CVE-2026-9366 | NousResearch hermes-agent 2026.4.23 agent/prompt_builder.py _scan_context_content injection

Inserito da Angelo Barbosa | Mag 23, 2026 | CVE

A vulnerability described as critical has been identified in NousResearch hermes-agent 2026.4.23. The impacted element is the function _scan_context_content of the file agent/prompt_builder.py. The manipulation results in injection.

This vulnerability was named CVE-2026-9366. The attack may be performed from remote. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-9366 | NousResearch hermes-agent 2026.4.23 agent/prompt_builder.py _scan_context_content injection

Post correlati

CVE-2024-32095 | MultiParcels Shipping For WooCommerce Plugin up to 1.16.8 on WordPress cross-site request forgery

CVE-2024-11485 | Code4Berry Decoration Management System 1.0 User userregister.php permission

CVE-2024-50944 | SimplCommerce 230310c8d7a0408569b292c5a805c459d47a1d8f Shopping Cart AddToCart quantity integer overflow

CVE-2024-9589 | Category and Taxonomy Meta Fields Plugin up to 1.0.0 on WordPress cross site scripting