Unrated severityNVD Advisory· Published Apr 29, 2025· Updated Apr 29, 2025
Snowflake Connector for C/C++ retries malformed requests
CVE-2025-46330
Description
libsnowflakeclient is the Snowflake Connector for C/C++. Versions starting from 0.5.0 to before 2.2.0, incorrectly treat malformed requests that caused the HTTP response status code 400, as able to be retried. This could hang the application until SF_CON_MAX_RETRY requests were sent. This issue has been patched in version 2.2.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=0.5.0, <2.2.0+ 1 more
- (no CPE)range: >=0.5.0, <2.2.0
- (no CPE)range: >= 0.5.0, < 2.2.0
Patches
Vulnerability mechanics
References
2- github.com/snowflakedb/libsnowflakeclient/pull/882/commits/8120a057e041722e114ed2c5dbed3b5a649f72e2mitrex_refsource_MISC
- github.com/snowflakedb/libsnowflakeclient/security/advisories/GHSA-ch37-53v3-m4cmmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.