Skip to main content

Snowflake CLI CVE-2026-13744

| EUVDEUVD-2026-40129 HIGH
SQL Injection (CWE-89)
2026-06-29 SNOWFLAKE GHSA-6whc-m7mm-g2x4
8.8
CVSS 3.1 · NVD
Share

Severity by source

Vendor (SNOWFLAKE) PRIMARY
HIGH
qualitative
NVD
8.8 HIGH
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
vuln.today AI
8.8 HIGH

Attacker needs no credentials (PR:N) but the victim must process malicious content through a CLI command (UI:R); injected SQL yields full read/write/destroy within the session, so C/I/A:H.

3.1 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (SNOWFLAKE).

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

6
Analysis Updated
Jun 30, 2026 - 16:30 vuln.today
v3 (cvss_changed)
Analysis Updated
Jun 30, 2026 - 16:29 vuln.today
v2 (cvss_changed)
Re-analysis Queued
Jun 30, 2026 - 16:22 vuln.today
cvss_changed
CVSS changed
Jun 30, 2026 - 16:22 NVD
8.3 (HIGH) 8.8 (HIGH)
Patch available
Jun 29, 2026 - 18:01 EUVD
Analysis Generated
Jun 29, 2026 - 16:32 vuln.today

DescriptionNVD

Improper neutralization of attacker-controlled content in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. By supplying crafted repository content, project configuration, manifest data, or specification input, an attacker could cause Snowflake CLI to execute unintended SQL in the context of the victim user's Snowflake session. Successful exploitation requires the victim to process attacker-controlled content through a vulnerable command path and is limited by the privileges assigned to that session. The fix is available in Snowflake CLI version 3.19. Users must manually upgrade.

AnalysisAI

SQL injection in Snowflake CLI versions 1.2.2 through 3.18.x allows an attacker to execute unintended SQL statements within a victim's authenticated Snowflake session by planting crafted repository content, project configuration, manifest, or specification input. When a developer processes that attacker-controlled content through a vulnerable command path, the injected SQL runs with the victim's session privileges, enabling data theft, modification, or destruction up to that user's authorization level. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Plant malicious SQL in project/manifest content
Delivery
Victim clones repo and runs CLI command
Exploit
CLI injects SQL into victim's Snowflake session
Execution
Execute unintended SQL at victim privileges
Impact
Exfiltrate or modify Snowflake data

Vulnerability AssessmentAI

Exploitation Exploitation requires the victim to process attacker-controlled content - specifically crafted repository content, project configuration, manifest data, or specification input - through a vulnerable Snowflake CLI command path (UI:R confirmed in the CVSS vector). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Signals are mixed and point to a real but interaction-gated risk rather than a mass-exploitation emergency. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker publishes or contributes a Snowflake CLI project (or pull request) containing a manifest or specification field with embedded malicious SQL. A developer clones the repository and runs a Snowflake CLI command (e.g., deploy or build) against it, at which point the CLI submits the attacker's injected SQL to the developer's authenticated Snowflake session, exfiltrating or altering data the developer can access. …
Remediation Vendor-released patch: Snowflake CLI version 3.19.0 - upgrade to 3.19.0 or later, noting that Snowflake states users must MANUALLY upgrade (there is no automatic update), so pin the new version explicitly in developer machines, build images, and CI/CD pipelines. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all Snowflake CLI instances in your environment running versions 1.2.2 through 3.18.x via asset inventory. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-13744 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy