Description
Improper handling of untrusted remote references in Snowflake CLI versions prior to 3.19 allowed server-side request forgery. The SQL statement reader's !source/!load directives could reference remote URLs that were retrieved at runtime without sufficient restriction on the request destination. By supplying crafted SQL content processed through a vulnerable command path, an attacker could cause the victim's environment to issue unintended outbound requests to internal or otherwise non-public network locations, and could cause remote SQL content to be retrieved and executed in the context of the victim user's session. Successful exploitation requires the victim to process attacker-controlled content through a vulnerable command path and is limited by the privileges available to that session and environment. The fix is available in Snowflake CLI version 3.19, which adds an option to disable remote URL retrieval.
Published: 2026-06-29
Score: 4.1 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Improper handling of untrusted remote references in Snowflake CLI allows server‑side request forgery through the !source/!load directives. When a vulnerable command path processes crafted SQL content, the CLI retrieves remote URLs at runtime without restricting the destination, potentially allowing an attacker to cause the victim’s environment to issue outbound requests to internal or non‑public network locations and to fetch and execute remote SQL content in the context of the victim user’s session. The impact is limited to the privileges of that session and environment; however, unintended access to internal services or execution of foreign SQL code remains possible.

Affected Systems

Snowflake CLI versions prior to 3.19 are affected. The vendor, Snowflake, released a fix in CLI version 3.19, which introduces an option to disable remote URL retrieval during the !source/!load operation.

Risk and Exploitability

The CVSS score of 4.1 indicates a moderate severity. EPSS data is not available, and the vulnerability is not listed in CISA’s KEV catalog, suggesting current exploit evidence is limited. Successful exploitation requires the attacker to supply malicious content that the victim processes via a vulnerable command path, and it is constrained by the victim’s session privileges. The likely attack vector is an attacker‑controlled SQL script that the victim executes using !source/!load, which then causes the CLI to fetch data from a tampered URL and evaluate it as part of the victim’s session.

Generated by OpenCVE AI on June 29, 2026 at 18:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to Snowflake CLI version 3.19 or later to receive the fix that disables remote URL retrieval during !source/!load.
  • If an upgrade is not immediately possible, configure the CLI or the execution environment to disable remote URL retrieval, preventing external content from being fetched.
  • Reduce the privileges of user accounts that can execute !source/!load or limit the scope of SQL scripts that are processed, and monitor outbound network traffic from the CLI for anomalous requests to internal or non‑public locations.

Generated by OpenCVE AI on June 29, 2026 at 18:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 29 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 29 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description Improper handling of untrusted remote references in Snowflake CLI versions prior to 3.19 allowed server-side request forgery. The SQL statement reader's !source/!load directives could reference remote URLs that were retrieved at runtime without sufficient restriction on the request destination. By supplying crafted SQL content processed through a vulnerable command path, an attacker could cause the victim's environment to issue unintended outbound requests to internal or otherwise non-public network locations, and could cause remote SQL content to be retrieved and executed in the context of the victim user's session. Successful exploitation requires the victim to process attacker-controlled content through a vulnerable command path and is limited by the privileges available to that session and environment. The fix is available in Snowflake CLI version 3.19, which adds an option to disable remote URL retrieval.
Title Snowflake CLI Server-Side Request Forgery via Arbitrary URL Fetch in !source/!load
Weaknesses CWE-829
CWE-918
References
Metrics cvssV3_1

{'score': 4.1, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: SNOWFLAKE

Published:

Updated: 2026-06-29T17:23:12.223Z

Reserved: 2026-06-29T16:08:38.011Z

Link: CVE-2026-13751

cve-icon Vulnrichment

Updated: 2026-06-29T17:23:04.751Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-29T18:30:06Z

Weaknesses
  • CWE-829

    Inclusion of Functionality from Untrusted Control Sphere

  • CWE-918

    Server-Side Request Forgery (SSRF)