News

CSOonline23d
Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE
The vulnerability, tracked as CVE-2025-30065, is a deserialization issue (CWE-502) in Parquet’s Java library that allows execution of maliciously crafted Parquet files. “This vulnerability can ...