Components
Vulnerabilities
Pricing
MCP
API
Docs
Sign up
Login
snowflake-connector-python 4.2.0 | Vulnera… | Sonatype Guide
pypi
snowflake-connector-python
4.2.0
snowflake-connector-python 4.2.0
Published
Jan 7, 2026
•
Policy
compliance
pypi Registry
Developer Trust Score
N/A
Recommended Version:
x.y.z
Latest version with 0 known vulnerabilities that meets your policy.
Compare Versions
Overview
Overview
Versions
202
Versions
202
Vulnerabilities
1
Vulnerabilities
1
Dependencies
15
Dependencies
15
Severity
Critical
(0)
High
(1)
Medium
(0)
Low
(0)
CVSS Score
0.0
10.0
EPSS Score
0.0
1.0
Malware
KEV Status
Published
Filter
Sort: Published (Newest first)
7.5
CVE-2025-66418
urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage and massive memory allocation for the decompressed data. This vulnerability is fixed in 2.6.0.
affected
Severity
High
Published
Dec 6, 2025
