CNNVD-202508-752 Information

CNNVD ID

CNNVD-202508-752

Related CVE

CVE-2025-53606

• CNNVD Published: 2025-08-08

Description (Chinese)

Apache Seata是美国阿帕奇（Apache）基金会的一款在微服务架构下提供高性能和简单易用的分布式事务服务的开源项目。 Apache Seata 2.4.0版本存在安全漏洞，该漏洞源于反序列化不可信数据，可能导致安全风险。

Description (English)

Apache Seeta is an open-source project of the Apache Foundation in the United States that provides high performance and easy-to-use distributed services under the micro-service structure. There is a security loophole in version 2.4.0 of Apache Seata, which stems from the lack of reliable data for back-sequencing, which could lead to security risks.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

阿帕奇

Published

2025-08-08

Last Modified

2026-02-24

References

https://lists.apache.org/thread/ggfd72vvvxjozs81zbcls45zxg64pphx https://access.redhat.com/security/cve/cve-2025-53606

Patch

https://seata.apache.org/download/seata-server