Categories:

System functions (System Information)

SYSTEM$CLIENT_VULNERABILITY_INFO

Returns details about common vulnerabilities and exposures (CVE) fixes and related vulnerabilities for Snowflake clients and drivers.

See also:

SYSTEM$CLIENT_VERSION_INFO

Syntax

SYSTEM$CLIENT_VULNERABILITY_INFO()

Arguments

None

Returns

Return a string containing a JSON array of objects. Each object contains information about a specific client and driver, such as SnowSQL, the JDBC driver, and so on.

Each JSON object contains the following structure:

{
  "clientId": "GO",
  "vulnerabilities": [
    {
      "cve": "CVE-2023-34231",
      "severity": "high",
      "maxAffected": "1.6.18"
    },
    {
      "cve": "CVE-2025-46327",
      "severity": "low",
      "minAffected": "1.7.0",
      "maxAffected": "1.13.2"
    }
  ]
}

Where:

clientId

Internal ID of the client or driver. Possible values include:

  • DOTNETDriver

  • GO

  • JDBC

  • JSDriver (Node.js)

  • ODBC

  • PHP_PDO

  • PythonConnector

  • SnowSQL

  • SQLAPI

vulnerabilities

Array of vulnerabilities affecting the client or driver. Each vulnerability is represented as an object with the following name/value pairs:

  • cve is the CVE identifier for the vulnerability.

  • severity is the severity level of the vulnerability. Possible values include: none, low, medium, high, and critical.

  • minAffected is the minimum version of the client or driver that contains this vulnerability. This field is optional, as some vulnerabilities might occur in the first version of a client or driver.

  • maxAffected is the maximum version that contains this vulnerability.

Usage notes

None

Examples

The following example calls the SYSTEM$CLIENT_VERSION_INFO and SYSTEM$CLIENT_VULNERABIITY_INFO system functions. The example parses the JSON strings returned by these functions and presents the data in tabular form.

-- CLIENT VERSION INFO

SELECT
      value:clientAppId::VARCHAR clientAppId
    , value:clientId::VARCHAR clientId
    , value:minimumNearingEndOfSupportVersion::VARCHAR minimumNearingEndOfSupportVersion
    , value:minimumSupportedVersion::VARCHAR minimumSupportedVersion
    , value:recommendedVersion::VARCHAR recommendedVersion
    , value:deprecatedVersions deprecatedVersions
    , value:_customSupportedVersions_ customSupportedVersions
FROM
    TABLE(FLATTEN(PARSE_JSON(SYSTEM$CLIENT_VERSION_INFO())));

-- CLIENT VULNERABILITY INFO

SELECT
    c:clientId::VARCHAR clientId
    , f.value:cve::VARCHAR cve
    , f.value:maxAffected::VARCHAR maxAffected
    , f.value:minAffected::VARCHAR minAffected
    , f.value:severity::VARCHAR severity
FROM
    (
        SELECT value c
        FROM TABLE(FLATTEN(PARSE_JSON(SYSTEM$CLIENT_VULNERABILITY_INFO())))
    ) c,
    lateral flatten(input => c, path => 'vulnerabilities' ) f;