Количество 2
Количество 2
CVE-2025-24795
The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. On Linux systems, when temporary credential caching is enabled, the Snowflake Connector for Python will cache temporary credentials locally in a world-readable file. This vulnerability affects versions 2.3.7 through 3.13.0. Snowflake fixed the issue in version 3.13.1.
GHSA-r2x6-cjg7-8r43
snowflake-connector-python vulnerable to insecure cache files permissions
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-24795 The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. On Linux systems, when temporary credential caching is enabled, the Snowflake Connector for Python will cache temporary credentials locally in a world-readable file. This vulnerability affects versions 2.3.7 through 3.13.0. Snowflake fixed the issue in version 3.13.1. | CVSS3: 4.4 | 0% Низкий | около 1 года назад |
| GHSA-r2x6-cjg7-8r43 snowflake-connector-python vulnerable to insecure cache files permissions | CVSS3: 4.4 | 0% Низкий | около 1 года назад |
Уязвимостей на страницу