PT-2026-42141 · Mesalvo · Meona Server+1
Published
2026-05-20
·
Updated
2026-05-20
·
CVE-2026-22314
CVSS v3.1
9.0
Critical
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Meona Client Launcher Component versions prior to 19.06.2020 15:11:49
Meona Server Component versions prior to 2025.04 5+323020
Description
Improper Control of Generation of Code, also known as Code Injection, in the Mesalvo Meona Client Launcher and Server components allows for the execution of arbitrary code on the systems of other users.
Recommendations
Update Meona Client Launcher Component to a version released after 19.06.2020 15:11:49.
Update Meona Server Component to a version released after 2025.04 5+323020.
Fix
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Meona Client Launcher
Meona Server