CVE-2026-9368

7.3 HIGH

A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16

Published: 2026-05-24 · Last updated: 2026-05-26

Severity and scoring

CVSS: 7.3 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-264, CWE-265

Description

A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16. This impacts the function execute_code of the file tools/code_execution_tool.py of the component Environment Variable Handler. Such manipulation leads to sandbox issue. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-9368
[Other]https://gist.github.com/YLChen-007/43c72d19668421abe8ce10f299323a0a
[Other]https://vuldb.com/submit/812229
[Other]https://vuldb.com/vuln/365331
[Other]https://vuldb.com/vuln/365331/cti

Related CVEs

Same CWE

CVE-2026-41974 — Permission control vulnerability in service notifications (3.6 LOW)
CVE-2025-66329 — Permission control vulnerability in the window management module (4.0 MEDIUM)
CVE-2016-9366 — An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series version... (9.8 CRITICAL)
CVE-2016-10010 — sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local... (7.0 HIGH)
CVE-2015-8325 — The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to re... (7.8 HIGH)