CVE-2025-27522 – Apache InLong Deserialization of Untrusted Data Remote Code Execution Vulnerability

CVE ID : CVE-2025-27522

Published : May 28, 2025, 8:15 a.m. | 1 hour, 27 minutes ago

Description : Deserialization of Untrusted Data vulnerability in Apache InLong.

This issue affects Apache InLong: from 1.13.0 through 2.1.0. This vulnerability is a secondary mining bypass for CVE-2024-26579. Users are advised to upgrade to Apache InLong’s 2.2.0 or cherry-pick [1] to solve it.

[1]

https://github.com/apache/inlong/pull/11732

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

نوشته های مشابه

CVE-2025-48389 – FreeScout Deserialization Vulnerability (Arbitrary Code Execution)

CVE-2025-48390 – FreeScout Remote Code Injection Vulnerability

CVE-2025-48471 – FreeScout Apache Remote Code Execution Vulnerability

CVE-2025-48472 – FreeScout Access Control Bypass