Missing Auth in Batch Runner of NousResearch Hermes-Agent 2026.4.16
CVE-2026-9350 Published on May 24, 2026
NousResearch hermes-agent Batch Runner approval.py check_all_command_guards authorization
A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16. This affects the function check_all_command_guards of the file tools/approval.py of the component Batch Runner. Such manipulation leads to missing authorization. The attack can be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Timeline
Advisory disclosed
VulDB entry created
VulDB entry last update
Weakness Types
What is an AuthZ Vulnerability?
The software does not perform an authorization check when an actor attempts to access a resource or perform an action.
CVE-2026-9350 has been classified to as an AuthZ vulnerability or weakness.
What is an AuthZ Vulnerability?
The software performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.
CVE-2026-9350 has been classified to as an AuthZ vulnerability or weakness.
Products Associated with CVE-2026-9350
Want to know whenever a new CVE is published for Nousresearch Hermes Agent? stack.watch will email you.
Affected Versions
NousResearch hermes-agent:- Version 2026.4.0 is affected.
- Version 2026.4.1 is affected.
- Version 2026.4.2 is affected.
- Version 2026.4.3 is affected.
- Version 2026.4.4 is affected.
- Version 2026.4.5 is affected.
- Version 2026.4.6 is affected.
- Version 2026.4.7 is affected.
- Version 2026.4.8 is affected.
- Version 2026.4.9 is affected.
- Version 2026.4.10 is affected.
- Version 2026.4.11 is affected.
- Version 2026.4.12 is affected.
- Version 2026.4.13 is affected.
- Version 2026.4.14 is affected.
- Version 2026.4.15 is affected.
- Version 2026.4.16 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.