Low severity3.3NVD Advisory· Published Apr 5, 2018· Updated Jun 17, 2026
CVE-2018-1000150
CVE-2018-1000150
Description
An exposure of sensitive information vulnerability exists in Jenkins Reverse Proxy Auth Plugin 1.5 and older in ReverseProxySecurityRealm#authContext that allows attackers with local file system access to obtain a list of authorities for logged in users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jenkins-ci.plugins:reverse-proxy-auth-pluginMaven | < 1.6.0 | 1.6.0 |
Affected products
1Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-m9j2-grqf-fg26ghsaADVISORY
- jenkins.io/security/advisory/2018-03-26/nvdVendor AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2018-1000150ghsaADVISORY
News mentions
0No linked articles in our index yet.