CVE-2025-32897 Information
Jun 30, 2025
cve
Description
Deserialization of Untrusted Data vulnerability in Apache Seata (incubating).
This security vulnerability is the same as CVE-2024-47552 but the version range described in the CVE-2024-47552 definition is too narrow. This issue affects Apache Seata (incubating): from 2.0.0 before 2.3.0.
Users are recommended to upgrade to version 2.3.0 which fixes the issue.
Reference
https://lists.apache.org/thread/9fhtf7yvpjpzlwd1m0wfgg6tp2btxpy1 https://www.cve.org/CVERecord?id=CVE-2024-47552
Related CNNVD
CNNVD-202506-3647 (Published: 2025-06-28)
Share on: