What is GHSA-74c8-2c8j-qpj7?

GHSA-74c8-2c8j-qpj7 is a security advisory published by GitHub Security Advisories with High severity. Incorrect Privilege Assignment vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo...

Which CVE IDs does GHSA-74c8-2c8j-qpj7 cover?

GHSA-74c8-2c8j-qpj7 covers the following CVE IDs: CVE-2026-22315. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-74c8-2c8j-qpj7?

GHSA-74c8-2c8j-qpj7 has a CVSS v3 base score of 7.2, published by GitHub Security Advisories.

GHSA-74c8-2c8j-qpj7HighCVSS 7.2

Incorrect Privilege Assignment vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo...

Vendor

GitHub Security Advisories

Published

May 20, 2026

Last Modified

May 20, 2026

🔗 CVE IDs covered (1)

CVE-2026-22315 →

📋 Description

Incorrect Privilege Assignment vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables the export of user data, including cleartext passwords, via the SQL editor. This issue affects Meona Client Launcher Component: through 19.06.2020 15:11:49; Meona Server Component: through 2025.04 5+323020.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2026-22315
https://seccore.at/blog/cves-meona
https://github.com/advisories/GHSA-74c8-2c8j-qpj7