CVE-2026-7396 | NousResearch hermes-agent 0.8.0 WeChat Work Platform Adapter wecom.py path traversal (Issue 8733)

A vulnerability marked as critical has been reported in NousResearch hermes-agent 0.8.0. Affected by this issue is some unknown functionality of the file gateway/platforms/wecom.py of the component WeChat Work Platform Adapter. The manipulation leads to path traversal. This vulnerability is traded as CVE-2026-7396. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Tekst info:

Gepubliceerd: 12:49 - 29 Apr 2026

vuldb.com

Full text URL: https://vuldb.com/vuln/360120
Textarea URL (deze pagina):
https://textarea.nl/nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOzwWx8vSNzQwMjQwAnksJpQ==_2026-04-29
Bron: https://vuldb.com/?rss.recent
Vuldb: https://vuldb.com
Publicatie datum: 12:49 - 29 Apr 2026}
Data laatste keer ververst op:
13:45 - 29 Apr 2026