Critical Unauthenticated RCE in mcp-atlassian — Upgrade to 0.17.0 Now | Security
CVE 2026 27825 is a critical unauthenticated remote code execution vulnerability in mcp atlassian versions prior to 0.17.0. The flaw arises from missing path t…
Published on MyPrivateClaw
Mar 31, 2026, 3:43 PM UTC
Coverage date
Mar 2, 2026
Last updated
Apr 4, 2026, 5:45 AM UTC
News summary
On February 24, 2026, the maintainer of the mcp atlassian project (sooperset) released version 0.17.0 to address CVE 2026 27825, a critical unauthenticated remote code execution vulnerability. The flaw stems from missing directory confinement in the Confluence attachment download tools: the download attachment and download content attachments tools accepted attacker supplied file paths and wrote files without restricting them to a safe base directory or checking for path traversal or symlinks. When the MCP HTTP transport is exposed on 0.0.0.0 with no authentication — a common default configuration — an unauthenticated attacker on the same network can overwrite arbitrary files such as /.bashrc or /.ssh/authorized keys to achieve persistence or remote code execution. A related high severity SSRF vulnerability (CVE 2026 27826) was patched in the same release, allowing arbitrary server side…