Command Injection in gosnowflake - CVE-2023-34231

 

Command Injection in gosnowflake - CVE-2023-34231

Published: March 7, 2024


Vulnerability identifier: #VU87204
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2023-34231
CWE-ID: CWE-77
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: Snowflake Computing (snowflakedb)
Affected software:
gosnowflake

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists via single sign-on (SSO) browser URL authentication. A remote unauthenticated attacker can set up a malicious, publicly accessible server which responds to the SSO URL with an attack payload, trick the victim into visiting the maliciously crafted connection URL and execute arbitrary code on the target system.


How to mitigate CVE-2023-34231

Install updates from vendor's website.

Sources