Skip to main content

Snowflake CLI EUVDEUVD-2026-40133

| CVE-2026-13748 MEDIUM
Path Traversal (CWE-22)
2026-06-29 SNOWFLAKE GHSA-8394-2w3w-5r9h
6.3
CVSS 3.1 · Vendor: SNOWFLAKE
Share

Severity by source

Vendor (SNOWFLAKE) PRIMARY
6.3 MEDIUM
AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
vuln.today AI
6.3 MEDIUM

Local vector because victim must execute CLI on attacker content locally; PR:N as attacker needs no host privileges; UI:R for required victim action; S:C because data exits to Snowflake cloud; C:H for arbitrary file read with no integrity or availability impact.

3.1 AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
4.0 AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

Primary rating from Vendor (SNOWFLAKE).

CVSS VectorVendor: SNOWFLAKE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

2
Patch available
Jun 29, 2026 - 18:01 EUVD
Analysis Generated
Jun 29, 2026 - 16:34 vuln.today

DescriptionCVE.org

Improper restriction of file path resolution in Snowflake CLI versions prior to 3.19 allowed arbitrary local file content to be read and transmitted to Snowflake services. An attacker could exploit this by supplying crafted repository or project content that referenced files outside the intended project boundary, causing Snowflake CLI to read local files and upload or embed their contents during deployment or SQL template processing. Successful exploitation required the victim to process attacker-controlled project content, and retrieval of exfiltrated data depended on access to the victim's Snowflake account artifacts such as query history or uploaded stage content. The fix is available in Snowflake CLI version 3.19, and users must manually upgrade.

AnalysisAI

Path traversal in Snowflake CLI versions prior to 3.19 enables arbitrary local file exfiltration to Snowflake cloud services when a victim processes attacker-controlled project or repository content. The CLI fails to restrict file path resolution during deployment or SQL template processing, allowing crafted project files to reference and transmit content from outside the intended project directory boundary to Snowflake-hosted artifacts. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Deliver crafted project repo with path traversal refs
Delivery
Victim runs CLI deploy or template command
Exploit
CLI resolves out-of-bounds file paths on local host
Execution
Sensitive local files read by CLI process
Persist
Contents uploaded to victim's Snowflake stage or embedded in artifacts
Impact
Attacker retrieves exfiltrated data from Snowflake account

Vulnerability AssessmentAI

Exploitation The victim must have a Snowflake CLI version prior to 3.19 installed and must actively execute a deployment or SQL template processing command (such as snow deploy or equivalent) against attacker-controlled project content - this is confirmed by CVSS UI:R (user interaction required). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 base score of 6.3 (Medium) with vector AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N accurately reflects the attack model: exploitation is local (the victim must execute the CLI on attacker-supplied content), requires no attacker privileges on the victim system, mandates active victim interaction, and results in a scope change because exfiltrated data leaves the victim's machine and enters Snowflake's cloud environment. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker publishes or shares a malicious Snowflake project template - for example, via a public GitHub repository, a community forum post, or a compromised dependency - containing path-traversal references (such as ../../.aws/credentials) in deployment configuration or SQL template files. When a developer with a pre-3.19 Snowflake CLI clones the repository and runs a deployment or template processing command, the CLI resolves the traversal paths, reads the referenced sensitive files, and uploads or embeds their contents into Snowflake stage storage or query artifacts. …
Remediation Upgrade Snowflake CLI to version 3.19 or later, which is the vendor-confirmed fix per the advisory at https://community.snowflake.com/s/article/Snowflake-CLI-Vulnerability-Advisory; the vendor notes that upgrade must be performed manually as no automatic update mechanism is described. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-40133 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy