CVE-2026-11461 - Vulnerability Details

- NousResearch hermes-agent resume Endpoint hermes_state.py resolve_session_by_title authorization

Description

A vulnerability has been found in NousResearch hermes-agent up to 0.12.0. This affects the function resolve_session_by_title of the file hermes_state.py of the component resume Endpoint. Such manipulation of the argument Title leads to authorization bypass. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published: 2026-06-07

Score: 5.3 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability is located in the resolve_session_by_title function within hermes_state.py of the resume Endpoint in NousResearch hermes-agent. By manipulating the Title argument, an attacker can bypass the intended authorization controls, potentially accessing data or actions that should be restricted. This weakness is categorized under CWE-285 (Improper Authorization) and CWE-639 (Authorization Bypass Through User-Controlled Data). The exploit is feasible remotely and has been disclosed publicly, meaning attackers could already be deploying it.

Affected Systems

All installations of NousResearch hermes‑agent up through version 0.12.0 are affected. No specific patch level is known, but any deployment that has not yet upgraded beyond 0.12.0 must be considered vulnerable.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate severity, and the EPSS score is not available at this time. The vulnerability is not listed in the CISA KEV catalog. Based on the description, the attack can be performed remotely, likely through crafted HTTP requests to the resume endpoint. The lack of a published fix and the public disclosure suggest that exploitation may already be occurring in the wild.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

NousResearch

hermes-agent

affected

Version	Status	Constraints
`0.1`	affected	—
`0.2`	affected	—
`0.3`	affected	—
`0.4`	affected	—
`0.5`	affected	—
`0.6`	affected	—
`0.7`	affected	—
`0.8`	affected	—
`0.9`	affected	—
`0.10`	affected	—
`0.11`	affected	—
`0.12.0`	affected	—

No data.

Vendor Product Confidence Versions

Nousresearch

Hermes-agent

95%

Version	Status	Scheme	Platform
`0.1`	affected	generic	—
`0.2`	affected	generic	—
`0.3`	affected	generic	—
`0.4`	affected	generic	—
`0.5`	affected	generic	—
`0.6`	affected	generic	—
`0.7`	affected	generic	—
`0.8`	affected	generic	—
`0.9`	affected	generic	—
`0.10`	affected	generic	—
`0.11`	affected	generic	—
`0.12.0`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade NousResearch hermes‑agent to a version beyond 0.12.0 once a patch is released by the vendor.
If an upgrade is not immediately available, monitor the official NousResearch website and security advisories for an update or a formal advisory.
In the interim, restrict external access to the resume endpoint via firewall or reverse proxy rules to limit the attack surface.

Generated by OpenCVE AI on June 8, 2026 at 02:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00043.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://gist.github.com/YLChen-007/7951b3dc39193fb675914cc5d8b672fa
https://gist.github.com/YLChen-007/c2d162e9c8d39584223683cdcba98607
https://vuldb.com/cve/CVE-2026-11461
https://vuldb.com/submit/829402
https://vuldb.com/vuln/369081
https://vuldb.com/vuln/369081/cti

History

Mon, 08 Jun 2026 01:00:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability has been found in NousResearch hermes-agent up to 0.12.0. This affects the function resolve_session_by_title of the file hermes_state.py of the component resume Endpoint. Such manipulation of the argument Title leads to authorization bypass. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title		NousResearch hermes-agent resume Endpoint hermes_state.py resolve_session_by_title authorization
First Time appeared		Nousresearch Nousresearch hermes-agent
Weaknesses		CWE-285 CWE-639
CPEs		cpe:2.3:a:nousresearch:hermes-agent::::::::
Vendors & Products		Nousresearch Nousresearch hermes-agent
References		https://gist.github.com/YLChen-007/7951b3dc39193fb675914cc5d8b672fa https://gist.github.com/YLChen-007/c2d162e9c8d39584223683cdcba98607 https://vuldb.com/cve/CVE-2026-11461 https://vuldb.com/submit/829402 https://vuldb.com/vuln/369081 https://vuldb.com/vuln/369081/cti
Metrics		cvssV2_0 `{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Nousresearch Hermes-agent

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-06-07T21:45:09.216Z

Updated: 2026-06-07T21:45:09.216Z

Reserved: 2026-06-07T07:28:06.447Z

Link: CVE-2026-11461

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2026-06-07T22:16:22.547

Modified: 2026-06-08T14:57:14.757

Link: CVE-2026-11461

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-08T03:00:06Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object