CNNVD-202512-3952 Information

CNNVD ID

CNNVD-202512-3952

Related CVE

CVE-2024-27708

• CNNVD Published: 2025-12-22

Description (Chinese)

AIRC MyNET是葡萄牙AIRC公司的一个专用在线管理系统。 AIRC MyNET v26.06及之前版本存在安全漏洞，该漏洞源于src参数存在iframe注入问题，可能导致远程攻击者执行任意代码。

Description (English)

AIRC MyNET is a dedicated online management system for AIRC in Portugal. There is a security loophole in AIRC MyNET v26.06 and earlier versions, which stems from the problem of frame injection of src parameters, which may lead to the remote assailants enforcing any code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

AIRC

Published

2025-12-22

Last Modified

2026-02-24

References

https://github.com/esquim0/Common_Vulnerabilities_and_Exposures_CVE/blob/main/2024/MyNet.md https://www.airc.pt/solucoes-servicos/solucoes?segment=MYN https://access.redhat.com/security/cve/cve-2024-27708