CVE-2026-53869— Hermes Agent < 0.16.0 - DNS Rebinding Bypass via WebSocket Endpoints
Possible ATT&CK Techniques 1AI
T1190 · Exploit Public-Facing ApplicationAffected Version Matrix 2
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NousResearch | hermes-agent | < 0.16.0 | affected |
0.16.0 | unaffected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-53869
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Hermes Agent < 0.16.0 - DNS Rebinding Bypass via WebSocket Endpoints
Source: NVD (National Vulnerability Database)
Vulnerability Description
Hermes Agent before 0.16.0 contains a DNS rebinding vulnerability in WebSocket endpoints that allows remote attackers to bypass Host and Origin validation. FastAPI HTTP middleware does not execute for WebSocket upgrade requests on /api/pty, /api/ws, /api/pub, and /api/events endpoints, enabling attackers to exploit DNS rebinding and inject malicious commands or read terminal output.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
关键功能的认证机制缺失
Source: NVD (National Vulnerability Database)
Vulnerability Title
nousresearch hermes-agent 授权问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
nousresearch hermes-agent是nousresearch的人工智能代理框架。 nousresearch hermes-agent 0.16.0之前版本存在安全漏洞,该漏洞源于WebSocket端点存在的DNS重绑定漏洞,导致远程攻击者绕过Host和Origin验证,FastAPI HTTP中间件未对/api/pty、/api/ws、/api/pub和/api/events终端的WebSocket升级请求执行验证,使得攻击者能够利用DNS重绑定注入恶意命令或读取终端输出。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| NousResearch | hermes-agent | 0 ~ 0.16.0 | - |
II. Public POCs for CVE-2026-53869
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-53869
请登录查看更多情报信息。
Patches & Fixes for CVE-2026-53869 (3)
Vendor Advisories for CVE-2026-53869 (1)
Vendor Pages for CVE-2026-53869 (1)
IV. Related Vulnerabilities
Same product: hermes-agent
- CVE-2026-53870
Hermes Agent < 0.16.0 - Sensitive File Permission Vulnerabil - CVE-2026-11461
NousResearch hermes-agent resume Endpoint hermes_state.py re - CVE-2026-10548
NousResearch hermes-agent Credential Pool Synchronization cr - CVE-2026-10224
NousResearch hermes-agent Webhook Endpoint feishu.py _handle - CVE-2026-10223
NousResearch hermes-agent memory_tool.py _scan_memory_conten
Same vendor: NousResearch
- CVE-2026-53870
Hermes Agent < 0.16.0 - Sensitive File Permission Vulnerabil - CVE-2026-11461
NousResearch hermes-agent resume Endpoint hermes_state.py re - CVE-2026-10548
NousResearch hermes-agent Credential Pool Synchronization cr - CVE-2026-10224
NousResearch hermes-agent Webhook Endpoint feishu.py _handle - CVE-2026-10223
NousResearch hermes-agent memory_tool.py _scan_memory_conten
Same weakness: CWE-306
- CVE-2026-13325
Virt-handler-rhel9: kubevirt: kubevirt: disabletls migration - CVE-2026-43920
FOSSBilling: Unauthenticated update patcher endpoint allows - CVE-2025-71327
Flowise - Authentication Bypass via Unprotected Registration - CVE-2026-40702
EVoke Systems EVoke CSMS Missing Authentication for Critical - CVE-2026-54040
LibreChat: 2FA Backup Code Regeneration Without OTP Verifica
V. Comments for CVE-2026-53869
No comments yet