What is CVE-2026-6442?

CVE-2026-6442 is a high-severity vulnerability in Snowflake Cortex Code Cli, classified under CWE-1286. CVSS score: 8.3/10. Published 2026-04-16.

How severe is CVE-2026-6442?

High severity. CVSS v3 base score is 8.3 out of 10.

Vulnerability in Snowflake Cortex Code Cli

CVE-2026-6442

Improper validation of bash commands in Snowflake Cortex Code CLI versions prior to 1.0.25 allowed subsequent commands to execute outside the sandbox. An attacker could exploit this by embedding specially crafted commands in untrusted cont…

EPSS: 0.001 (17.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.3 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H.

Affected products

Snowflake Cortex Code Cli — versions <1.0.25

Weakness classification (CWE)

CWE-1286

References

community.snowflake.com/s/article/PromptArmor-Report---Snowflake-Response
www.promptarmor.com/

Frequently asked questions

What is CVE-2026-6442?: CVE-2026-6442 is a high-severity vulnerability in Snowflake Cortex Code Cli, classified under CWE-1286. CVSS score: 8.3/10. Published 2026-04-16.
How severe is CVE-2026-6442?: High severity. CVSS v3 base score is 8.3 out of 10.