Vulnerabilities ›

CVE-2026-9367

High

CWE-77 — Weakness Type

                    Published: May 24, 2026                      ·  Modified: May 31, 2026                      ·  Source: NVD                

CVSS v3

7.3

🔗 NVD Official

📄 Description (English)

A vulnerability was determined in NousResearch hermes-agent up to 5157f5427f19488b31c6fdebbacd15d798ce7f63. This affects the function detect_dangerous_command of the file tools/approval.py of the component terminal_tool. This manipulation causes os command injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

🤖 AI Executive Summary

A command injection vulnerability exists in NousResearch hermes-agent's terminal_tool component that allows remote attackers to execute arbitrary OS commands through the detect_dangerous_command function. The vulnerability affects versions up to commit 5157f5427f19488b31c6fdebbacd15d798ce7f63 and has been publicly disclosed with no vendor response.

📄 Description (Arabic)

تؤثر هذه الثغرة على مكون terminal_tool في hermes-agent حيث تفشل دالة detect_dangerous_command في التحقق بشكل صحيح من المدخلات قبل تنفيذ أوامر النظام. يمكن للمهاجمين استغلال هذه الثغرة عن بعد لتنفيذ أوامر تعسفية بامتيازات التطبيق.

🤖 ملخص تنفيذي (AI)

ثغرة حقن أوامر موجودة في مكون terminal_tool الخاص بـ NousResearch hermes-agent تسمح للمهاجمين البعيدين بتنفيذ أوامر نظام تشغيل عشوائية. تؤثر الثغرة على الإصدارات حتى commit 5157f5427f19488b31c6fdebbacd15d798ce7f63 وتم الكشف عنها علناً بدون رد من البائع.

🤖 AI Intelligence Analysis Analyzed: May 26, 2026 21:23

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

government banking telecom energy healthcare

🎯 MITRE ATT&CK Techniques

T1059.004 T1190 T1203 T1566.002

⚖️ Saudi Risk Score (AI)

8.0

/ 10.0

🔧 Remediation Steps (English)

Immediately update NousResearch hermes-agent to a patched version beyond commit 5157f5427f19488b31c6fdebbacd15d798ce7f63. Implement input validation and sanitization in the detect_dangerous_command function. Restrict terminal_tool access to trusted users only. Monitor for suspicious command execution patterns. Consider disabling terminal_tool if not required for operations.

🔧 خطوات المعالجة (العربية)

قم بتحديث NousResearch hermes-agent فوراً إلى إصدار مصحح بعد commit 5157f5427f19488b31c6fdebbacd15d798ce7f63. طبق التحقق من صحة المدخلات والتطهير في دالة detect_dangerous_command. قيد الوصول إلى terminal_tool للمستخدمين الموثوقين فقط. راقب أنماط تنفيذ الأوامر المريبة. فكر في تعطيل terminal_tool إذا لم تكن مطلوبة للعمليات.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.7.1 A.7.2 A.12.2.1 A.14.2.1

🔵 SAMA CSF

ID.BE-1 PR.AC-1 PR.AC-3 DE.CM-1

🟡 ISO 27001:2022

A.5.1.1 A.6.1.1 A.9.2.1 A.12.2.1 A.14.2.1

🔗 References & Sources 4

🔗

https://gist.github.com/YLChen-007/75fb10319693e86106ced2ef3a472c80

cna@vuldb.com

🔗

https://vuldb.com/submit/812228

cna@vuldb.com

🔗

https://vuldb.com/vuln/365330

cna@vuldb.com

🔗

https://vuldb.com/vuln/365330/cti

cna@vuldb.com

📊 CVSS Score

7.3

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityL — Low / Local

IntegrityL — Low / Local

AvailabilityL — Low / Local

📋 Quick Facts

Severity High

CVSS Score7.3

CWECWE-77

EPSS1.02%

Exploit No

Patch ✗ No

Published 2026-05-24

Source Feed nvd

🇸🇦 Saudi Risk Score

8.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-77

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2026-9367

Introduce Yourself

Sign In Required