Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

CVE-2026-49957— Hermes WebUI < 0.51.296 Workspace Boundary Bypass via api/workspace.py

CVSS 7.7 · High EPSS 0.42% · P34

Affected Version Matrix 1

VendorProductVersion RangeStatus
nesquenahermes-webui< 0.51.296affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-49957

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Hermes WebUI < 0.51.296 Workspace Boundary Bypass via api/workspace.py
Source: NVD (National Vulnerability Database)
Vulnerability Description
Hermes WebUI before version 0.51.296 contains a workspace boundary bypass vulnerability that allows authenticated attackers to circumvent blocked-root path checks by exploiting an early return in the SSH/remote terminal profile workspace resolution logic within _remote_terminal_workspace_candidate(). Attackers can configure a remote terminal working directory to a system directory such as /etc, causing the workspace resolution path to accept it as a trusted local workspace root before the _is_blocked_workspace_path() guard executes, enabling read access to local system files through workspace file-read helpers.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Hermes Web UI 路径遍历漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Hermes Web UI是Nathan Esquenazi个人开发者的一个轻量级、暗色主题的自主智能体Web界面。 Hermes Web UI 0.51.269之前版本存在路径遍历漏洞,该漏洞源于工作空间边界绕过问题,可能导致认证攻击者通过利用远程终端工作空间解析逻辑中的早期返回绕过根路径检查,从而读取本地系统文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
nesquenahermes-webui 0 ~ 0.51.296 -

II. Public POCs for CVE-2026-49957

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium
Qwen3.6-35B-A3B · 10601 chars
Pro+ exclusive includes:
Vulnerability reproduction recording (real sandbox build + trigger, exclusive)
In-depth vulnerability mechanism
Trigger conditions & impact
Full executable POC code
Exploit chain & mitigation
POC zip download
100+ AI POC generations per month

III. Intelligence Information for CVE-2026-49957

登录查看更多情报信息。

Patches & Fixes for CVE-2026-49957 (3)

News Coverage for CVE-2026-49957 (1)

Other References for CVE-2026-49957 (1)

Same Patch Batch · nesquena · 2026-06-09 · 5 CVEs total

CVE-2026-499598.8 HIGHHermes WebUI < 0.51.311 RCE via Git Configuration Injection
CVE-2026-499566.5 MEDIUMHermes WebUI < 0.51.269 Profile Isolation Bypass via sessions search
CVE-2026-499555.3 MEDIUMHermes WebUI < 0.51.270 Resource Exhaustion via passkey/options
CVE-2026-499585.0 MEDIUMHermes WebUI < 0.51.303 TOCTOU Race Condition via git_discard

IV. Related Vulnerabilities

Same product: hermes-webui
Same vendor: nesquena
Same weakness: CWE-22

V. Comments for CVE-2026-49957

No comments yet

Leave a comment