org.apache.linkis:linkis-datasource is vulnerable to Remote Code Execution (RCE). A remote attacker is able to upload and execute malicious code on the system, using MySQL data source and malicious parameters to configure a new data source which triggers insecure deserialization.