{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-26142","assignerOrgId":"f38d906d-7342-40ea-92c1-6c4a2c6478c8","state":"PUBLISHED","assignerShortName":"microsoft","dateReserved":"2026-02-11T16:24:51.134Z","datePublished":"2026-06-09T17:05:17.903Z","dateUpdated":"2026-07-08T23:23:34.302Z"},"containers":{"cna":{"title":"Nuance PowerScribe Remote Code Execution Vulnerability","datePublic":"2026-06-09T14:00:00.000Z","cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.5","versionEndExcluding":"7.0.243.19"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.6","versionEndExcluding":"7.0.277.28"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.7","versionEndExcluding":"7.0.316.12"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.8","versionEndExcluding":"7.0.427.15"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.9","versionEndExcluding":"7.0.528.24"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.1","versionEndExcluding":"2019.1.96.6"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.2","versionEndExcluding":"2019.2.9.11"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.3","versionEndExcluding":"2019.3.16.21"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0","versionEndExcluding":"7.0.11.49"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.1","versionEndExcluding":"7.0.111.68"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.2","versionEndExcluding":"7.0.154.18"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.3","versionEndExcluding":"7.0.197.10"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_360:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.4","versionEndExcluding":"7.0.212.10"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.4","versionEndExcluding":"2019.4.9.17"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.5","versionEndExcluding":"2019.5.14.40"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.6","versionEndExcluding":"2019.6.36.40"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.7","versionEndExcluding":"2019.7.107.26"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.8","versionEndExcluding":"2019.8.43.19"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.9","versionEndExcluding":"2019.9.31.23"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2019.10","versionEndExcluding":"2019.10.36.14"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2023.1","versionEndExcluding":"2023.2.3054"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuance_powerscribe_one:*:*:*:*:*:*:*:*","versionStartIncluding":"2023.1","versionEndExcluding":"2023.3.9072"}]}]}],"affected":[{"vendor":"Microsoft","product":"Nuance PowerScribe 360 4.0","versions":[{"version":"4.0","lessThan":"7.0.11.49","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.1","versions":[{"version":"4.0.1","lessThan":"7.0.111.68","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.2","versions":[{"version":"4.0.2","lessThan":"7.0.154.18","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.3","versions":[{"version":"4.0.3","lessThan":"7.0.197.10","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.4","versions":[{"version":"4.0.4","lessThan":"7.0.212.10","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.5","versions":[{"version":"4.0.5","lessThan":"7.0.243.19","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.6","versions":[{"version":"4.0.6","lessThan":"7.0.277.28","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.7","versions":[{"version":"4.0.7","lessThan":"7.0.316.12","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.8","versions":[{"version":"4.0.8","lessThan":"7.0.427.15","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe 360 version 4.0.9","versions":[{"version":"4.0.9","lessThan":"7.0.528.24","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.1","versions":[{"version":"2019.1","lessThan":"2019.1.96.6","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.10","versions":[{"version":"2019.10","lessThan":"2019.10.36.14","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.2","versions":[{"version":"2019.2","lessThan":"2019.2.9.11","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.3","versions":[{"version":"2019.3","lessThan":"2019.3.16.21","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.4","versions":[{"version":"2019.4","lessThan":"2019.4.9.17","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.5","versions":[{"version":"2019.5","lessThan":"2019.5.14.40","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.6","versions":[{"version":"2019.6","lessThan":"2019.6.36.40","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.7","versions":[{"version":"2019.7","lessThan":"2019.7.107.26","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.8","versions":[{"version":"2019.8","lessThan":"2019.8.43.19","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Nuance PowerScribe One version 2019.9","versions":[{"version":"2019.9","lessThan":"2019.9.31.23","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"PowerScribe One version 2023.1 SP2 Patch 11","versions":[{"version":"2023.1","lessThan":"2023.2.3054","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"PowerScribe One version 2023.1 SP3 Patch 6","versions":[{"version":"2023.1","lessThan":"2023.3.9072","versionType":"custom","status":"affected"}]}],"descriptions":[{"value":"Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a network.","lang":"en-US"}],"problemTypes":[{"descriptions":[{"description":"CWE-502: Deserialization of Untrusted Data","lang":"en-US","type":"CWE","cweId":"CWE-502"}]}],"providerMetadata":{"orgId":"f38d906d-7342-40ea-92c1-6c4a2c6478c8","shortName":"microsoft","dateUpdated":"2026-07-08T23:23:34.302Z"},"references":[{"name":"Nuance PowerScribe Remote Code Execution Vulnerability","tags":["vendor-advisory","patch"],"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26142"}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en-US","value":"GENERAL"}],"cvssV3_1":{"version":"3.1","baseSeverity":"CRITICAL","baseScore":9.8,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C"}}]},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-06-10T14:25:12.399806Z","id":"CVE-2026-26142","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-06-10T14:31:57.026Z"}}]}}