Atlassian and the Internet Systems Consortium (ISC) have disclosed several security flaws impacting their products that could be exploited to achieve denial-of-service (DoS) and remote code execution.
The Australian software services provider said that the four high-severity flaws were fixed in new versions shipped last month. This includes -

CVE-2022-25647 (CVSS score: 7.5) - A deserialization



Source: TheHackerNews
Source Link: https://thehackernews.com/2023/09/high-severity-flaws-uncovered-in.html