Apache · Apache Seata · CVE-2025-32897
Name of the Vulnerable Software and Affected Versions:
Apache Seata (incubating) versions 2.0.0 through 2.3.0
Description:
The issue is related to the deserialization of untrusted data. It is recommended that users upgrade to a fixed version to resolve the issue.
Recommendations:
For Apache Seata (incubating) versions 2.0.0 through 2.3.0, upgrade to version 2.3.0 to fix the issue.