Medium severity6.0OSV Advisory· Published Jun 28, 2025· Updated Apr 15, 2026
CVE-2025-53393
CVE-2025-53393
Description
In Akka through 2.10.6, akka-cluster-metrics uses Java serialization for cluster metrics.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
com.typesafe.akka:akka-cluster-metrics_3Maven | <= 2.10.6 | — |
com.typesafe.akka:akka-cluster-metrics_2.13Maven | <= 2.10.6 | — |
Affected products
3- ghsa-coords2 versionspkg:maven/com.typesafe.akka/akka-cluster-metrics_2.13pkg:maven/com.typesafe.akka/akka-cluster-metrics_3
<= 2.10.6+ 1 more
- (no CPE)range: <= 2.10.6
- (no CPE)range: <= 2.10.6
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.