Skip to content
Threat Feed

Product

Hermes-Agent (2026.4.23)

1 brief RSS
high advisory

NousResearch hermes-agent Injection Vulnerability (CVE-2026-9366)

A remote injection vulnerability exists in NousResearch hermes-agent 2026.4.23 within the _scan_context_content function of the agent/prompt_builder.py file, allowing attackers to inject malicious code.

hermes-agent cve injection
2r 1t 1c