pkg:PyPI/snowflake-connector-python

All known vulnerabilities

• HIGH7.3CVE-2023-34233Snowflake Python Connector vulnerable to Command Injection
  from 0, < 3.0.2
• HIGH7.3CVE-2023-34233Snowflake Python Connector vulnerable to Command Injection
  from 0, < 1cdbd3b1403c5ef520d7f4d9614fe35165e101ac | from 0, < 3.0.2
• HIGH7.0CVE-2025-24793snowflake-connector-python vulnerable to SQL Injection in write_pandas
  >= 2.2.5, < 3.13.1
• HIGH7.0snowflake-connector-python vulnerable to SQL Injection in write_pandas
  from 0, < f3f9b666518d29c31a49384bbaa9a65889e72056 | >= 2.2.5, < 3.13.1
• MEDIUM6.7snowflake-connector-python vulnerable to insecure deserialization of the OCSP response cache
  >= 2.7.12, < 3.13.1
• MEDIUM6.7snowflake-connector-python vulnerable to insecure deserialization of the OCSP response cache
  from 0, < 3769b43822357c3874c40f5e74068458c2dc79af | >= 2.7.12, < 3.13.1
• MEDIUM5.9snowflake-connector-python is vulnerable to Regular Expression Denial of Service (ReDoS)
  from 0, < 2.8.2
• MEDIUM5.5The Snowflake Connector for Python stores sensitive data in logs
  from 0, < dbc9284a3c0382c131b971b35e8d6ab93c46f37a | from 0, < 3.12.3
• MEDIUM5.5The Snowflake Connector for Python stores sensitive data in logs
  from 0, < 3.12.3
• MEDIUM4.4snowflake-connector-python vulnerable to insecure cache files permissions
  from 0, < 3769b43822357c3874c40f5e74068458c2dc79af | >= 2.3.7, < 3.13.1
• MEDIUM4.4snowflake-connector-python vulnerable to insecure cache files permissions
  >= 2.3.7, < 3.13.1