68 matches found
Security Bulletin: Due to the use of IBM Tivoli Monitoring and IBM Db2, IBM Cloud Pak System is affected by multiple vulnerabilities
Summary IBM Tivoli Monitoring code execution and IBM Db2 vulnerabilities have been found in IBM Tivoli Monitoring shipped with IBM Cloud Pak System IBM Tivoli MonitoringITM patternType itm pType, and IBM Cloud Pak System DB2 pattern type db2 pType shipped with Cloud Pak System. Vulnerabilities we...
EUVD-2025-30065
Malicious code in bioql PyPI...
Security Bulletin: IBM® Db2® federated server is affected by a vulnerability in Apache Parquet (CVE-2025-30065).
Summary Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code. Users are recommended to upgrade to version 1.15.1, which fixes the issue. Note: A Db2 server is not vulnerable to CVE-2025-30065 if the database manager...
Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to tampering and elevation of privilege (CVE-2025-30065) due to the use of IBM Db2
Summary IBM Virtualization Engine TS7700 is susceptible to a tampering and privilege escalation vulnerability CVE-2025-30065, due to the use of IBM Db2, which is primarily embedded to store metadata related to the data it manages. Additionally, this patch also includes updates for other...
Security Bulletin: Apache Parquet Common Vulnerability reported in Cloudera offerings with IBM. Fixes available from Cloudera
Summary On April 1, 2025, a critical vulnerability in the parquet-avro module of Apache Parquet CVE-2025-30065, CVSS score 10.0 was announced. Vulnerability Details CVEID:CVE-2025-30065 DESCRIPTION: Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows ba...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
CVE-2025-30065 == Dangerous Deserialization in Parquet-Avro 🔥...
K000152311: Busybox vulnerabilities CVE-2022-28391 and CVE-2022-30065
Security Advisory Description CVE-2022-28391 BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. CVE-2022-30065 A...
Security Bulletin: Apache Parquet vulnerabilities affect watsonx.data
Summary Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code and this could affect watsonx.data. Vulnerability Details CVEID:CVE-2025-30065 DESCRIPTION: Schema parsing in the parquet-avro module of Apache Parquet 1.15...
CVE-2021-30065
On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, crafted ModBus packets can bypass the ModBus enforcer. NOTE: this issue exists because of an incomplete fix of CVE-2017-11401...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
Canary Exploit for Parquet CVE-2025-30065...
Apache Parquet 2.9.0 Remote Code Execution
Apache Parquet versions 2.9.0 and below educational simulation of CVE-2025-30065, a critical remote code execution vulnerability in Apache Parquet files. The tool demonstrates how attackers exploit this flaw to gain full system control, while providing mitigation guidance...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
TRAI-001 CVE-2025-30065: Apache Parquet Remote Code Execution...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
TRAI-001 CVE-2025-30065: Apache Parquet Remote Code Execution...
Apache Parquet < 1.15.1 Remote Code Execution (CVE-2025-30065)
The version of Apache Parquet on the remote host is prior to 1.15.1. It is, therefore, affected by a remote code execution vulnerability: - Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code Users are recommended to...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
CVE-2025-30065 This repository illustrates how to exploit CVE...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
CVE-2025-30065 PoC Usage Build the image sh docker b...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
💥 CVE-2025-30065 - Parquet Deserialization PoC This project d...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
CVE-2025-30065 Proof of Concept - Apache Parquet RCE FOR EDUC...
Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code
A maximum severity security vulnerability has been disclosed in Apache Parquet's Java Library that, if successfully exploited, could allow a remote attacker to execute arbitrary code on susceptible instances. Apache Parquet is a free and open-source columnar data file format that's designed for...
CVE-2025-30065 vulnerabilities
Vulnerabilities for packages: druid...