Snowflake.Data

NuGet3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting Snowflake.Datapage 1 of 1

CVE-2023-34230HIGHCVSS 7.3EG 7.3✓ Fixed in 2.0.18
2023-06-08
vulnerable: 0.1.0 ... 2.0.9 (54 versions)
snowflake-connector-net, the Snowflake Connector for .NET, is vulnerable to command injection prior to version 2.0.18 via SSO URL authentication. In order to exploit the potential for command injection, an attacker would need to be success…
CVE-2023-51662MEDIUMCVSS 6.0EG 6.0✓ Fixed in 2.1.5
2023-12-22
vulnerable: 2.0.25 ... 2.1.4 (6 versions)
The Snowflake .NET driver provides an interface to the Microsoft .NET open source software framework for developing applications. Snowflake recently received a report about a vulnerability in the Snowflake Connector .NET where the checks a…
CVE-2025-46326LOWCVSS 3.3EG 3.3✓ Fixed in 4.4.1
2025-04-28
vulnerable: 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.2.0
snowflake-connector-net is the Snowflake Connector for .NET. Versions starting from 2.1.2 to before 4.4.1, are vulnerable to a Time-of-Check to Time-of-Use (TOCTOU) race condition. When using the Easy Logging feature on Linux and macOS, th…

Check whether Snowflake.Data is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for Snowflake.Data CVEs against the assets you own.

Start Free Scan →