Vulnerability  ·  2026-07-05

NousResearch hermes-agent — TUI Gateway shell.exec Protection Mechanism Failure Enables Remote Command Execution

VulnerabilityHigh impactGlobalCVE-2026-14625
A protection-mechanism failure in the shell.exec handler of hermes-agent's TUI gateway server permits remote triggering of shell command execution, with a public exploit already available. Published to NVD July 4, 2026, CVSS 6.3 (Medium).
hermes-agent is an agent framework where shell execution is a core capability; a bypass of the protections gating that capability effectively hands a remote attacker command execution on the host running the agent gateway — a direct agent-execution attack class with a public exploit, not merely theoretical.
The shell.exec function in tui_gateway/server.py fails to properly enforce its protection mechanism, allowing a remote actor to trigger unintended shell command execution against the agent gateway. The exploit has reportedly already been released publicly.
NousResearch hermes-agent ≤ 0.15.2
No fixed version confirmed at time of writing; monitor NousResearch hermes-agent repository for a patch and restrict network exposure of the TUI gateway pending remediation.
SecurityVulnerability.io - CVE-2026-14625Tenable - CVE-2026-14625
See this in the live feed Explore related AI security and governance findings — updated every morning.
Open the feed →