Multiple vulnerabilities in Optigo Networks ONS-S8 Spectra Aggregation Switch



Published: 2024-10-02
Risk High
Patch available NO
Number of vulnerabilities 2
CVE-ID CVE-2024-41925
CVE-2024-45367
CWE-ID CWE-98
CWE-287
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe
ONS-S8 - Spectra Aggregation Switch
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor Optigo Networks

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) PHP file inclusion

EUVDB-ID: #VU97940

Risk: High

CVSSv3.1: 9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:U/RC:C]

CVE-ID: CVE-2024-41925

CWE-ID: CWE-98 - Improper Control of Filename for Include/Require Statement in PHP Program

Exploit availability: No

Description

The vulnerability allows a remote attacker to include and execute arbitrary PHP files on the server.

The vulnerability exists due to incorrect input validation when including PHP files within the web service. A remote attacker can send a specially crafted HTTP request to the affected application, include and execute arbitrary PHP code on the system with privileges of the web server.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

ONS-S8 - Spectra Aggregation Switch: 1.3.7

CPE2.3 External links

http://www.cisa.gov/news-events/ics-advisories/icsa-24-275-01


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Improper Authentication

EUVDB-ID: #VU97941

Risk: High

CVSSv3.1: 8.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:U/RC:C]

CVE-ID: CVE-2024-45367

CWE-ID: CWE-287 - Improper Authentication

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to an error when processing authentication requests in the web server. A remote attacker can bypass authentication process and gain unauthorized access to the application.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

ONS-S8 - Spectra Aggregation Switch: 1.3.7

CPE2.3 External links

http://www.cisa.gov/news-events/ics-advisories/icsa-24-275-01


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###