Most recent sightings.

Most recent sightings. https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 01 May 2026 00:08:55 +0000 6f76ce1d-08ea-489a-983c-ac0cd029ffea https://db.gcve.eu/sighting/6f76ce1d-08ea-489a-983c-ac0cd029ffea/export {"uuid": "6f76ce1d-08ea-489a-983c-ac0cd029ffea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-m4f6-vcj4-w5mx", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113913533956588236", "content": "", "creation_timestamp": "2025-01-29T20:29:46.777046Z"} {"uuid": "6f76ce1d-08ea-489a-983c-ac0cd029ffea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-m4f6-vcj4-w5mx", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113913533956588236", "content": "", "creation_timestamp": "2025-01-29T20:29:46.777046Z"} https://db.gcve.eu/sighting/6f76ce1d-08ea-489a-983c-ac0cd029ffea/export Wed, 29 Jan 2025 20:29:46 +0000 3fe4e8ac-e035-4918-a2dc-ed2d3c71a150 https://db.gcve.eu/sighting/3fe4e8ac-e035-4918-a2dc-ed2d3c71a150/export {"uuid": "3fe4e8ac-e035-4918-a2dc-ed2d3c71a150", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-M4F6-VCJ4-W5MX", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3398", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-m4f6-vcj4-w5mx\n\ud83d\udd25 CVSS Score: 6.7 (CVSS_V3)\n\ud83d\udd39 Description: ### Issue\nSnowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. The OCSP response cache uses pickle as the serialization format, potentially leading to local privilege escalation.\n\nThis vulnerability affects versions 2.7.12 through 3.13.0. Snowflake fixed the issue in version 3.13.1.\n\n### Vulnerability Details\nThe OCSP response cache is saved locally on the machine running the Connector using the pickle serialization format. This can potentially lead to local privilege escalation if an attacker has write access to the OCSP response cache file.\n\n### Solution\nSnowflake released version 3.13.1 of the Snowflake Connector for Python, which fixes this issue. We recommend users upgrade to version 3.13.1.\n\n### Additional Information\nIf you discover a security vulnerability in one of our products or websites, please report the issue to HackerOne. For more information, please see our [Vulnerability Disclosure Policy](https://hackerone.com/snowflake?type=team).\n\ud83d\udccf Published: 2025-01-29T20:50:18Z\n\ud83d\udccf Modified: 2025-01-29T20:50:18Z\n\ud83d\udd17 References:\n1. https://github.com/snowflakedb/snowflake-connector-python/security/advisories/GHSA-m4f6-vcj4-w5mx\n2. https://github.com/snowflakedb/snowflake-connector-python\n3. https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.13.1", "creation_timestamp": "2025-01-29T21:11:08.000000Z"} {"uuid": "3fe4e8ac-e035-4918-a2dc-ed2d3c71a150", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-M4F6-VCJ4-W5MX", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3398", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-m4f6-vcj4-w5mx\n\ud83d\udd25 CVSS Score: 6.7 (CVSS_V3)\n\ud83d\udd39 Description: ### Issue\nSnowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. The OCSP response cache uses pickle as the serialization format, potentially leading to local privilege escalation.\n\nThis vulnerability affects versions 2.7.12 through 3.13.0. Snowflake fixed the issue in version 3.13.1.\n\n### Vulnerability Details\nThe OCSP response cache is saved locally on the machine running the Connector using the pickle serialization format. This can potentially lead to local privilege escalation if an attacker has write access to the OCSP response cache file.\n\n### Solution\nSnowflake released version 3.13.1 of the Snowflake Connector for Python, which fixes this issue. We recommend users upgrade to version 3.13.1.\n\n### Additional Information\nIf you discover a security vulnerability in one of our products or websites, please report the issue to HackerOne. For more information, please see our [Vulnerability Disclosure Policy](https://hackerone.com/snowflake?type=team).\n\ud83d\udccf Published: 2025-01-29T20:50:18Z\n\ud83d\udccf Modified: 2025-01-29T20:50:18Z\n\ud83d\udd17 References:\n1. https://github.com/snowflakedb/snowflake-connector-python/security/advisories/GHSA-m4f6-vcj4-w5mx\n2. https://github.com/snowflakedb/snowflake-connector-python\n3. https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.13.1", "creation_timestamp": "2025-01-29T21:11:08.000000Z"} https://db.gcve.eu/sighting/3fe4e8ac-e035-4918-a2dc-ed2d3c71a150/export Wed, 29 Jan 2025 21:11:08 +0000