[oss-security] CVE-2025-53606: Apache Seata (incubating): Deserialization of untrusted Data in Apache Seata Server

Min Ji Thu, 07 Aug 2025 11:49:22 -0700

Severity: low 

Affected versions:


- Apache Seata (incubating) 2.4.0

Description:

Deserialization of Untrusted Data vulnerability in Apache Seata (incubating).

This issue affects Apache Seata (incubating): 2.4.0.

Users are recommended to upgrade to version 2.5.0, which fixes the issue.

Credit:

A.R. (finder)

References:

https://seata.incubator.apache.org
https://www.cve.org/CVERecord?id=CVE-2025-53606

[oss-security] CVE-2025-53606: Apache Seata (incubating): Deserialization of untrusted Data in Apache Seata Server

Reply via email to