Summary: Atlassian and Cisco have announced security patches for multiple high-severity vulnerabilities in their products, including flaws that can lead to remote code execution and denial-of-service conditions. Atlassian addressed several vulnerabilities affecting Bamboo, Confluence, and Jira, while Cisco patched issues in Webex App, Secure Network Analytics, and Nexus Dashboard. Both companies reported that they are not aware of these vulnerabilities being exploited in the wild.
Affected: Atlassian (Bamboo, Confluence, Jira), Cisco (Webex App, Secure Network Analytics, Nexus Dashboard)
Keypoints :
- Atlassian released patches for four high-severity flaws impacting Bamboo, Confluence, and Jira, some publicly disclosed years ago.
- CVE-2024-57699 fixed a DoS issue in Netplex Json-smart affecting multiple Jira and Bamboo products.
- Cisco addressed a high-severity Webex flaw (CVE-2025-20236) that enables remote code execution via malicious meeting invites.
- Security updates for Cisco’s Secure Network Analytics and Nexus Dashboard fixed medium-severity vulnerabilities allowing unauthorized shell access and LDAP username enumeration.
Source: https://www.securityweek.com/vulnerabilities-patched-in-atlassian-cisco-products/