Security Advisory

CVE-2025-27526

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-28 08:07:35
Last updated 2025-05-28 14:00:41
Assigner apache
State PUBLISHED

Description

Deserialization of Untrusted Data vulnerability in Apache InLong. This issue affects Apache InLong: from 1.13.0 through 2.1.0. This vulnerability which can lead to JDBC Vulnerability URLEncdoe and backspace bypass. Users are advised to upgrade to Apache InLongs 2.2.0 or cherry-pick [1] to solve it. [1]  https://github.com/apache/inlong/pull/11747