CVE-2026-7397 | NousResearch hermes-agent 0.8.0 tools/file_tools.py _check_sensitive_path symlink (Issue 8734)

Inserito da Angelo Barbosa | Apr 29, 2026 | CVE

A vulnerability described as critical has been identified in NousResearch hermes-agent 0.8.0. This affects the function _check_sensitive_path of the file tools/file_tools.py. The manipulation results in symlink following.

This vulnerability is known as CVE-2026-7397. Attacking locally is a requirement. Furthermore, an exploit is available.

Upgrading the affected component is recommended.

CVE-2026-7397 | NousResearch hermes-agent 0.8.0 tools/file_tools.py _check_sensitive_path symlink (Issue 8734)

Post correlati

CVE-2023-7237 | Lantronix XPort Device Server Configuration Manage 2.0.0.13 Web Request weak encoding for password

CVE-2026-34120 | TP-Link Tapo C520WS 2.6 heap-based overflow

CVE-2023-6638 | GTG Product Feed for Shopping Plugin up to 1.2.4 on WordPress Setting authorization

CVE-2024-21406 | Microsoft Windows up to Server 2022 23H2 Printing Service unknown vulnerability