VYPR

Grafana Snowflake Datasource

by Grafana

CVEs (2)

  • CVE-2025-3717LowNov 11, 2025
    risk 0.14cvss epss 0.00

    When using the Grafana Snowflake Datasource Plugin, if Oauth passthrough is enabled on the datasource, and multiple users are using the same datasource at the same time on a single Grafana instance, it  could result in  the wrong user identifier being used, and information…

  • CVE-2026-28381Jun 22, 2026
    risk 0.00cvss epss 0.00

    The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries against the data source to read/write files between the local grafana server and the connected Snowflake host.