1Eki
CVE-2024-41925 | Optigo Networks ONS-S8 Spectra Aggregation Switch up to 1.3.7 filename control (icsa-24-275-01)
A vulnerability was found in Optigo Networks ONS-S8 Spectra Aggregation Switch up to 1.3.7 and classified as very critical. This issue affects some unknown processing. The manipulation leads to improper control of filename for include/require statement in php program ('php remote file inclusion'). The identification of this vulnerability is CVE-2024-41925. The attack may be initiated remotely. There is no exploit available. It is recommended to change the configuration settings.