CVE-2026-26142: Nuance PowerScribe Remote Code Execution Vulnerability

Published Jun 9, 2026

Updated

Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a network.

Affected Software

23 affected componentsFixes available

Microsoft Nuance PowerScribe One=2019.9

Patch available

Microsoft PowerScribe One SP3 Patch 6=2023.1

Patch available

Microsoft PowerScribe One SP2 Patch 11=2023.1

Patch available

Microsoft Nuance PowerScribe One=2019.10

Patch available

Microsoft Nuance PowerScribe One=2019.7

Patch available

Microsoft Nuance PowerScribe One=2019.6

Patch available

Microsoft Nuance PowerScribe One=2019.8

Patch available

Microsoft Nuance PowerScribe One=2019.5

Patch available

Microsoft Nuance PowerScribe 360=4.0.3

Patch available

Microsoft Nuance PowerScribe 360=4.0.2

Patch available

Microsoft Nuance PowerScribe 360=4.0.4

Patch available

Microsoft Nuance PowerScribe One=2019.1

Patch available

Microsoft Nuance PowerScribe One=2019.4

Patch available

Microsoft Nuance PowerScribe 360 4.0

Patch available

Microsoft Nuance PowerScribe One=2019.2

Patch available

Microsoft Nuance PowerScribe One=2019.3

Patch available

Microsoft Nuance PowerScribe 360=4.0.8

Patch available

Microsoft Nuance PowerScribe 360=4.0.1

Patch available

Microsoft Nuance PowerScribe 360=4.0.7

Patch available

Microsoft Nuance PowerScribe 360=4.0.5

Patch available

Microsoft Nuance PowerScribe 360=4.0.6

Patch available

Microsoft Nuance PowerScribe 360=4.0.9

Patch available

Nuance PowerScribe

Event History

Jun 9, 2026

CVE Published

via Microsoft·02:00 PM

Data Sourced

via Microsoft·02:00 PM

DescriptionSeverityWeakness

Data Sourced

via Microsoft·02:00 PM

Affected Software

Updated

via Microsoft·02:00 PM

Description

CVE Published

via MITRE·05:05 PM

Data Sourced

via MITRE·05:05 PM

DescriptionSeverity

Data Sourced

via NVD·05:17 PM

DescriptionSeverityWeakness

Frequently Asked Questions

What is the severity of CVE-2026-26142?

The severity of CVE-2026-26142 is critical with a score of 9.8.

How do I fix CVE-2026-26142?

To mitigate CVE-2026-26142, update to the latest patched version of Microsoft Nuance PowerScribe.

What does CVE-2026-26142 allow an attacker to do?

CVE-2026-26142 allows an unauthorized attacker to execute remote code over a network.

Which software versions are affected by CVE-2026-26142?

CVE-2026-26142 affects various versions of Microsoft Nuance PowerScribe, including PowerScribe One and PowerScribe 360.

What kind of vulnerability is CVE-2026-26142 classified as?

CVE-2026-26142 is classified as a remote code execution vulnerability due to deserialization of untrusted data.

CVE-2026-26142: Nuance PowerScribe Remote Code Execution Vulnerability

Affected Software

Event History

Don't miss critical vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2026-26142?

How do I fix CVE-2026-26142?

What does CVE-2026-26142 allow an attacker to do?

Which software versions are affected by CVE-2026-26142?

What kind of vulnerability is CVE-2026-26142 classified as?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2026-26142?

How do I fix CVE-2026-26142?

What does CVE-2026-26142 allow an attacker to do?

Which software versions are affected by CVE-2026-26142?

What kind of vulnerability is CVE-2026-26142 classified as?