CVE-2026-22315_CVE-2026-22315

7.2 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Description

Incorrect Privilege Assignment vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables the export of user data, including cleartext passwords, via the SQL editor. This issue affects Meona Client Launcher Component: through 19.06.2020 15:11:49; Meona Server Component: through 2025.04 5+323020.

Basic Information

ID CVE-2026-22315

Source ENISA

Published May 20, 2026 at 10:46

Affected Product

Vendor Mesalvo

Product Meona Client Launcher Component

Affected Versions Mesalvo Meona Client Launcher Component 0
Mesalvo Meona Server Component 0

CWE Classification

CWE-266

References

seccore.at /blog/cves-meona/

{
    "lastseen": "",
    "description": "Incorrect Privilege Assignment vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables the export\u00a0 of user data, including cleartext passwords, via the SQL editor.\u00a0This issue affects Meona Client Launcher Component: through 19.06.2020 15:11:49; Meona Server Component: through 2025.04 5+323020.",
    "published": "2026-05-20T10:46:51.995Z",
    "modified": "2026-05-20T10:46:51.995Z",
    "type": "cve",
    "title": "CVE-2026-22315",
    "source": "ENISA",
    "references": "https://seccore.at/blog/cves-meona/",
    "id": "CVE-2026-22315",
    "bulletinFamily": "",
    "cwe": [
        "CWE-266"
    ],
    "cvelist": null,
    "sourceData": "Mesalvo Meona Client Launcher Component 0\nMesalvo Meona Server Component 0",
    "sourceHref": "",
    "cvss": {
        "score": 7.2,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Meona Client Launcher Component",
    "version": "0",
    "vendor": "Mesalvo",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}