CVE-2026-28381 - Local File Read/Write to Potential Privilege Escalation via Snowflake GET/PUT
CVE ID :CVE-2026-28381
Published : June 22, 2026, 1:20 p.m. | 2 hours, 20 minutes ago
Description :The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries against the data source to read/write files between the local grafana server and the connected Snowflake host.
Severity: 9.6 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : June 22, 2026, 1:20 p.m. | 2 hours, 20 minutes ago
Description :The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries against the data source to read/write files between the local grafana server and the connected Snowflake host.
Severity: 9.6 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...