CVE-2025-27528 – Apache InLong Deserialization of Untrusted Data Remote File Read Vulnerability

May 28, 2025

CVE ID : CVE-2025-27528

Published : May 28, 2025, 8:15 a.m. | 1 hour, 10 minutes ago

Description : Deserialization of Untrusted Data vulnerability in Apache InLong.

This issue affects Apache InLong: from 1.13.0 through 2.1.0.

This
vulnerability allows attackers to bypass the security mechanisms of InLong
JDBC and leads to arbitrary file reading. Users are advised to upgrade to Apache InLong’s 2.2.0 or cherry-pick [1] to solve it.

[1] https://github.com/apache/inlong/pull/11747

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47295 – Fortinet FortiOS Buffer Over-Read Vulnerability

Next Article CVE-2025-27526 – Apache InLong Deserialization of Untrusted Data JDBC Vulnerability

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Smashing Animations Part 4: Optimising SVGs

I test AI tools for a living. Here are 3 image generators I actually use and how

The world’s smallest 65W USB-C charger is my latest travel essential

This Spotlight alternative for Mac is my secret weapon for AI-powered search

Tech prophet Mary Meeker just dropped a massive report on AI trends – here’s your TL;DR

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Simplify Negative Relation Queries with Laravel’s whereDoesntHaveRelation Methods

Cast Model Properties to a Uri Instance in 12.17

My Favorite Obsidian Plugins and Their Hidden Settings

My Favorite Obsidian Plugins and Their Hidden Settings

Rilasciata /e/OS 3.0: Nuova Vita per Android Senza Google, Più Privacy e Controllo per l’Utente

Rilasciata Oracle Linux 9.6: Scopri le Novità e i Miglioramenti nella Sicurezza e nelle Prestazioni

CVE-2025-27528 – Apache InLong Deserialization of Untrusted Data Remote File Read Vulnerability

HPE StoreOnce Faces Critical CVE-2025-37093 Vulnerability — Urges Immediate Patch Upgrade

CISA Adds Qualcomm Vulnerabilities to KEV Catalog

Harness and Traceable Announce Merger to Shape the Future of AI-Driven Software Delivery

Windows 11 24H2 RDP hangs on login, RDP session connecting issues reported

Nvidia will train 100,000 California residents on AI in a first-of-its-kind partnership

CVE-2025-48115 – Javier Revilla ValidateCertify CSRF

Shinken – flexible and scalable monitoring framework

Selenium with Chrome mobile emulator- can’t make interactions

API with NestJS #182. Storing coordinates in PostgreSQL with Drizzle ORM

Facebook welcomes private browsers with dedicated Tor link

CVE-2025-27528 – Apache InLong Deserialization of Untrusted Data Remote File Read Vulnerability

Related Posts