A vulnerability was found in Optigo Networks ONS-S8 Spectra Aggregation Switch up to 1.3.7 and classified as very critical. This issue affects some unknown processing. The manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).
The identification of this vulnerability is CVE-2024-41925. The attack may be initiated remotely. There is no exploit available.
It is recommended to change the configuration settings.