What is CVE-2026-22314?

CVE-2026-22314 is a critical-severity vulnerability in Mesalvo Meona Client Launcher Component, classified under Code Injection. CVSS score: 9.0/10. Published 2026-05-20.

How severe is CVE-2026-22314?

Critical severity. CVSS v3 base score is 9.0 out of 10.

RCE in Mesalvo Meona Client Launcher Component

CVE-2026-22314

Improper Control of Generation of Code ('Code Injection') vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables code execution on other users' systems. This issue affects Meona Client Launcher Com…

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.000 (15.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.0 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H.

Affected products

Mesalvo Meona Client Launcher Component — versions 0
Mesalvo Meona Server Component — versions 0

Weakness classification (CWE)

CWE-94 — Code Injection

References

a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (third-party-advisory)

Frequently asked questions

What is CVE-2026-22314?: CVE-2026-22314 is a critical-severity vulnerability in Mesalvo Meona Client Launcher Component, classified under Code Injection. CVSS score: 9.0/10. Published 2026-05-20.
How severe is CVE-2026-22314?: Critical severity. CVSS v3 base score is 9.0 out of 10.