CVE-2025-24790

Name of the Vulnerable Software and Affected Versions Snowflake JDBC Driver versions 3.6.8 through 3.21.0

Description The Snowflake JDBC Driver has a vulnerability that affects Linux systems when temporary credential caching is enabled. In this scenario, the driver caches temporary credentials locally in a world-readable file. This issue allows for the exposure of local credentials.

Recommendations For versions 3.6.8 through 3.21.0, upgrade to version 3.22.0 to resolve the issue. As a temporary workaround, consider disabling temporary credential caching until the patch is applied. Restrict access to the local file where temporary credentials are cached to minimize the risk of exploitation.