SCA: security update for mcp-atlassian (GHSA-489g-7rxv-6c8q)

high Tenable Cloud Security Plugin ID 444621

Description

MCP Atlassian: DNS-rebinding TOCTOU bypass of the SSRF fix (CVE-2026-27826)

Solution

Update the mcp-atlassian library and its related packages to version 0.22.0 or later.

See Also

https://github.com/advisories/GHSA-489g-7rxv-6c8q

Plugin Details

Severity: High

ID: 444621

Version: Revision 1.1

Type: Local

Family: SCA Checks

Published: 7/10/2026

Updated: 7/10/2026

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 7/10/2026

Vulnerability Publication Date: 7/10/2026

Reference Information

cwe: CWE-918