CVE-2025-46326

Name of the Vulnerable Software and Affected Versions snowflake-connector-net versions 2.1.2 through 4.4.0

Description The issue concerns a Time-of-Check to Time-of-Use (TOCTOU) race condition. When using the Easy Logging feature on Linux and macOS, the connector reads logging configuration from a user-provided file. The connector verifies that the configuration file can be written to only by its owner, but this check is vulnerable to a TOCTOU race condition and does not verify that the file owner matches the user running the connector. This could allow a local attacker with write access to the configuration file or the directory containing it to overwrite the configuration and gain control over logging level and output location.

Recommendations For snowflake-connector-net versions 2.1.2 through 4.4.0, update to version 4.4.1 to resolve the issue. As a temporary workaround, consider restricting access to the configuration file and the directory containing it to prevent unauthorized modifications. Additionally, ensure that the file owner matches the user running the connector to minimize the risk of exploitation.