CVE Catalog

CVE-2026-41103

Critical
Published: Translated: NVD NIST

Summary

Incorrect implementation of authentication algorithm in Microsoft SSO Plugin for Jira and Confluence allows an unauthorized attacker to elevate privileges over a network.

Risk Assessment

An attacker could gain access to resources with elevated privileges, posing a serious security threat to the organization.

Recommendation

It is recommended to update the plugin to the latest version and review the security configuration of the system.

Original NVD description (English source)

Incorrect implementation of authentication algorithm in Microsoft SSO Plugin for Jira & Confluence allows an unauthorized attacker to elevate privileges over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS