Critical deserialization bug in Apache Parquet allows RCE

April 4, 2025

A flaw in code for handling Parquet, Apache’s open-source columnar data file format, allows attackers to run arbitrary code on vulnerable instances.

The vulnerability, tracked as CVE-2025-30065, is a deserialization issue (CWE-502) in Parquet’s Java library that allows execution of maliciously crafted Parquet files.

Continue reading on CSOonline.com.

Cloud Computing, Data Management, Google Cloud Platform

Google Cloud Next ’25: What to expect

April 4, 2025

Artificial Intelligence, Developer, Development Tools

AI demands more software developers, not less

April 7, 2025

Hand-Picked Top-Read Stories

New AI tool targets critical hole in thousands of open source apps

AWS cuts prices of some EC2 Nvidia GPU-accelerated instances

Ending the great network depression

Critical deserialization bug in Apache Parquet allows RCE

Previous Post

Google Cloud Next ’25: What to expect

Next Post

AI demands more software developers, not less

New AI tool targets critical hole in thousands of open source apps

AWS cuts prices of some EC2 Nvidia GPU-accelerated instances

Ending the great network depression

Building a multi-zone and multi-region SQL Server Failover Cluster Instance in Azure

9 APIs you’ll love for AI integrations and automated workflows

Broadcom grows revenues by 20% following VMware purchase, as customers fume about subscription costs

Nvidia aims to bring AI to wireless

JavaScript innovation and the culture of programming