Every CVE whose affected-product data names Apache Inlong, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (32)
CVE-2023-51784 — CVSS 9.8 (critical): Improper Control of Generation of Code ('Code Injection') vulnerability in Apache InLong.This issue affects Apache InLong: from 1.5.0…
CVE-2023-35088 — CVSS 9.8 (critical): Improper Neutralization of Special Elements Used in an SQL Command ('SQL Injection') vulnerability in Apache Software Foundation Apache…
CVE-2023-24997 — CVSS 9.8 (critical): Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0…
CVE-2025-27531 — CVSS 9.8 (critical): Deserialization of Untrusted Data vulnerability in Apache InLong. This issue affects Apache InLong: from 1.13.0 before 2.1.0, this issue…
CVE-2023-31062 — CVSS 9.8 (critical): Improper Privilege Management Vulnerabilities in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.2.0…
CVE-2023-31098 — CVSS 9.8 (critical): Weak Password Requirements vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through…
CVE-2024-26579 — CVSS 9.8 (critical): Deserialization of Untrusted Data vulnerability in Apache InLong.This issue affects Apache InLong: from 1.7.0 through 1.11.0, the attackers…
CVE-2023-43668 — CVSS 9.8 (critical): Authorization Bypass Through User-Controlled Key vulnerability in Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.8.0…
CVE-2024-36268 — CVSS 9.8 (critical): Improper Control of Generation of Code ('Code Injection') vulnerability in Apache InLong. This issue affects Apache InLong: from 1.10.0…
CVE-2025-27528 — CVSS 9.1 (critical): Deserialization of Untrusted Data vulnerability in Apache InLong. This issue affects Apache InLong: from 1.13.0 through 2.1.0. This…
CVE-2023-31065 — CVSS 9.1 (critical): Insufficient Session Expiration vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0…
CVE-2023-31066 — CVSS 9.1 (critical): Files or Directories Accessible to External Parties vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache…
CVE-2024-26580 — CVSS 9.1 (critical): Deserialization of Untrusted Data vulnerability in Apache InLong.This issue affects Apache InLong: from 1.8.0 through 1.10.0, the attackers…
CVE-2022-40955 — CVSS 8.8 (high): In versions of Apache InLong prior to 1.3.0, an attacker with sufficient privileges to specify MySQL JDBC connection URL parameters and to…
CVE-2023-27296 — CVSS 8.8 (high): Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong. It could be triggered by authenticated users…
CVE-2023-24977 — CVSS 7.5 (high): Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0…
CVE-2023-46227 — CVSS 7.5 (high): Deserialization of Untrusted Data Vulnerability in Apache Software Foundation Apache InLong. This issue affects Apache InLong: from 1.4.0…
CVE-2023-31103 — CVSS 7.5 (high): Exposure of Resource to Wrong Sphere Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0…
CVE-2023-51785 — CVSS 7.5 (high): Deserialization of Untrusted Data vulnerability in Apache InLong.This issue affects Apache InLong: from 1.7.0 through 1.9.0, the attackers…
CVE-2023-31064 — CVSS 7.5 (high): Files or Directories Accessible to External Parties vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache…
CVE-2023-31058 — CVSS 7.5 (high): Deserialization of Untrusted Data Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0…
CVE-2023-31454 — CVSS 7.5 (high): Incorrect Permission Assignment for Critical Resource Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache…
CVE-2023-34434 — CVSS 7.5 (high): Deserialization of Untrusted Data Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0…
CVE-2023-31453 — CVSS 7.5 (high): Incorrect Permission Assignment for Critical Resource Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache…
CVE-2023-43667 — CVSS 7.5 (high): Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in Apache InLong.This…
CVE-2023-31206 — CVSS 7.5 (high): Exposure of Resource to Wrong Sphere Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0…
CVE-2023-34189 — CVSS 6.5 (medium): Exposure of Resource to Wrong Sphere Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0…
CVE-2025-27526 — CVSS 6.5 (medium): Deserialization of Untrusted Data vulnerability in Apache InLong. This issue affects Apache InLong: from 1.13.0 through 2.1.0. This…
CVE-2023-43666 — CVSS 6.5 (medium): Insufficient Verification of Data Authenticity vulnerability in Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.8.0…
CVE-2025-27522 — CVSS 6.5 (medium): Deserialization of Untrusted Data vulnerability in Apache InLong. This issue affects Apache InLong: from 1.13.0 through 2.1.0. This…
CVE-2023-31101 — CVSS 6.5 (medium): Insecure Default Initialization of Resource Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong…
CVE-2023-30465 — CVSS 5.3 (medium): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Software Foundation Apache…