←back to thread

Max severity RCE flaw discovered in widely used Apache Parquet

(www.bleepingcomputer.com)
174 points andy99 | 1 comments | 4/6/2025, 5:21:00 PM | HN request time: 0.363s | source
Show context
tptacek ◴[4/6/2025, 7:56:00 PM] No.43604427[source]

Broken record, but "has a CVSS score of 10.0" is literally meaningless. In fact, over the last couple years, I've come to take vulnerabilities with very high CVSS scores less seriously. Remember, Heartbleed was a "7.5".

replies(5): >>43604810 #>>43605410 #>>43606314 #>>43609363 #>>43610358 #
1. junon ◴[4/7/2025, 12:07:00 PM] No.43610358[source]

Yep. Any software these days can be "network accessible" if you put a server in front of it; that's usually what pumps the score up.