CVE-2025-30065

Parquet files power Big Data & Cloud, but new vulnerabilities like CVE-2025-30065 mean security is a must! Learn about risks, mitigations, and how to validate your Parquet data in my latest article via @DZoneInc. #CloudSecurity #BigData https://t.co/qVks1ANfLM

Actively exploited CVE : CVE-2025-30065

A critical vulnerability (CVE-2025-30065) in the Apache Parquet's parquet-avro module poses a significant risk, allowing attackers to execute arbitrary code through maliciously crafted Parquet files. Major organizations using Parquet for data processing could face severe conse...

A critical vulnerability (CVE-2025-30065) in the Apache Parquet's parquet-avro module poses a significant risk, allowing attackers to execute arbitrary code through maliciously crafted Parquet files. Major organizations using Parquet for data processing could face severe conse...

Two critical vulnerabilities (CVE-2025-24859 and CVE-2025-30065, both with a CVSS score of 10) threaten the securities of systems using Apache Roller and Apache Parquet. Apache Roller allows unauthorized access even after password changes due to a session management flaw, whil...

🚨 CRITICAL SECURITY ALERT 🚨 Apache Parquet Java library contains a severe Remote Code Execution vulnerability (CVE-2025-30065) discovered on April 2, 2025. The flaw in the parquet-avro module allows attackers to execute arbitrary code on affected systems. If you're using http

🚨 CRITICAL SECURITY ALERT🚨 Apache Parquet Java library contains a severe Remote Code Execution vulnerability(CVE-2025-30065) discovered on April 2, 2025. The flaw in the parquet-avro module allows attackers to execute arbitrary code on affected systems. #ApacheParquet #CVE #RCE

Actively exploited CVE : CVE-2025-30065

Actively exploited CVE : CVE-2025-30065

Measured analysis of Apache Parquet CVE-2025-30065 by @the_emmons: "Feels like a clever red team exploit....it requires expertise and time to weaponize, and RCE isn’t a sure thing even if you do get a Parquet file deserialized by a vulnerable instance." https://t.co/h9lZ4XrUjG

🚨 Massive new risk for data systems! CVE-2025-30065 | Apache Parquet Java lib flaw (CVSS 10.0) lets attackers execute arbitrary code via poisoned files. If your pipelines touch untrusted Parquet files, patch NOW. https://t.co/Z02g16z5eD

🚨Nueva vulnerabilidad: CVE-2025-30065 en la librería Java de Apache Parquet (CVSS 10.0) permite a atacantes ejecutar código arbitrario a través de ficheros manipulados. Si tus pipelines procesan archivos Parquet de fuentes no confiables, parchea. Más info aquí:

Apache Parquetで重大な脆弱性、対象者はアップデートを(CVE-2025-30065) #セキュリティ対策Lab #セキュリティ #Security https://t.co/L2iK6W67hR

こんばんは、いかがお過ごしでしょうか「今宵のサイバーセキュリティーについて気になること」情シス部門のゼロトラスト導入に向けて#7　改善活動について考えてみよう、Oracle社が情報漏洩を隠蔽しようとした疑惑、Apache Parquet RCE脆弱性CVE-2025-30065 CVSS10.0 などをお伝えします。 https://t.co/MUuyS6aGAo

Guidance for handling CVE-2025-30065 using Microsoft Security capabilities https://t.co/zWtJ8191S0 #Microsoft #techcommunity

#exploit 1. CVE-2025-2748: XSS To RCE By Abusing Custom File Handlers - Kentico Xperience CMS https://t.co/bMnlsnb4Vd 2. CVE-2025-44228: AnyDesk RCE PoC https://t.co/vGlZNwGVFD 3. CVE-2025-30065: Apache Parquet RCE https://t.co/0uZP5a053F

CVE-2025-30065 Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code Users are recommended to upgrad… https://t.co/vBDcnQHrMI

Vulnerabilidade Crítica no Apache Parquet e Ataques a Servidores Tomcat 1. Vulnerabilidade no Apache Parquet (CVE-2025-30065): - Gravidade: CVSS 10.0 (crítica). - Impacto: Permite execução remota de código arbitrário via arquivos Parquet maliciosos.

Critical security alert for Apache Parquet users! A new max-severity flaw (CVE-2025-30065) could let attackers execute arbitrary code. Patch to version 1.15.1 immediately! https://t.co/ORamrFK2dw https://t.co/PUUdHZ34Sg

A maximum severity remote code execution (RCE) vulnerability has been discovered impacting all versions of Apache Parquet up to and including 1.15.0. The vulnerability is tracked under CVE-2025-30065 and has a CVSS v4 score of 10.0. https://t.co/R1BMRjM38d https://t.co/Ih0PtvYHT7

CVE-2025-30065 : ข้อบกพร่อง RCE ความรุนแรงสูงสุดที่ค้นพบในปาร์เก้ Apache ที่ใช้กันอย่างแพร่หลาย https://t.co/MiSlPj6Vin

CVE-2025-30065 impacts Apache Parquet #ApacheParaquet #CVE-2025-30065 https://t.co/NAourLz3Zz

A maximum severity RCE vulnerability (CVSS 10.0) has been discovered, impacting all versions of Apache Parquet <= v1.15.0. CVE-2025-30065 https://t.co/oR9IowMESz

ثغرة جديدة على Apache Parquet CVE-2025-30065 نوعها RCE و مستوى الخطورة 10 🔥 وكل الاصدارات الى 1.15.0 مصابة تم إغلاق الثغرة في تحديث 1.15.1 التحديث مهم جدا https://t.co/hUHQ32aOzV

🚨 Vulnerabilidad crítica en Apache Parquet Java via 1.15.0 ⚠️ CVE-2025-30065 https://t.co/foqYNktm6w https://t.co/uWRXESReNr

GitHub - bjornhels/CVE-2025-30065: PoC - https://t.co/WYOq1fwxjM

⚠️ A critical #vulnerability (CVE-2025-30065) in Apache Parquet's Java Library could allow remote code execution on vulnerable instances. This issue has a maximum CVSS score of 10.0 🤖 #flaw https://t.co/w7VTsPVylo

A critical vulnerability, CVE-2025-30065, in the Apache Parquet Java library could allow remote code execution, impacting systems that process untrusted Parquet files. With a CVSS score of 10.0, organizations must quickly upgrade to version 1.15.1 to avoid severe threats, incl...

🗞️ Critical RCE Flaw in Apache Parquet Exposes Big Data Systems to Attack A max-severity RCE flaw (CVE-2025-30065) in Apache Parquet up to v1.15.0 threatens big data platforms like Hadoop and cloud services—upgrade to 1.15.1 ASAP to stay safe! There are no active exploits yet,

A critical vulnerability designated CVE-2025-30065 has been discovered in Apache Parquet, with a CVSS score of 10.0, potentially allowing attackers to execute malicious code by leveraging vulnerable applications that process Parquet files. Admins are urged to apply the securit...

広く使用されているApache Parquetで最大の重大度のRCE脆弱性が発見される（CVE-2025-30065） https://t.co/qWOI5lHvkV #Security #セキュリティ #ニュース

📢 CiberSeguridad en menos de 5 minutos 🧱 Apache Parquet vulnerable a RCE – CVE-2025-30065 permite ejecución remota al procesar archivos manipulados; afecta múltiples plataformas de big data. 🎭 Hunters International ahora es World Leaks – Se enfocan en extorsión sin cifrado, h

A critical vulnerability (CVE-2025-30065) in Apache Parquet allows remote code execution via crafted files. Affects versions up to 1.15.0; patched in 1.15.1. Risk to data pipelines is significant. ⚠️ #Apache #DataSecurity #USA link: https://t.co/kFP6D7Rejf https://t.co/nEjyRp9Iz

A severe vulnerability in Apache Parquet's Java Library (CVE-2025-30065) has been disclosed, rated with a critical CVSS score of 10.0, allowing potential remote code execution through specially crafted Parquet files. While no known attacks have been reported yet, the risk is s...

Apache Parquet RCE脆弱性CVE-2025-30065 CVSS10.0信頼できないデータのデシリアライズに起因しており、バージョン 1.15.1 のリリースで修正されました。これは Parquet ファイルをインポートするすべてのデータ パイプラインと分析システムに影響を与える可能性があります。 https://t.co/Si6iFaoydR

🔴 Una vulnerabilidad de ejecución remota de código (RCE) de máxima gravedad (CVE-2025-30065) afecta hoy a todas las versiones de Apache Parquet hasta la 1.15.0 inclusive. 🧉 https://t.co/SebuB1aIX8

CVE-2025-30065 (CVSS 10): Critical Vulnerability Discovered in Apache Parquet Java https://t.co/a45n3sq4jz

🚨 CVE-2025-30065 ⚠️🔴 CRITICAL (10) 🏢 Apache Software Foundation - Apache Parquet Java 🏗️ 0 🔗 https://t.co/8DUwqaa4ab #CyberCron #VulnAlert #InfoSec https://t.co/0wDNbd69xT

[CVE-2025-30065: CRITICAL] Apache Parquet 1.15.0 and earlier versions are vulnerable to arbitrary code execution due to a flaw in the parquet-avro module. Upgrade to version 1.15.1 for a fix.#cybersecurity,#vulnerability https://t.co/bulUKpWxv2 https://t.co/cI4YIHheZN