Improper Neutralization of Special Elements in Output Used by a Downstream Component (βInjectionβ) vulnerability in Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.8.0, the attacker can create misleading or false log records, making it harder to audit
and trace malicious activities.Β Users are advised to upgrade to Apache InLongβs 1.9.0 or cherry-pick [1] to solve it.
[
{
"cpes": [
"cpe:2.3:a:apache:inlong:*:*:*:*:*:*:*:*"
],
"vendor": "apache",
"product": "inlong",
"versions": [
{
"status": "affected",
"version": "1.4.0",
"versionType": "semver",
"lessThanOrEqual": "1.8.0"
}
],
"defaultStatus": "unknown"
}
]