Security Advisory

CVE-2025-24795

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-29 20:30:18
Last updated 2025-01-31 16:52:33
Assigner GitHub_M
State PUBLISHED

Description

The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. On Linux systems, when temporary credential caching is enabled, the Snowflake Connector for Python will cache temporary credentials locally in a world-readable file. This vulnerability affects versions 2.3.7 through 3.13.0. Snowflake fixed the issue in version 3.13.1.