CVE-2026-10222

Summary

A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this issue is the function _sanitize_env_lines of the file hermes_cli/config.py. The manipulation results in injection. It is possible to launch the attack remotely. The attack requires a high level of complexity. The exploitation is known to be difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Affected Software

VendorProductVersion RangeStatus
NousResearchhermes-agent2026.4.0affected
NousResearchhermes-agent2026.4.1affected
NousResearchhermes-agent2026.4.2affected
NousResearchhermes-agent2026.4.3affected
NousResearchhermes-agent2026.4.4affected
NousResearchhermes-agent2026.4.5affected
NousResearchhermes-agent2026.4.6affected
NousResearchhermes-agent2026.4.7affected
NousResearchhermes-agent2026.4.8affected
NousResearchhermes-agent2026.4.9affected
NousResearchhermes-agent2026.4.10affected
NousResearchhermes-agent2026.4.11affected
NousResearchhermes-agent2026.4.12affected
NousResearchhermes-agent2026.4.13affected
NousResearchhermes-agent2026.4.14affected
NousResearchhermes-agent2026.4.15affected
NousResearchhermes-agent2026.4.16affected
NousResearchhermes-agent2026.4.17affected
NousResearchhermes-agent2026.4.18affected
NousResearchhermes-agent2026.4.19affected
NousResearchhermes-agent2026.4.20affected
NousResearchhermes-agent2026.4.21affected
NousResearchhermes-agent2026.4.22affected
NousResearchhermes-agent2026.4.23affected
NousResearchhermes-agent2026.4.24affected
NousResearchhermes-agent2026.4.25affected
NousResearchhermes-agent2026.4.26affected
NousResearchhermes-agent2026.4.27affected
NousResearchhermes-agent2026.4.28affected
NousResearchhermes-agent2026.4.29affected
NousResearchhermes-agent2026.4.30affected

Weaknesses

  • CWE-74: Injection
  • CWE-707: Improper Neutralization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References