Thousands of Jira instances remain vulnerable to server-side request forgery that redirects malicious requests to resources restricted to a server. The root cause of SSRF is a Web application needs to get resources from another domain to fulfill the request, but the input URL isn’t properly sanitized and could let attackers manipulate the destination. DigitalOcean customers have the highest rate of metadata leak (93%), followed by customers of Google Cloud (80%), Alibaba (71%), AWS (68%), and Hetzner (21%)”]
Source: https://www.darkreading.com/cloud/analysis-of-jira-bug-stresses-impact-of-ssrf-in-public-cloud