Impact
The vulnerability occurs in the DiscordAdapter._is_allowed_user function of NousResearch Hermes-agent up to version 0.15.2. It allows remote attackers to bypass the normal authentication checks performed when the bot receives a request from Discord, potentially granting unauthorized users the ability to execute privileged commands or otherwise abuse the bot’s functionality. This could lead to unauthorized access to bot capabilities, data leakage, or service disruption.
Affected Systems
The affected product is NousResearch Hermes-agent. All versions up to and including 0.15.2 are vulnerable. Upgrades to newer releases that incorporate the fix are necessary to protect systems using this integration.
Risk and Exploitability
The CVSS score of 6.3 indicates moderate severity, and no EPSS score is available, so the exploit probability is undetermined. The vulnerability can be exploited remotely, but it is reported as having high complexity and difficult exploitability. The vulnerability is not listed in the CISA KEV catalog. Attackers would need to craft a malicious request that deceives the bot into accepting an unauthenticated user as valid, which requires knowledge of the Discord integration path but does not require local system access.
OpenCVE Enrichment