector-python is a Snowflake Connector for Python Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource via the ConfigManager.readconfig path in configmanager.py. An attacker can modify sensitive settings stored in the...

EUVD-2025-12611

Malicious code in bioql PyPI...

EUVD-2025-0190

Malicious code in bioql PyPI...

EUVD-2025-0179

Malicious code in bioql PyPI...

EUVD-2025-0122

Malicious code in bioql PyPI...

EUVD-2025-12597

Malicious code in bioql PyPI...

EUVD-2022-7229

Malicious code in bioql PyPI...

EUVD-2025-12598

Malicious code in bioql PyPI...

EUVD-2025-12608

Malicious code in bioql PyPI...

EUVD-2023-0241

Malicious code in bioql PyPI...

EUVD-2023-1657

Malicious code in bioql PyPI...

EUVD-2024-0163

Malicious code in bioql PyPI...

EUVD-2025-0120

Malicious code in bioql PyPI...

EUVD-2023-1814

Malicious code in bioql PyPI...

Exploit for Command Injection in Snowflake Snowflake_Connector

Snowflake Connector CVE-2025-24793 PoC This repository contai...

Security Bulletin: IBM App Connect Enterprise is vulnerable to Time-of-check Time-of-use (TOCTOU) Race Condition due to Node.js module snowflake ( CVE-2025-46328 )

Summary IBM App Connect Enterprise Discovery Connectors is vulnerable to Time-of-check Time-of-use TOCTOU Race Condition due to Node.js module snowflake Vulnerability Details CVEID:CVE-2025-46328 DESCRIPTION: snowflake-connector-nodejs is a NodeJS driver for Snowflake. Versions starting from 1.10...

CVE-2025-24788

snowflake-connector-net is the Snowflake Connector for .NET. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for .NET in which files downloaded from stages are temporarily placed in a world-readable local directory, making them accessible to unauthorized users on th...

CVE-2025-24795

The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. On Linux systems, when temporary credential...

CVE-2025-24794

The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. The OCSP response cache uses pickle as the...

CVE-2023-34230

snowflake-connector-net, the Snowflake Connector for .NET, is vulnerable to command injection prior to version 2.0.18 via SSO URL authentication. In order to exploit the potential for command injection, an attacker would need to be successful in 1 establishing a malicious resource and 2 redirecti...