CVE-2025-27528 – Apache InLong Deserialization of Untrusted Data Remote File Read Vulnerability

May 28, 2025

CVE ID : CVE-2025-27528

Published : May 28, 2025, 8:15 a.m. | 1 hour, 10 minutes ago

Description : Deserialization of Untrusted Data vulnerability in Apache InLong.

This issue affects Apache InLong: from 1.13.0 through 2.1.0.

This
vulnerability allows attackers to bypass the security mechanisms of InLong
JDBC and leads to arbitrary file reading. Users are advised to upgrade to Apache InLong’s 2.2.0 or cherry-pick [1] to solve it.

[1] https://github.com/apache/inlong/pull/11747

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47295 – Fortinet FortiOS Buffer Over-Read Vulnerability

Next Article CVE-2025-27526 – Apache InLong Deserialization of Untrusted Data JDBC Vulnerability

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

Report: 71% of tech leaders won’t hire devs without AI skills

Remedy offers update on ‘FBC: Firebreak,’ details coming improvements — “We’ve seen many players come into the game and leave within the first hour.”

I ran with Samsung’s Galaxy Watch 8 Classic, and it both humbled and motivated me

You can finally move Chrome’s address bar on Android – here’s how

Is your Ring camera showing strange logins? Here’s what’s going on

The details of TC39’s last meeting

The details of TC39’s last meeting

Online Examination System using PHP and MySQL

A tricky, educational quiz: it’s about time..

Remedy offers update on ‘FBC: Firebreak,’ details coming improvements — “We’ve seen many players come into the game and leave within the first hour.”

Remedy offers update on ‘FBC: Firebreak,’ details coming improvements — “We’ve seen many players come into the game and leave within the first hour.”

Ubuntu 25.10 Shrinks its Raspberry Pi Install Footprint

Microsoft kills Movies & TV storefront on Windows and Xbox — here’s what will happen to your purchased media

CVE-2025-27528 – Apache InLong Deserialization of Untrusted Data Remote File Read Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

CVE-2025-42968 – SAP NetWeaver Information Disclosure

Halo Infinite is getting a sequel — but it’s not what you think

CVE-2025-40579 – Siemens SCALANCE LPE9403 Stack-Based Buffer Overflow Vulnerability

CVE-2025-4542 – Freeebird Hotel Cross-Domain Policy Vulnerability

CVE-2025-6329 – ScriptAndTools Real Estate Management System User Delete Handler Authorization Bypass

I’ll never forget these three Windows apps that changed my life forever — So, where are they now as Microsoft turns 50?

Windows 3.1 is now available for the Game Boy Color… kind of

Rilasciata Rocky Linux 9.6: Nuova Versione Basata su Red Hat Enterprise Linux 9.6

CVE-2025-27528 – Apache InLong Deserialization of Untrusted Data Remote File Read Vulnerability

Related Posts