CVE-2026-6829
Received Received - Intake
Trust-Boundary Bypass in nesquena hermes-webui Allows Arbitrary Directory Access

Publication date: 2026-04-21

Last updated on: 2026-04-21

Assigner: VulnCheck

Description
nesquena hermes-webui contains a trust-boundary failure vulnerability that allows authenticated attackers to set or change a session workspace to an arbitrary existing directory on disk by manipulating workspace path parameters in endpoints such as /api/session/new, /api/session/update, /api/chat/start, and /api/workspaces/add. Attackers can repoint a session workspace to a directory outside the intended trusted root and then use ordinary file read and write APIs to access or modify files outside the intended workspace boundary within the permissions of the hermes-webui process.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-21
Last Modified
2026-04-21
Generated
2026-06-16
AI Q&A
2026-04-22
EPSS Evaluated
2026-06-15
NVD
CVE-2026-6829
EUVD
EUVD-2026-24506
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
nesquena hermes-webui *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

The vulnerability in nesquena hermes-webui is a trust-boundary failure that allows authenticated attackers to manipulate session workspace paths. By changing parameters in certain API endpoints, attackers can set a session workspace to any existing directory on the disk, even outside the intended trusted root directory.

This means attackers can access or modify files outside the intended workspace boundary using the normal file read and write APIs, within the permissions of the hermes-webui process.

Impact Analysis

This vulnerability can allow attackers to access or modify files outside the intended workspace, potentially leading to unauthorized data exposure or data tampering.

Since the attacker operates within the permissions of the hermes-webui process, the impact depends on what files and data that process can access, which could include sensitive or critical system files.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-6829. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart