CVE-2026-27825 is a CVSS 9.8 unauthenticated SSRF-to-RCE vulnerability in mcp-atlassian, the open-source MCP server used to connect AI assistants such as Claude to Jira and Confluence. The attack chain requires no credentials and achieves arbitrary code execution on the MCP host, with additional access to internal network resources reachable from that host. A patch was released February 24, 2026; organizations should update immediately, inventory all mcp-atlassian deployments (including informal developer and CI/CD instances), and review AI-to-enterprise-tool integration governance as MCP servers represent an emerging and often untracked attack surface.