2 matches found
CVE-2026-12225
CVE-2026-12225 affects syracom Secure Login (2FA) for Atlassian Jira, Confluence and Bitbucket (v3.4.0.x). The vulnerability enables an authentication bypass: an attacker with valid credentials can bypass 2FA by sending requests with a crafted User-Agent (e.g., AtlassianMobileApp, JIRA), allowing...
CVE-2026-41103
CVE-2026-41103 concerns the Microsoft SSO Plugin for Jira & Confluence, where an incorrect authentication algorithm implementation allows privilege elevation over a network. The risk is described as network-exploitable with no user interaction, high confidentiality and integrity impact, and no av...