CNNVD-202506-3647 Information

CNNVD ID

CNNVD-202506-3647

Related CVE

CVE-2025-32897

• CNNVD Published: 2025-06-28

Description (Chinese)

Apache Seata是美国阿帕奇（Apache）基金会的一款在微服务架构下提供高性能和简单易用的分布式事务服务的开源项目。 Apache Seata 2.0.0至2.3.0之前版本存在代码问题漏洞，该漏洞源于反序列化不可信数据。

Description (English)

Apache Seeta is an open-source project of the Apache Foundation in the United States that provides high performance and easy-to-use distributed services under the micro-service structure. There is a code problem gap in the pre-Apache Seata 2.0 to 2.3.0 version, which stems from the lack of credibility of the back-series data.

Hazard Level

Low

Vulnerability Type

代码问题

Affected Vendor

阿帕奇

Published

2025-06-28

Last Modified

2026-02-24

References

https://lists.apache.org/thread/9fhtf7yvpjpzlwd1m0wfgg6tp2btxpy1 https://www.cve.org/CVERecord?id=CVE-2024-47552 https://access.redhat.com/security/cve/cve-2025-32897

Patch

https://seata.incubator.apache.org/