CVE-2024-40112

Name of the Vulnerable Software and Affected Versions Sitecom WLX-2006 Wall Mount Range Extender N300 versions 1.5 and before

Description A Local File Inclusion (LFI) issue exists, which allows an attacker to manipulate the language cookie to include arbitrary files from the server. This can be exploited to disclose sensitive information.

Recommendations For versions 1.5 and before, consider disabling the manipulation of the language cookie as a temporary workaround until a patch is available. Restrict access to sensitive files on the server to minimize the risk of exploitation.