Security Intel Hub 7+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

High

NousResearch/hermes-agent macOS /etc Write Protection Bypass via Symlink

github.com · 2026-04-30

NousResearch/hermes-agent 0.8.0 (2026.4.8)

High

macOS Path Traversal Bypass Fix and POC in _check_sensitive_path

github.com · 2026-04-30

NousResearch/hermes-agent

High

Fix for macOS file write path bypass via symlink in file_tools.py

github.com · 2026-04-30

hermes-agent

High

hermes-agent WeCom Adapter Arbitrary File Read Vulnerability (CWE-22)

GHSA-8733 · github.com · 2026-04-30

hermes-agent

Critical

hermes-agent Webhook Unauth RCE via INSECURE_NO_AUTH Config Bypass

GHSA-6440 · github.com · 2026-04-27

hermes-agent

Critical

Hermes-Agent Unauthenticated RCE via API Server Default Config

github.com · 2026-04-27

hermes-agent 0.8.0

High

Fix: Refuse non-localhost API server binding without auth key

github.com · 2026-04-27

NousResearch/hermes-agent

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 7+

NousResearch/hermes-agent macOS /etc Write Protection Bypass via Symlink

macOS Path Traversal Bypass Fix and POC in _check_sensitive_path

Fix for macOS file write path bypass via symlink in file_tools.py

hermes-agent WeCom Adapter Arbitrary File Read Vulnerability (CWE-22)

hermes-agent Webhook Unauth RCE via INSECURE_NO_AUTH Config Bypass

Hermes-Agent Unauthenticated RCE via API Server Default Config

Fix: Refuse non-localhost API server binding without auth key