CVE-2026-7113 | NousResearch hermes-agent 0.8.0 Webhooks Endpoint webhook.py _INSECURE_NO_AUTH missing authentication (Issue 6440)

A vulnerability labeled as critical has been found in NousResearch hermes-agent 0.8.0. Affected by this issue is some unknown functionality of the file gateway/platforms/webhook.py of the component Webhooks Endpoint. The manipulation of the argument _INSECURE_NO_AUTH results in missing authentication.

This vulnerability is reported as CVE-2026-7113. The attack can be launched remotely. Moreover, an exploit is present.

The project was informed of the problem early through a pull request but has not reacted yet.VulDB Recent EntriesRead More