CVE-2026-53870 | Hermes Agent before 0.16.0 creates response_store.db and web… | CVSS 5.5 MEDIUM

Description

Hermes Agent before 0.16.0 creates response_store.db and webhook_subscriptions.json with world-readable permissions (mode 0o644), exposing conversation history and HMAC secrets to local users. Attackers with local filesystem access can read these files directly to obtain sensitive data including conversation history, tool payloads, prompts, and per-route HMAC secrets.

Metadata

CVE ID: CVE-2026-53870
State: PUBLISHED
Assigner: VulnCheck
Reserved: 2026-06-10 21:23 UTC
Published: 2026-06-17 17:57 UTC
Last updated: 2026-06-17 18:39 UTC
Primary CWE: CWE-276
Incorrect Default Permissions
Vendor / Product: NousResearch / hermes-agent
Sources: cve.org · NVD

Severity & Metrics

5.5 MEDIUM CVSS 3.1

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

SSVC — CISA Coordinator

Exploitation: PoC
Automatable: no
Tech. Impact: partial

Affected products (1)

Vendor	Product	Platform	Versions
NousResearch	hermes-agent	—	0 < 0.16.0, 0.16.0

Weakness (CWE)

CWE	Source	Description
CWE-276	cna	Incorrect Default Permissions

CVSS scores (2)

Score	Severity	Version	Source	Vector
6.8	MEDIUM	4.0	cna	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
5.5	MEDIUM	3.1	cna	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References (5)

Release Notes https://github.com/NousResearch/hermes-agent/releases/tag/v2026.6.5
Researcher Pull Request https://github.com/NousResearch/hermes-agent/pull/30917
Maintainer Pull Request https://github.com/NousResearch/hermes-agent/pull/31469
Patch Commit https://github.com/NousResearch/hermes-agent/commit/3bace071bfadf2d2bec2ee048471a31ec920e3e8
https://www.vulncheck.com/advisories/hermes-agent-sensitive-file-permission-vulnerability-in-store-files