A new vulnerability identified as CVE-2025-27522 affects Apache InLong versions 1.13.0 to 2.1.0, allowing potential remote code execution. Users are urged to upgrade to version 2.2.0 or apply the provided patch to mitigate the risk. #CVE-2025-27522 #ApacheInLong
Keypoints
- The vulnerability stems from insecure deserialization during JDBC verification in Apache InLong.
- It affects a wide range of versions from 1.13.0 to 2.1.0, posing substantial security risks.
- The flaw enables attackers to send malicious payloads, potentially resulting in remote code execution.
- Updating to version 2.2.0 or applying the patch is essential for mitigation.
- Despite no known active exploits, the vulnerability is network-exploitable and warrants immediate attention.
Read More: https://thecyberexpress.com/apache-inlong-cve-2025-27522/