216.73.217.172

CVE-2026-14783

· Published 06/07/2026 02:16 · Author: The MITRE Corporation

Labels: CVE-2026-14783

Essential information

Published
06/07/2026 02:16
Modified
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
4.0 (v2) 4.3 MEDIUM (v3.1) 2.1 LOW (v4.0)
CISA KEV
No
CWE
CWE-22
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVSS metrics

Description

A vulnerability was determined in NousResearch hermes-agent 2026.5.29.2. The impacted element is the function skill_view of the file tools/skills_tool.py. Executing a manipulation of the argument Name can lead to path traversal. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. This patch is called 56f833efa427ccb444c0f9ad1759af1012f2124d. It is advisable to implement a patch to correct this issue.

NVD status

NVD
View on NVD