Snowflake Jdbc
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Snowflake Jdbc.
By the Year
In 2026 there have been 0 vulnerabilities in Snowflake Jdbc. Snowflake Jdbc did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 8.80 |
It may take a day or so for new Snowflake Jdbc vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Snowflake Jdbc Security Vulnerabilities
Snowflake JDBC Driver v3.13.28 - Command Injection via Malicious SSO URL
CVE-2023-30535
8.8 - High
- April 14, 2023
Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake. Users of the Snowflake JDBC driver were vulnerable to a command injection vulnerability. An attacker could set up a malicious, publicly accessible server which responds to the SSO URL with an attack payload. If the attacker then tricked a user into visiting the maliciously crafted connection URL, the users local machine would render the malicious payload, leading to a remote code execution. The vulnerability was patched on March 17, 2023 as part of Snowflake JDBC driver Version 3.13.29. All users should immediately upgrade the Snowflake JDBC driver to the latest version: 3.13.29.
Command Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Snowflake Jdbc or by Snowflake? Click the Watch button to subscribe.
