CVE-2026-53869
HIGHHermes Agent < 0.16.0 - DNS Rebinding Bypass via WebSocket Endpoints
Title source: cnaDescription
Hermes Agent before 0.16.0 contains a DNS rebinding vulnerability in WebSocket endpoints that allows remote attackers to bypass Host and Origin validation. FastAPI HTTP middleware does not execute for WebSocket upgrade requests on /api/pty, /api/ws, /api/pub, and /api/events endpoints, enabling attackers to exploit DNS rebinding and inject malicious commands or read terminal output.
References (5)
Core 5
Core References
Release Notes release-notes
Release Notes
https://github.com/NousResearch/hermes-agent/releases/tag/v2026.6.5
Issue Tracking issue-tracking
Researcher Pull Request
https://github.com/NousResearch/hermes-agent/pull/30221
Issue Tracking issue-tracking
Maintainer Pull Request
https://github.com/NousResearch/hermes-agent/pull/31685
Patch patch
Patch Commit
https://github.com/NousResearch/hermes-agent/commit/d9ec90585cf7616b5972e44cf8d92bb569fc3feb
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/hermes-agent-dns-rebinding-bypass-via-websocket-endpoints
Scores
CVSS v3
7.5
EPSS
0.0060
EPSS Percentile
44.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-306
Status
published
Products (3)
NousResearch/hermes-agent
< 0.16.0
NousResearch/hermes-agent
0.16.0
pypi/hermes-agent
0 - 0.16.0PyPI
Published
Jun 17, 2026
Tracked Since
Jun 18, 2026