[CIAD-2026-0009] Multiple Vulnerabilities in Atlassian Products

By Published On: February 23, 2026

—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256


Multiple Vulnerabilities in Atlassian Products


Indian – Computer Emergency Response Team (https://www.cert-in.org.in)


Severity Rating: High


Software Affected


Bamboo Data Center and Server

Confluence Data Center and Server

Crowd Data Center and Server

Overview


Multiple vulnerabilities have been reported in Atlassian products which could allow a remote attacker to execute arbitrary code, bypass authorization controls, access sensitive information, or cause Denial of Service (DoS) conditions on the targeted system.


Target Audience:

All end-user organisations and administrators using Atlassian applications.


Risk Assessment:

High risk of remote code execution, unauthorized access, security control bypass, and service disruption in affected environment.


Impact Assessment:

Potential for unauthorized access, data disclosure, application compromise, and service disruption on affected systems.


Description


Multiple vulnerabilities have been reported in various Atlassian Products.


Solution


Apply appropriate updates as mentioned by the vendor:  

https://confluence.atlassian.com/security/security-bulletin-february-17-2026-1722256046.html


Vendor Information


Atlassian

https://www.atlassian.com/


References


 

https://confluence.atlassian.com/security/security-bulletin-february-17-2026-1722256046.html


CVE Name

CVE-2025-66021

CVE-2025-59343

CVE-2022-25883

CVE-2025-41249

CVE-2020-28469

CVE-2025-48976

CVE-2022-25927

CVE-2025-66516

CVE-2025-9288

CVE-2025-9287

CVE-2025-48734

CVE-2025-66675

CVE-2019-20149

CVE-2024-57669




– —


Thanks and Regards,

CERT-In


Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS


Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–


iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmmcX84ACgkQ3jCgcSdc

ys8Fjg//VCjiNi6X4SpfE1BO+QvHaijSVh7IuzfoV0PLs17YlXikmh1HulbTb0Gj

A1rKul/9+qVnGTnbxToIgKaC0s5wF0Wq5GCEhE4RbcpYSuPtuhEdtuF+nAHf8RSm

tFo9etjUcQQbMx4ST6BiLlqeWnue59LZUBGgxonMt6Xvv6gFOpvRXg2C6rRlrC4O

P3OAkIJT/0UdSWqMDduwEGk+MkdP5tDYwfv5+SzrZ8ZVQtEqsSh5CYBy3bC9foXY

Lhc7xZiTAV/Fz0yI5YS5X0vZcCLWiFNJwf6zEXvGiyZUNsC3GkV0a1/lrId/LRIj

csKu3xxDm06P9/mI4pdG959Mtih7DzJPxT2rp5e2tLGqgHB8CHUKp2AjbavVRQAi

JWYlKvlUYgqxhJky4Q14J5l69GL1dk5gLGP5976Yx8HLuRZV0uror8dDjUO+sMKr

yKLnghuM2wUVHRnPe7TBJ2p2ooYjEMabX7GpBzEcj04Gqj3e5fHfaXs2EeDcpCLY

tt+pZgB6VQ81FUXFsLxx7t7sAl4BmEfTxtieziMifAet9xHZQJjJrwNS6IKIrgdr

2Q2hkf96SsiUoM/W8nJ7nCLDTkrByjh0Pnt90XvgVFxiVsw8DYU/UegXgpKv0Q9y

JSXxZ6MMocQsJQLHKpEoATksE4oL21k1KJdck3Ab09uG41OEqCg=

=cwCF

—–END PGP SIGNATURE—–

Share this article