DoS (Denial of Service) brace-expansion Dependency in Jira Software Data Center

🗓️ 16 Apr 2026 16:38:54Reported by security-metrics-botType

High severity DoS in Jira Data Center via brace expansion; upgrade to 11.3.4 or 10.3.19.

Reporter	Title	Published	Views	Family All 205
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates	7 May 202613:38	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM Event Processing	16 Apr 202612:12	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Event Endpoint Management.	27 Mar 202616:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite - Visual Inspection Component uses brace-expansion dependency which is vulnerable to CVE-2026-25547.	13 Mar 202614:35	–	ibm
IBM Security Bulletins	Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to CVE-2026-25547 in package @isaacs/brace-expansion	30 Mar 202615:06	–	ibm
ATTACKERKB	CVE-2026-25547	4 Feb 202621:51	–	attackerkb
Tenable Nessus	Amazon Linux 2023 : nodejs24, nodejs24-devel, nodejs24-full-i18n (ALAS2023-2026-1609)	30 Apr 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : nodejs22, nodejs22-devel, nodejs22-full-i18n (ALAS2023-2026-1648)	20 May 202600:00	–	nessus
Tenable Nessus	AlmaLinux 10 : nodejs22 (ALSA-2026:7080)	10 Apr 202600:00	–	nessus
Tenable Nessus	AlmaLinux 8 : nodejs:22 (ALSA-2026:7123)	16 Apr 202600:00	–	nessus