Low severityNVD Advisory· Published Aug 1, 2018· Updated Sep 16, 2024
CVE-2018-1999037
CVE-2018-1999037
Description
A data modification vulnerability exists in Jenkins Resource Disposer Plugin 0.11 and earlier in AsyncResourceDisposer.java that allows attackers to stop tracking a resource.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jenkins-ci.plugins:resource-disposerMaven | < 0.12 | 0.12 |
Affected products
1Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4- github.com/advisories/GHSA-63jg-5wv6-7ghvghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2018-1999037ghsaADVISORY
- github.com/jenkinsci/resource-disposer-plugin/commit/d826a99b06cc46c5dfadfd526b519ef0f65c8682ghsaWEB
- jenkins.io/security/advisory/2018-07-30/ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.