CVE-2026-0856

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Meona Client Launcher Component versions prior to 19.06.2020 15:11:49 Meona Server Component versions prior to 2025.04 5+323020

Description Improper Access Control in the Mesalvo Meona Client Launcher Component and Mesalvo Meona Server Component allows a standard user to gain unauthorized access to the admin panel.

Recommendations Update Meona Client Launcher Component to a version released after 19.06.2020 15:11:49. Update Meona Server Component to a version released after 2025.04 5+323020.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2026-0856

Affected Products

Meona Client Launcher

Meona Server

CVE-2026-0856

Weakness Enumeration

Related Identifiers

Affected Products

References · 4