Apache · Apache Seata · CVE-2025-53606
**Name of the Vulnerable Software and Affected Versions**
Apache Seata (incubating) version 2.4.0
**Description**
The software is susceptible to deserialization of untrusted data. This issue could allow attackers to execute arbitrary code.
**Recommendations**
Upgrade to version 2.5.0.