Skip to main content

Snowflake CLI CVE-2026-13746

| EUVDEUVD-2026-40132 MEDIUM
SQL Injection (CWE-89)
2026-06-29 SNOWFLAKE GHSA-656q-44hg-7hm7
5.4
CVSS 3.1 · NVD
Share

Severity by source

Vendor (SNOWFLAKE) PRIMARY
LOW
qualitative
NVD
5.4 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
vuln.today AI
3.6 LOW

Local vector and high complexity reflect self-injection via deliberate local CLI argument supply; PR:L requires an authenticated session; no availability impact applies.

3.1 AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
4.0 AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (SNOWFLAKE).

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

4
Severity Changed
Jun 30, 2026 - 16:22 NVD
LOW MEDIUM
CVSS changed
Jun 30, 2026 - 16:22 NVD
3.6 (LOW) 5.4 (MEDIUM)
Patch available
Jun 29, 2026 - 18:01 EUVD
Analysis Generated
Jun 29, 2026 - 16:33 vuln.today

DescriptionNVD

Improper neutralization of local CLI parameters in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. A user could trigger this issue by supplying crafted values to vulnerable Cortex SQL or object listing command paths, causing Snowflake CLI to execute unintended SQL in the context of that user's Snowflake session. Successful exploitation is constrained to self-injection because the vulnerable parameters were supplied directly through local CLI arguments rather than through project files, repositories, or other external input sources, and impact is limited to the privileges already available to the current session. The fix is available in Snowflake CLI version 3.19, and users must manually upgrade.

AnalysisAI

Snowflake CLI versions prior to 3.19 permit self-injection SQL execution through improper neutralization of local CLI parameters in Cortex SQL and object listing command paths, where crafted argument values cause the tool to construct and execute unintended SQL within the authenticated user's existing Snowflake session. Exploitation is structurally constrained to self-injection - the attacker must themselves supply the malicious values via local CLI arguments, and impact cannot exceed the privileges already held by the current session context. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain local CLI access with valid Snowflake session
Delivery
Craft malicious value for Cortex SQL or listing command argument
Exploit
Invoke vulnerable CLI command path with crafted input
Execution
CLI constructs unintended SQL without sanitization
Persist
Unintended SQL executes within user's Snowflake session
Impact
Data read or modified within session privilege boundary

Vulnerability AssessmentAI

Exploitation Exploitation requires local execution of Snowflake CLI on the attacker's own machine (AV:L), an active authenticated Snowflake session under low-privileged credentials (PR:L), and deliberate use of the Cortex SQL or object listing command paths with crafted argument values (AC:H). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N yields a score of 3.6 (Low), and the signal alignment across all available sources supports treating this as genuinely low priority in most environments. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A user running Snowflake CLI invokes a Cortex SQL or object listing command and supplies a crafted string as a CLI argument - for example, embedding SQL metacharacters or additional SQL statements in a value passed to a vulnerable parameter. The CLI, failing to sanitize the input, incorporates the crafted value directly into the SQL query sent to Snowflake, causing unintended SQL to execute under the user's current session permissions. …
Remediation The primary fix is upgrading Snowflake CLI to version 3.19 or later; Snowflake has confirmed this version contains the patch. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-13746 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy