25 matches found
Security Bulletin: Due to the use of IBM Tivoli Monitoring and IBM Db2, IBM Cloud Pak System is affected by multiple vulnerabilities
Summary IBM Tivoli Monitoring code execution and IBM Db2 vulnerabilities have been found in IBM Tivoli Monitoring shipped with IBM Cloud Pak System IBM Tivoli MonitoringITM patternType itm pType, and IBM Cloud Pak System DB2 pattern type db2 pType shipped with Cloud Pak System. Vulnerabilities we...
Security Bulletin: IBM® Db2® federated server is affected by a vulnerability in Apache Parquet (CVE-2025-30065).
Summary Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code. Users are recommended to upgrade to version 1.15.1, which fixes the issue. Note: A Db2 server is not vulnerable to CVE-2025-30065 if the database manager...
Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to tampering and elevation of privilege (CVE-2025-30065) due to the use of IBM Db2
Summary IBM Virtualization Engine TS7700 is susceptible to a tampering and privilege escalation vulnerability CVE-2025-30065, due to the use of IBM Db2, which is primarily embedded to store metadata related to the data it manages. Additionally, this patch also includes updates for other...
Security Bulletin: Apache Parquet Common Vulnerability reported in Cloudera offerings with IBM. Fixes available from Cloudera
Summary On April 1, 2025, a critical vulnerability in the parquet-avro module of Apache Parquet CVE-2025-30065, CVSS score 10.0 was announced. Vulnerability Details CVEID:CVE-2025-30065 DESCRIPTION: Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows ba...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
CVE-2025-30065 == Dangerous Deserialization in Parquet-Avro 🔥...
Security Bulletin: Apache Parquet vulnerabilities affect watsonx.data
Summary Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code and this could affect watsonx.data. Vulnerability Details CVEID:CVE-2025-30065 DESCRIPTION: Schema parsing in the parquet-avro module of Apache Parquet 1.15...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
Canary Exploit for Parquet CVE-2025-30065...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
TRAI-001 CVE-2025-30065: Apache Parquet Remote Code Execution...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
TRAI-001 CVE-2025-30065: Apache Parquet Remote Code Execution...
Apache Parquet < 1.15.1 Remote Code Execution (CVE-2025-30065)
The version of Apache Parquet on the remote host is prior to 1.15.1. It is, therefore, affected by a remote code execution vulnerability: - Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code Users are recommended to...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
CVE-2025-30065 This repository illustrates how to exploit CVE...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
CVE-2025-30065 PoC Usage Build the image sh docker b...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
💥 CVE-2025-30065 - Parquet Deserialization PoC This project d...
Exploit for Deserialization of Untrusted Data in Apache Parquet_Java
CVE-2025-30065 Proof of Concept - Apache Parquet RCE FOR EDUC...
Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code
A maximum severity security vulnerability has been disclosed in Apache Parquet's Java Library that, if successfully exploited, could allow a remote attacker to execute arbitrary code on susceptible instances. Apache Parquet is a free and open-source columnar data file format that's designed for...
CVE-2025-30065 vulnerabilities
Vulnerabilities for packages: druid...
CVE-2025-30065 vulnerabilities
Vulnerabilities for packages: druid...
CVE-2025-30065
A flaw was found in the parquet-avro module of Apache Parquet. This vulnerability allows attackers to execute arbitrary code via schema parsing. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria...
ai.h2o:h2o-hive (>=3.42.0.1 <=3.46.0.11), ai.onehouse:lakeview-sync-tool (>=0.18.5 <=0.30.0) +472 more potentially affected by CVE-2025-30065 via org.apache.parquet:parquet-avro (>=1.10.0 <=1.15.0)
org.apache.parquet:parquet-avro MAVEN version =1.10.0, =3.42.0.1, =0.18.5, =0.6.1.2, =0.1.1, =0.3.0, =1.0.0, =1.0.0, =1.2.3, =1.0.0-beta.2, =1.0.0, =1.0.0-beta.4, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.2 and more Source cves: CVE-2025-30065 Source advisory: SNYK:JAVA-ORGAPACHEPARQUET-9638681...
CVE-2025-30065
Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code Users are recommended to upgrade to version 1.15.1, which fixes the issue...