CVE-2026-22798 | softwarepub hermes up to 0.9.0 invenio_rdm log file (GHSA-jm5j-jfrm-hm23)

A vulnerability was found in softwarepub hermes up to 0.9.0 and classified as problematic. This affects the function invenio_rdm. Executing a manipulation can lead to sensitive information in log files.

This vulnerability is registered as CVE-2026-22798. The attack needs to be launched locally. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More