CVE-2025-46329

Name of the Vulnerable Software and Affected Versions libsnowflakeclient versions 0.5.0 through 2.2.0

Description The issue concerns local logging of sensitive information. When the logging level was set to DEBUG, the Connector would log locally the client-side encryption master key of the target stage during the execution of GET/PUT commands. This key by itself does not grant access to any sensitive data without additional access authorizations, and is not logged server-side by Snowflake.

Recommendations For versions 0.5.0 through 2.2.0, update to version 2.2.0 to resolve the issue. As a temporary workaround, consider setting the logging level to a value other than DEBUG to prevent local logging of sensitive information.