Race Condition in Snowflake Connector for .NET Affects Logging Configuration
CVE-2025-46326

7HIGH

Key Information:

Vendor

Snowflakedb

Status
Snowflake-connector-net
Vendor
CVE Published:
28 April 2025

What is CVE-2025-46326?

The Snowflake Connector for .NET is susceptible to a time-of-check to time-of-use (TOCTOU) race condition when using the Easy Logging feature on Linux and macOS. This issue arises as the Connector reads logging configuration from a user-specified file and checks if the configuration file can be written by its owner only. However, the verification process is flawed due to a TOCTOU vulnerability, potentially allowing a local attacker with write access to manipulate the configuration. Through this, the attacker can alter the logging level and output location, compromising the integrity of logging mechanisms. This vulnerability has been addressed in version 4.4.1.

Affected Version(s)

snowflake-connector-net >= 2.1.2, < 4.4.1

References

https://github.com/snowflakedb/snowflake-connector-net/se...
x_refsource_CONFIRM
https://github.com/snowflakedb/snowflake-connector-net/co...
x_refsource_MISC
https://github.com/snowflakedb/snowflake-connector-net/re...
x_refsource_MISC

CVSS V3.1

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-46326 : Race Condition in Snowflake Connector for .NET Affects Logging Configuration