SEC Consult SA-20260616-0 :: Broken Access Control in syracom AG Secure Login (2FA) for Atlassian Jira / Confluence / Bitbucket #CVE-2026-12225 (opens in new tab)

Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Jun 20SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Broken Access Control product: syracom AG Secure Login (2FA) for Atlassian Jira / Confluence / Bitbucket vulnerable version: 3.4.0.x fixed version: 3.5.0.0 CVE number: CVE-2026-12225 impact: High...