CVE-2026-7397: Symlink Following in NousResearch hermes-agent
CVE-2026-7397 is a medium severity vulnerability in NousResearch hermes-agent version 0. 8. 0. It involves a security flaw in the _check_sensitive_path function within tools/file_tools. py that allows symlink following due to improper path handling. Exploitation requires local access with low privileges and no user interaction. A public exploit is available. Upgrading to version 0. 9. 0 mitigates the issue by applying a patch identified as 311dac197145e19e07df68feba2cd55d896a3cd1.
AI Analysis
Technical Summary
The vulnerability CVE-2026-7397 affects NousResearch hermes-agent 0.8.0 in the _check_sensitive_path function of tools/file_tools.py, where improper handling of symbolic links allows an attacker with local access and low privileges to follow symlinks potentially leading to unauthorized file access or manipulation. The issue does not require user interaction and has a CVSS 4.8 (medium) score. A patch is available in version 0.9.0, identified by commit 311dac197145e19e07df68feba2cd55d896a3cd1.
Potential Impact
The impact is limited to local attackers with low privileges who can exploit symlink following to potentially access or manipulate sensitive files. The vulnerability does not require user interaction and has a medium severity rating. No known exploits in the wild have been reported, but a public exploit exists.
Mitigation Recommendations
Upgrade NousResearch hermes-agent from version 0.8.0 to version 0.9.0, which includes the official patch (commit 311dac197145e19e07df68feba2cd55d896a3cd1) that fixes the symlink following vulnerability. No other mitigations are indicated or required.
CVE-2026-7397: Symlink Following in NousResearch hermes-agent
Description
CVE-2026-7397 is a medium severity vulnerability in NousResearch hermes-agent version 0. 8. 0. It involves a security flaw in the _check_sensitive_path function within tools/file_tools. py that allows symlink following due to improper path handling. Exploitation requires local access with low privileges and no user interaction. A public exploit is available. Upgrading to version 0. 9. 0 mitigates the issue by applying a patch identified as 311dac197145e19e07df68feba2cd55d896a3cd1.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-7397 affects NousResearch hermes-agent 0.8.0 in the _check_sensitive_path function of tools/file_tools.py, where improper handling of symbolic links allows an attacker with local access and low privileges to follow symlinks potentially leading to unauthorized file access or manipulation. The issue does not require user interaction and has a CVSS 4.8 (medium) score. A patch is available in version 0.9.0, identified by commit 311dac197145e19e07df68feba2cd55d896a3cd1.
Potential Impact
The impact is limited to local attackers with low privileges who can exploit symlink following to potentially access or manipulate sensitive files. The vulnerability does not require user interaction and has a medium severity rating. No known exploits in the wild have been reported, but a public exploit exists.
Mitigation Recommendations
Upgrade NousResearch hermes-agent from version 0.8.0 to version 0.9.0, which includes the official patch (commit 311dac197145e19e07df68feba2cd55d896a3cd1) that fixes the symlink following vulnerability. No other mitigations are indicated or required.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-04-29T10:44:13.710Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69f24c6ecbff5d86103a531c
Added to database: 4/29/2026, 6:22:38 PM
Last enriched: 4/29/2026, 6:36:25 PM
Last updated: 4/29/2026, 8:38:29 PM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.