CVE-2026-58174 | nesquena hermes-webui up to 0.51.520 /api/session/import permission assignment
A vulnerability was found in nesquena hermes-webui up to 0.51.520. It has been classified as problematic. The affected element is an unknown function of the file /api/session/import. The manipulation leads to incorrect permission assignment.
This vulnerability is uniquely identified as CVE-2026-58174. The attack is possible to be carried out remotely. No exploit exists.
Upgrading the affected component is recommended.VulDB Recent EntriesRead More