EPSS
Percentile
30.8%
Apache InLong is vulnerable to Information Disclosure. The vulnerability exists in multiple functions due to Insecure Default Initialization of Resources, which allows a remote attacker to access deleted user’s data after registering.
github.com/advisories/GHSA-h79m-5cm2-278c
github.com/apache/inlong/commit/5ad8701e94e104f86df0b51be9da6c3300de911a
github.com/apache/inlong/pull/7836
lists.apache.org/thread/shvwwr6toqz5rr39rwh4k03z08sh9jmr