CVE-2026-14783 in hermes-agent
Summary
by MITRE • 07/06/2026
A vulnerability was determined in NousResearch hermes-agent 2026.5.29.2. The impacted element is the function skill_view of the file tools/skills_tool.py. Executing a manipulation of the argument Name can lead to path traversal. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. This patch is called 56f833efa427ccb444c0f9ad1759af1012f2124d. It is advisable to implement a patch to correct this issue.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Analysis
by VulDB Data Team • 07/06/2026
The vulnerability identified in NousResearch hermes-agent version 2026.5.29.2 represents a critical path traversal flaw within the skill_view function located in tools/skills_tool.py. This security weakness arises from insufficient input validation when processing the Name argument, creating an opportunity for attackers to manipulate file paths and potentially access unauthorized system resources. The vulnerability's classification aligns with CWE-23 Path Traversal and CWE-77 Path Traversal, both of which are fundamental concerns in cybersecurity that enable attackers to navigate beyond intended directories.
The remote exploitability of this vulnerability significantly amplifies its threat level, as attackers can leverage this weakness from external networks without requiring physical access to the target system. The public disclosure of the exploit means that threat actors have immediate knowledge of how to capitalize on this flaw, increasing the window of opportunity for malicious activity. This scenario exemplifies the ATT&CK technique T1059 Command and Scripting Interpreter where attackers might manipulate system functions to achieve unauthorized access.
The technical implementation of this vulnerability occurs when the skill_view function processes user-provided Name arguments without proper sanitization or validation. An attacker can construct malicious input that includes directory traversal sequences such as "../" or similar patterns, allowing them to navigate the file system beyond the intended scope of the application's access controls. This flaw essentially permits arbitrary file access and potentially execution capabilities, depending on the underlying system permissions and configuration.
The operational impact of this vulnerability extends beyond simple data theft, as successful exploitation could lead to complete system compromise, data exfiltration, or the installation of persistent backdoors. Organizations utilizing this software version face significant risk of unauthorized access to sensitive files and system resources, particularly in environments where the application handles confidential information or operates with elevated privileges.
Security remediation for this vulnerability requires immediate implementation of the provided patch identified by commit hash 56f833efa427ccb444c0f9ad1759af1012f2124d. The patch should implement robust input validation and sanitization mechanisms that prevent directory traversal sequences from being processed as legitimate file paths. Organizations should also consider implementing additional security controls such as principle of least privilege access, regular security audits, and monitoring for suspicious file access patterns to detect potential exploitation attempts and mitigate the broader impact of similar vulnerabilities.