Severity: Critical

Description: SAS/ACCESS Interface to Snowflake enables users to execute custom Java code, which allows the execution of malicious code.

Potential Impact: An attacker can upload or download files.