Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

NVD
NVDadded 2026/05/24 5:16 a.m.12 views

CVE-2026-9354

A vulnerability was detected in NousResearch hermes-agent up to 2026.4.16. The affected element is an unknown function of the component Slack Agent/Mattermost Agent. The manipulation of the argument formatmessage results in escaping of output. The attack can be executed remotely. The exploit is n...

6.9CVSS0.00429EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/24 4:15 a.m.9 views

EUVD-2026-31566

A vulnerability was detected in NousResearch hermes-agent up to 2026.4.16. The affected element is an unknown function of the component Slack Agent/Mattermost Agent. The manipulation of the argument formatmessage results in escaping of output. The attack can be executed remotely. The exploit is n...

6.9CVSS6.3AI score0.00429EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/05/24 4:15 a.m.9 views

CVE-2026-9354 NousResearch hermes-agent Slack Agent/Mattermost Agent escape output

A vulnerability was detected in NousResearch hermes-agent up to 2026.4.16. The affected element is an unknown function of the component Slack Agent/Mattermost Agent. The manipulation of the argument formatmessage results in escaping of output. The attack can be executed remotely. The exploit is n...

6.9CVSS6.3AI score0.00429EPSS
Exploits0References4
CVE
CVEadded 2026/05/24 4:15 a.m.22 views

CVE-2026-9354

CVE-2026-9354 concerns NousResearch hermes-agent (up to version 2026.4.16) affecting the Slack Agent/Mattermost Agent component. The vulnerability targets an unknown function where manipulating the argument format_message results in output escaping. The issue is exploitable remotely and, per the ...

6.9CVSS6.3AI score0.00429EPSS
Exploits0References4
OSV
OSVadded 2024/09/30 12:6 a.m.6 views

OSV-2024-1158 Use-of-uninitialized-value in format_message

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=370032374 Crash type: Use-of-uninitialized-value Crash state: formatmessage ultrahdr::JpegDecoderHelper::decode ultrahdr::JpegDecoderHelper::decompressImage...

7.2AI score
Exploits0References1
Rows per page
Query Builder