CVE-2023-51785: Apache InLong: Arbitrary File Read Vulnerability in Apache InLong Manager

[Charles Zhang <dockerzhang () apache org>]

Severity: important

Affected versions:

- Apache InLong 1.7.0 through 1.9.0

Description:

Deserialization of Untrusted Data vulnerability in Apache InLong.This issue affects Apache InLong: from 1.7.0 through 
1.9.0, the attackers can make a arbitrary file read attack using mysql driver. Users are advised to upgrade to Apache 
InLong's 1.10.0 or cherry-pick [1] to solve it.

[1]  https://github.com/apache/inlong/pull/9331

Credit:

X1r0z (finder)

References:

https://www.cve.org/CVERecord?id=CVE-2023-51785