CVE-2026-10222: Injection in NousResearch hermes-agent
A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this issue is the function _sanitize_env_lines of the file hermes_cli/config.py. The manipulation results in injection. It is possible to launch the attack remotely. The attack requires a high level of complexity. The exploitation is known to be difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
AI Analysis
Technical Summary
This vulnerability involves an injection flaw in the _sanitize_env_lines function of the hermes-agent software by NousResearch, affecting all versions up to 2026.4.30. The injection can be triggered remotely, but the attack complexity is high and exploitation is difficult. The vulnerability has a CVSS 4.0 base score of 6.3, indicating medium severity. No official patch or remediation has been disclosed by the vendor, and no cloud service is involved.
Potential Impact
Successful exploitation could allow an attacker to perform injection attacks remotely against the hermes-agent, potentially leading to limited confidentiality, integrity, and availability impacts as indicated by the CVSS vector. However, the high attack complexity and lack of privileges or user interaction required reduce the likelihood of exploitation. The public availability of an exploit increases risk, but the difficulty of exploitation limits immediate widespread impact.
Mitigation Recommendations
No official patch or remediation is currently available from the vendor, and the vendor has not responded to disclosure attempts. Users should monitor vendor channels for updates. Given the high complexity of exploitation, immediate urgent remediation may not be required, but cautious exposure of the affected service to untrusted networks is advised until a fix is released.
CVE-2026-10222: Injection in NousResearch hermes-agent
Description
A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this issue is the function _sanitize_env_lines of the file hermes_cli/config.py. The manipulation results in injection. It is possible to launch the attack remotely. The attack requires a high level of complexity. The exploitation is known to be difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS v4.0
Score 6.3medium
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves an injection flaw in the _sanitize_env_lines function of the hermes-agent software by NousResearch, affecting all versions up to 2026.4.30. The injection can be triggered remotely, but the attack complexity is high and exploitation is difficult. The vulnerability has a CVSS 4.0 base score of 6.3, indicating medium severity. No official patch or remediation has been disclosed by the vendor, and no cloud service is involved.
Potential Impact
Successful exploitation could allow an attacker to perform injection attacks remotely against the hermes-agent, potentially leading to limited confidentiality, integrity, and availability impacts as indicated by the CVSS vector. However, the high attack complexity and lack of privileges or user interaction required reduce the likelihood of exploitation. The public availability of an exploit increases risk, but the difficulty of exploitation limits immediate widespread impact.
Mitigation Recommendations
No official patch or remediation is currently available from the vendor, and the vendor has not responded to disclosure attempts. Users should monitor vendor channels for updates. Given the high complexity of exploitation, immediate urgent remediation may not be required, but cautious exposure of the affected service to untrusted networks is advised until a fix is released.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-05-31T07:51:26.584Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a1d19ade29bf47b50ad6b9d
Added to database: 6/1/2026, 5:33:33 AM
Last enriched: 6/1/2026, 5:49:00 AM
Last updated: 6/2/2026, 6:24:35 AM
Views: 18
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.