Apache InLong is the U.S. Apache (Apache) Foundation’s one-stop massive data integration framework. Provides automated, secure and reliable data transfer capabilities. A deserialization vulnerability exists in Apache InLong versions 1.4.0 to 1.7.0. The vulnerability stems from insecure deserialization processing by an application receiving serialized data submitted by a user, which can be exploited by an attacker to bypass the current logic and read arbitrary files.