PatchSiren

Snowflake CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL Snowflake CVE published 2026-07-14

CVE-2026-15183

CVE-2026-15183 is a critical vulnerability in Snowflake Spark Connector versions prior to 3.2.1. Multiple input validation vulnerabilities can allow attackers to exfiltrate OAuth client credentials, execute arbitrary SQL with the connector's Snowflake role, or redirect COPY operations to attacker-controlled storage. This vulnerability affects users of Snowflake Spark Connector versions prior to 3.2.1 and [truncated]