CVE-2024-36471 | Apache Allura up to 1.16.0 DNS information disclosure

Posted by Angelo Barbosa | Jun 10, 2024 | CVE

A vulnerability was found in Apache Allura up to 1.16.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component DNS Handler. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2024-36471. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36471 | Apache Allura up to 1.16.0 DNS information disclosure

Related Posts

CVE-2024-33921 | ReviewX Plugin up to 1.6.21 on WordPress access control

CVE-2024-24817 | Discourse discourse-calendar up to 0.3 Event Invite information disclosure

CVE-2024-42339 | CyberArk Identity Management information disclosure

CVE-2023-35636 | Microsoft information disclosure