CVE-2024-25814 – MyNET up to v26.05 contains a reflected cross-s... (How to Fix)

Q: What is the severity of CVE-2024-25814?

CVE-2024-25814 has a CVSS score of 6.1 (MEDIUM). MyNET up to v26.05 contains a reflected cross-site scripting (XSS) vulnerability in the msg parameter. This allows attackers to inject malicious scripts that execute in users' browsers when they visit a crafted URL. Organizations using vulnerable MyNET versions are affected.

📋 TL;DR

MyNET up to v26.05 contains a reflected cross-site scripting (XSS) vulnerability in the msg parameter. This allows attackers to inject malicious scripts that execute in users' browsers when they visit a crafted URL. Organizations using vulnerable MyNET versions are affected.

💻 Affected Systems

Products:

MyNET

Versions: Up to v26.05

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: All deployments with the vulnerable version are affected regardless of configuration.

📦 What is this software?

Mynet by Airc

View all CVEs affecting Mynet →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal session cookies, perform actions as authenticated users, redirect to malicious sites, or install malware on user systems.

🟠

Likely Case

Session hijacking, credential theft, or defacement of web pages through script injection.

🟢

If Mitigated

Limited impact with proper input validation, output encoding, and Content Security Policy (CSP) headers in place.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Reflected XSS typically requires user interaction (clicking a malicious link) but is easy to exploit.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://www.airc.pt/solucoes-servicos/solucoes?segment=MYN

Restart Required: No

Instructions:

Check vendor advisory for updates. Upgrade to a version above v26.05 when available.

🔧 Temporary Workarounds

Implement WAF Rules

all

Configure web application firewall to block requests containing suspicious script patterns in the msg parameter.

Input Validation Filter

all

Add server-side validation to sanitize or reject malicious input in the msg parameter.

🧯 If You Can't Patch

Implement strict Content Security Policy (CSP) headers to prevent script execution from untrusted sources.
Monitor and filter user input for script patterns and block malicious requests at the network perimeter.

🔍 How to Verify

Check if Vulnerable:

Test by injecting a simple script payload into the msg parameter (e.g., <script>alert('test')</script>) and check if it executes.

Check Version:

Check MyNET version in admin interface or configuration files.

Verify Fix Applied:

After applying fixes, retest with the same payload to ensure it is properly sanitized or blocked.

📡 Detection & Monitoring

Log Indicators:

Log entries showing script tags or JavaScript in msg parameter requests.

Network Indicators:

HTTP requests with suspicious script content in query parameters.

SIEM Query:

source="web_logs" AND msg="*<script>*"

📊 Metadata

CVE ID: CVE-2024-25814

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.04% exploit probability (13.2th percentile)

Published: December 22, 2025

Last Updated: January 2, 2026

🔗 References

https://github.com/am0nt31r0/Common-Vulnerabilities-and-Exposures-CVE-/blob/main/MyNet.md Exploit,Third Party Advisory
https://www.airc.pt/solucoes-servicos/solucoes?segment=MYN Product
https://github.com/am0nt31r0/Common-Vulnerabilities-and-Exposures-CVE-/blob/main/MyNet.md Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-25814, you might also want to check these: