PT-2026-42143 · Unknown · Meona Client Launcher+1
Published
2026-05-20
·
Updated
2026-05-20
·
CVE-2026-25602
CVSS v3.1
4.4
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Meona Client Launcher Component versions prior to 19.06.2020 15:11:49
Meona Server Component versions prior to 2025.04 5+323020
Description
Insufficient Verification of Data Authenticity in the Meona Client Launcher and Meona Server components allows an attacker to send messages to any email address.
Recommendations
Update Meona Client Launcher Component to a version released after 19.06.2020 15:11:49.
Update Meona Server Component to a version released after 2025.04 5+323020.
Fix
Insufficient Verification of Data Authenticity
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Meona Client Launcher
Meona Server