Known Vulnerabilities for Hermes WebUI by Nesquena
Listed below are 5 of the newest known vulnerabilities associated with "Hermes WebUI" by "Nesquena".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-22677 json | Hermes WebUI prior to 0.51.44 contains a path traversal vulnerability in the session import endpoint that allows authenticate... | Not Provided | 2026-05-13 | 2026-05-26 |
| CVE-2026-11322 json | Hermes WebUI prior to v0.51.221 contains a path traversal vulnerability that allows attackers to escape the workspace boundar... | Not Provided | 2026-06-04 | 2026-06-04 |
| CVE-2026-6832 json | Hermes WebUI contains an arbitrary file deletion vulnerability in the /api/session/delete endpoint that allows authenticated ... | Not Provided | 2026-04-21 | 2026-05-14 |
| CVE-2026-6830 json | nesquena hermes-webui contains an environment variable leakage vulnerability where profile switching does not clear environme... | Not Provided | 2026-04-21 | 2026-04-22 |
| CVE-2026-6829 json | nesquena hermes-webui contains a trust-boundary failure vulnerability that allows authenticated attackers to set or change a ... | Not Provided | 2026-04-21 | 2026-04-22 |