CVE-2026-7112 | NousResearch hermes-agent 0.8.0 API_SERVER_KEY api_server.py _check_auth improper authentication (Issue 6439)

A vulnerability identified as critical has been detected in NousResearch hermes-agent 0.8.0. Affected by this vulnerability is the function _check_auth of the file gateway/platforms/api_server.py of the component API_SERVER_KEY Handler. The manipulation leads to improper authentication.

This vulnerability is documented as CVE-2026-7112. The attack can be initiated remotely. Additionally, an exploit exists.

The project was informed of the problem early through a pull request but has not reacted yet.VulDB Recent EntriesRead More