CVE-2026-6442

HIGH 8.3

Improper Command Detection Logic Allows RCE in Cortex Code Command-Line Interface

CVSS Score

8.3

EPSS Score

0.0%

EPSS Percentile

0th

Improper validation of bash commands in Snowflake Cortex Code CLI versions prior to 1.0.25 allowed subsequent commands to execute outside the sandbox. An attacker could exploit this by embedding specially crafted commands in untrusted content, such as a malicious repository, causing the CLI agent to execute arbitrary code on the local device without user consent. Exploitation is non-deterministic and model-dependent. The fix is automatically applied upon relaunch with no user action required.

CWE	CWE-1286
Vendor	snowflake
Product	cortex code cli
Published	Apr 16, 2026
Last Updated	Apr 16, 2026

Stay Ahead of the Next One

Get instant alerts for snowflake cortex code cli

Be the first to know when new high vulnerabilities affecting snowflake cortex code cli are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Snowflake / Cortex Code CLI

<1.0.25

References

NVD ↗ CVE.org ↗ EPSS Data ↗

community.snowflake.com: https://community.snowflake.com/s/article/PromptArmor-Report---Snowflake-Response promptarmor.com: https://www.promptarmor.com/

Credits

PromptArmor