Security Advisory

CVE-2025-27531

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-06 14:55:28

Last updated 2025-06-10 15:30:50

Assigner apache

State PUBLISHED

Description

Deserialization of Untrusted Data vulnerability in Apache InLong. This issue affects Apache InLong: from 1.13.0 before 2.1.0, this issue would allow an authenticated attacker to read arbitrary files by double writing the param. Users are recommended to upgrade to version 2.1.0, which fixes the issue.

← Browse all CVEs View on cve.org ↗