An4Er

**Name of the Vulnerable Software and Affected Versions** Apache DolphinScheduler versions prior to 3.2.2 **Description** A critical issue has been identified in Apache DolphinScheduler, allowing hackers to execute remote code. This poses a significant security risk. The issue affects versions prior to 3.2.2. **Recommendations** To resolve the issue, upgrade Apache DolphinScheduler to version 3.2.2, which fixes the problem.

**Name of the Vulnerable Software and Affected Versions** Apache InLong versions 1.8.0 through 1.10.0 **Description** The issue affects Apache InLong due to deserialization of untrusted data, allowing attackers to read from an arbitrary file using a specific payload. This can enable remote attackers to gain unauthorized access to protected information by transmitting specially crafted data. **Recommendations** For Apache InLong versions 1.8.0 through 1.10.0, upgrade to Apache InLong's 1.11.0 or cherry-pick the solution from the provided GitHub pull request to resolve the issue.