Description
Hermes WebUI before version 0.51.303 contains a time-of-check time-of-use (TOCTOU) race condition vulnerability in the git_discard function within api/workspace_git.py that allows attackers to delete files outside the configured workspace boundary by replacing a validated path component with a symlink after validation but before deletion. Attackers can substitute a workspace-controlled path component with a symlink pointing to an external directory between the safe_resolve_ws() validation step and the subsequent Path.unlink() or shutil.rmtree() deletion call, causing the delete operation to follow the symlink and remove arbitrary files outside the workspace.
Published: 2026-06-09
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Hermes WebUI before version 0.51.303 includes a time‑of‑check time‑of‑use race condition in the git_discard API function. The flaw is categorized under CWE‑367 and allows an attacker to delete files that are outside the intended workspace directory by replacing a validated path component with a symlink after the safe resolution step but before the unlink or remove operations. As a result, critical configuration or system files could be removed, leading to data loss, system instability, or further privilege escalation if the application runs with elevated privileges.

Affected Systems

The vulnerability affects Hermes WebUI installations by the vendor nesquena, specifically any release earlier than version 0.51.303. There is no indication that later releases contain the flaw.

Risk and Exploitability

With a CVSS score of 4.3 the vulnerability is considered medium severity, and the EPSS score is not available. It is not listed in the CISA known exploited vulnerabilities catalog. The exploitation requires remote or local interaction with the git_discard API and the ability to create or modify symlinked paths within the configured workspace; the attack vector is likely remote via the web interface. If the application runs with privileged system accounts, deleting arbitrary files could result in system compromise. The lack of an EPSS score suggests a lower probability of widespread exploitation, but the potential impact warrants remediation.

Generated by OpenCVE AI on June 9, 2026 at 20:49 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Hermes WebUI to version 0.51.303 or later, which removes the TOCTOU race condition
  • If a patch is unavailable, disable or restrict access to the git_discard functionality to prevent unauthorized file deletions
  • Run the application with the least privilege necessary, ensuring it does not execute with elevated system permissions that would allow deletion of critical files

Generated by OpenCVE AI on June 9, 2026 at 20:49 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 10 Jun 2026 01:15:00 +0000

Type Values Removed Values Added
First Time appeared Nesquena
Nesquena hermes-webui
Vendors & Products Nesquena
Nesquena hermes-webui

Tue, 09 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description Hermes WebUI before version 0.51.303 contains a time-of-check time-of-use (TOCTOU) race condition vulnerability in the git_discard function within api/workspace_git.py that allows attackers to delete files outside the configured workspace boundary by replacing a validated path component with a symlink after validation but before deletion. Attackers can substitute a workspace-controlled path component with a symlink pointing to an external directory between the safe_resolve_ws() validation step and the subsequent Path.unlink() or shutil.rmtree() deletion call, causing the delete operation to follow the symlink and remove arbitrary files outside the workspace.
Title Hermes WebUI < 0.51.303 TOCTOU Race Condition via git_discard
Weaknesses CWE-367
References
Metrics cvssV3_1

{'score': 5, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:H'}

cvssV4_0

{'score': 4.3, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:A/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Nesquena Hermes-webui
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-09T18:26:54.848Z

Reserved: 2026-06-02T16:30:15.233Z

Link: CVE-2026-49958

cve-icon Vulnrichment

Updated: 2026-06-09T18:26:50.630Z

cve-icon NVD

Status : Deferred

Published: 2026-06-09T17:17:49.220

Modified: 2026-06-09T19:36:10.547

Link: CVE-2026-49958

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T01:00:11Z

Weaknesses