Apache Kylin is an open source distributed analytic data warehouse from the Apache Foundation. The product mainly provides SQL query interface on top of Hadoop/Spark and multi-dimensional analysis (OLAP) and other functions. Apache kylin has an input validation error vulnerability, which stems from the fact that Kylin can take user input and load any class via class . forname(…) to load any class. No details of the vulnerability are available.