A vulnerability was found in Apache Allura up to 1.16.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component DNS Handler. The manipulation leads to information disclosure.
This vulnerability is known as CVE-2024-36471. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.