CVE-2026-14687
Last modified
CVE-2026-14687 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. A vulnerability was determined in 666ghj BettaFish up to 1.2.1. Impacted is the function _deduplicate_results of the file InsightEngine/agent.py of the component InsightEngine search-result Deduplication. EPSS estimates a 0.33% chance of exploitation in the next 30 days.
Description
A vulnerability was determined in 666ghj BettaFish up to 1.2.1. Impacted is the function _deduplicate_results of the file InsightEngine/agent.py of the component InsightEngine search-result Deduplication. Executing a manipulation can lead to partial string comparison. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The pull request to fix this issue awaits acceptance.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
Source: CNA advisory (CVE.org). NVD analysis pending.
| Vendor | Product | Versions |
|---|---|---|
| 666ghj | BettaFish | 1.2.0; 1.2.1 |
References
Timeline
- Published
- Last Modified
- Status
- Deferred
Frequently Asked Questions
What is CVE-2026-14687?
How severe is CVE-2026-14687?
How do I fix CVE-2026-14687?
Related CVEs from 2026
- CVE-2026-1467A flaw was found in libsoup, an HTTP client library. This vu…5.3
- CVE-2026-1468QuickCMS is vulnerable to Cross-Site Request Forgery across …5.1
- CVE-2026-14683A vulnerability was detected in HdrHistogram up to 2.2.2. Af…3.3
- CVE-2026-14684A flaw has been found in HdrHistogram up to 2.2.2. This affe…3.3
- CVE-2026-14685A vulnerability has been found in HdrHistogram up to 2.2.2. …3.3
- CVE-2026-14686A vulnerability was found in HdrHistogram up to 2.2.2. This …3.3
- CVE-2026-14688A vulnerability was identified in itsourcecode Online Hotel …7.3
- CVE-2026-14689A security flaw has been discovered in CodeAstro Apartment V…6.3
- CVE-2026-1469Stored Cross-Site Scripting (XSS) in RLE NOVA's PlanManager.…5.4
- CVE-2026-14690A weakness has been identified in SourceCodester Multi-Vendo…7.3
- CVE-2026-14691A security vulnerability has been detected in SourceCodester…6.3
- CVE-2026-14692A vulnerability was detected in SourceCodester Multi-Vendor …6.3
Are you affected by CVE-2026-14687?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST
