Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-1657

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01431EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 2:24 a.m.4 views

CVE-2023-34230

snowflake-connector-net, the Snowflake Connector for .NET, is vulnerable to command injection prior to version 2.0.18 via SSO URL authentication. In order to exploit the potential for command injection, an attacker would need to be successful in 1 establishing a malicious resource and 2 redirecti...

8.8CVSS7.8AI score0.01431EPSS
Exploits0References1
CVE
CVE
added 2023/06/08 8:29 p.m.55 views

CVE-2023-34230

CVE-2023-34230 affects the Snowflake Connector for .NET (snowflake-connector-net) prior to version 2.0.18. The underlying issue is a command injection vulnerability via SSO URL authentication. An attacker would need to: (1) establish a malicious resource and (2) persuade a user to use a crafted c...

8.8CVSS8.3AI score0.01431EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/08 8:29 p.m.9 views

CVE-2023-34230 Snowflake Connector vulnerable to Command Injection

snowflake-connector-net, the Snowflake Connector for .NET, is vulnerable to command injection prior to version 2.0.18 via SSO URL authentication. In order to exploit the potential for command injection, an attacker would need to be successful in 1 establishing a malicious resource and 2 redirecti...

7.3CVSS8.9AI score0.01431EPSS
Exploits0References1
OSV
OSV
added 2023/06/08 8:17 p.m.23 views

CVE-2023-34232 Snowflake NodeJS Driver vulnerable to Command Injection

snowflake-connector-nodejs, a NodeJS driver for Snowflake, is vulnerable to command injection via single sign on SSO browser URL authentication in versions prior to 1.6.21. In order to exploit the potential for command injection, an attacker would need to be successful in 1 establishing a malicio...

7.3CVSS8.9AI score0.01897EPSS
Exploits0References6
Rows per page
Query Builder