First published: Wed Mar 19 2025(Updated: )
Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in Apache Seata (incubating). This issue affects Apache Seata (incubating): through <=2.2.0. Users are recommended to upgrade to version 2.3.0, which fixes the issue.
Credit: security@apache.org
Affected Software | Affected Version | How to fix |
---|---|---|
Apache Seata Server | <=2.2.0 | |
maven/org.apache.seata:seata-parent | >=2.0.0<2.3.0 | 2.3.0 |
Apache Seata Server | >=2.0.0<2.3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-54016 has a high severity rating due to its potential for data amplification attacks.
To fix CVE-2024-54016, upgrade Apache Seata to version 2.3.0 or later.
CVE-2024-54016 affects Apache Seata versions up to and including 2.2.0.
CVE-2024-54016 is an improper handling of highly compressed data vulnerability.
Users of Apache Seata are responsible for resolving CVE-2024-54016 by upgrading their software.