CVE-2024-39037 – MyNET versions up to v26.08.316 contain an unau... (How to Fix)

Q: What is the severity of CVE-2024-39037?

CVE-2024-39037 has a CVSS score of 6.5 (MEDIUM). MyNET versions up to v26.08.316 contain an unauthenticated SQL injection vulnerability in the intmenu parameter. This allows attackers to execute arbitrary SQL commands without authentication, potentially compromising the database. All users running vulnerable MyNET versions are affected.

📋 TL;DR

MyNET versions up to v26.08.316 contain an unauthenticated SQL injection vulnerability in the intmenu parameter. This allows attackers to execute arbitrary SQL commands without authentication, potentially compromising the database. All users running vulnerable MyNET versions are affected.

💻 Affected Systems

Products:

MyNET

Versions: Up to and including v26.08.316

Operating Systems: All platforms running MyNET

Default Config Vulnerable: ⚠️ Yes

Notes: All installations with the vulnerable parameter exposed are affected; no special configuration required.

📦 What is this software?

Mynet by Airc

View all CVEs affecting Mynet →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data manipulation, or deletion; potential remote code execution if database configuration permits.

🟠

Likely Case

Data exfiltration from the database, authentication bypass, or privilege escalation within the application.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, though SQL injection attempts may still cause performance issues.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit code is publicly available; exploitation requires minimal technical skill due to unauthenticated access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: v26.08.317 or later

Vendor Advisory: https://www.airc.pt/solucoes-servicos/solucoes?segment=MYN

Restart Required: Yes

Instructions:

1. Download the latest MyNET version from the vendor. 2. Backup current configuration and data. 3. Install the updated version. 4. Restart the MyNET service.

🔧 Temporary Workarounds

Web Application Firewall (WAF)

all

Deploy a WAF to block SQL injection attempts targeting the intmenu parameter.

Input Validation Filter

all

Implement server-side input validation to sanitize the intmenu parameter.

🧯 If You Can't Patch

Isolate the MyNET system from untrusted networks using firewall rules.
Implement strict database permissions to limit potential damage from SQL injection.

🔍 How to Verify

Check if Vulnerable:

Check if the MyNET version is v26.08.316 or earlier; test the intmenu parameter with SQL injection payloads.

Check Version:

Check the MyNET administration interface or configuration files for version information.

Verify Fix Applied:

Verify the MyNET version is v26.08.317 or later; retest the intmenu parameter with SQL injection payloads to confirm they are blocked.

📡 Detection & Monitoring

Log Indicators:

Unusual SQL queries in database logs
Multiple failed login attempts or parameter manipulation in application logs

Network Indicators:

HTTP requests containing SQL keywords (e.g., SELECT, UNION) in the intmenu parameter

SIEM Query:

source="web_logs" AND (url="*intmenu=*SELECT*" OR url="*intmenu=*UNION*")

📊 Metadata

CVE ID: CVE-2024-39037

CVSS v3 Score: 6.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE: CWE-89

EPSS Score: 0.04% exploit probability (10.3th percentile)

Published: December 24, 2025

Last Updated: January 8, 2026

🔗 References

https://miguelsantareno.github.io/airc_exploit.txt Exploit,Third Party Advisory
https://www.airc.pt/solucoes-servicos/solucoes?segment=MYN Product

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-39037, you might also want to check these: