CVE-2025-53606 | Apache Seata up to 2.3.x deserialization

Inserito da Angelo Barbosa | Ago 7, 2025 | CVE

A vulnerability classified as problematic has been found in Apache Seata up to 2.3.x. This affects an unknown part. The manipulation leads to deserialization.

This vulnerability is uniquely identified as CVE-2025-53606. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53606 | Apache Seata up to 2.3.x deserialization

Post correlati

CVE-2024-23807 | Apache Xerces C++ up to 3.2.2 External DTD Scanning use after free

CVE-2024-35749 | Acurax Under Construction Maintenance Mode Plugin up to 2.6 on WordPress authentication spoofing

CVE-2024-9498 | Silabs USBXpress SDK up to 6.7.3 uncontrolled search path

CVE-2025-21389 | Microsoft Windows up to Server 2025 upnphost.dll resource consumption