Vulnerability Database

318,205

Total vulnerabilities in the database

CVE-2025-3717

When using the Grafana Snowflake Datasource Plugin, if Oauth passthrough is enabled on the datasource, and multiple users are using the same datasource at the same time on a single Grafana instance, it could result in

the wrong user identifier being used, and information for which the viewer is not authorized being returned.

This issue affects Grafana Snowflake Datasource Plugin: from 1.5.0 before 1.14.1.

Published: Nov 11, 2025
Updated: Nov 12, 2025
CVE: CVE-2025-3717
Exploit:

No technical information available.

CWEs:

CWE-653

Affected Software
References

No affected software listed.

https://grafana.com/security/security-advisories/cve-2025-3717/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo