CVE-2026-53870 | NousResearch hermes-agent up to 0.15.x Conversation response_store.db default permission

Inserito da Angelo Barbosa | Giu 17, 2026 | CVE

A vulnerability marked as critical has been reported in NousResearch hermes-agent up to 0.15.x. The affected element is an unknown function of the file response_store.db of the component Conversation Handler. This manipulation causes incorrect default permissions.

This vulnerability appears as CVE-2026-53870. The attack requires local access. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-53870 | NousResearch hermes-agent up to 0.15.x Conversation response_store.db default permission

Post correlati

CVE-2024-33066 | Qualcomm Snapdragon Wired Infrastructure and Networking up to X65 5G Modem-RF System Log File memory corruption

CVE-2024-30601 | Tenda FH1203 2.0.1.6 saveParentControlInfo time stack-based overflow

CVE-2023-28053 | Dell NetWorker Virtual Edition 19.7.0.5/19.8.0.3/19.9.0.2 SSH risky encryption (dsa-2023-358)

CVE-2026-10212 | AstrBotDevs AstrBot 4.24.2 astr_main_agent.py astr_main_agent session_id authorization