CVE-2026-49957

Deferred Deferred - Pending Action

Workspace Bypass in Hermes WebUI Allows Local File Access

Publication date: 2026-06-09

Last updated on: 2026-06-10

Assigner: VulnCheck

Description

Hermes WebUI before version 0.51.296 contains a workspace boundary bypass vulnerability that allows authenticated attackers to circumvent blocked-root path checks by exploiting an early return in the SSH/remote terminal profile workspace resolution logic within _remote_terminal_workspace_candidate(). Attackers can configure a remote terminal working directory to a system directory such as /etc, causing the workspace resolution path to accept it as a trusted local workspace root before the _is_blocked_workspace_path() guard executes, enabling read access to local system files through workspace file-read helpers.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-06-09

Last Modified

2026-06-10

Generated

2026-06-30

AI Q&A

2026-06-09

EPSS Evaluated

2026-06-28

NVD

CVE-2026-49957

EUVD

EUVD-2026-35704

Affected Vendors & Products

Vendor	Product	Version / Range
nesquena	hermes_webui	to 0.51.269 (exc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-22	The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Attack-Flow Graph

Executive Summary

CVE-2026-49957 is a workspace boundary bypass vulnerability in Hermes WebUI versions before 0.51.269. It allows authenticated attackers to circumvent blocked-root path checks by exploiting an early return in the SSH/remote terminal profile workspace resolution logic within the function _remote_terminal_workspace_candidate().

Attackers can configure a remote terminal working directory to a system directory such as /etc. Because the workspace resolution path accepts this directory as a trusted local workspace root before the blocked-root guard executes, attackers can gain read access to local system files through workspace file-read helpers.

Impact Analysis

This vulnerability can allow authenticated attackers to read sensitive local system files by tricking the Hermes WebUI into treating blocked system directories like /etc as trusted local workspaces.

Such unauthorized read access could expose critical configuration files (e.g., /etc/hosts), potentially leading to information disclosure and aiding further attacks.

The vulnerability has a CVSS v3.1 base score of 7.7, indicating a high severity impact on confidentiality without affecting integrity or availability.

Detection Guidance

This vulnerability involves the acceptance of blocked system root directories such as /etc as remote terminal workspace roots due to an early return in the workspace resolution logic. Detection involves checking if any remote terminal profiles or SSH configurations have their working directory (terminal.cwd) set to sensitive system directories like /etc.

You can inspect the configuration files or profiles used by Hermes WebUI to identify if any remote terminal workspace is configured with a working directory pointing to blocked system paths.

Suggested commands to detect potentially vulnerable configurations include searching for workspace or terminal profile settings referencing system directories:

grep -r 'terminal.cwd' /path/to/hermes/configs | grep '/etc'
grep -r 'workspace' /path/to/hermes/configs | grep '/etc'

Additionally, monitoring file-read helper logs or access logs for unexpected reads from system directories like /etc may help detect exploitation attempts.

Mitigation Strategies

The primary mitigation step is to update Hermes WebUI to version 0.51.269 or later, where the vulnerability has been fixed by adding blocked-root guard checks to reject system directories like /etc as remote terminal workspace roots.

If immediate updating is not possible, review and modify remote terminal workspace configurations to ensure that no workspace or terminal profile uses system directories such as /etc as the working directory.

Additionally, consider auditing and restricting authenticated users' ability to configure remote terminal workspaces to prevent setting blocked root paths.

Be aware that some fallback functions may still allow unvalidated blocked paths, so applying the official patch is strongly recommended to fully mitigate the risk.

Compliance Impact

CVE-2026-49957 allows authenticated attackers to bypass workspace path restrictions and gain read access to sensitive local system files by exploiting a vulnerability in the Hermes WebUI workspace resolution logic.

This unauthorized access to system files could lead to exposure of sensitive information, which may impact compliance with data protection standards and regulations such as GDPR and HIPAA that require strict controls on access to sensitive data.

By enabling attackers to read protected system files, the vulnerability increases the risk of data breaches or unauthorized disclosure of personal or protected health information, potentially violating regulatory requirements for confidentiality and data security.

Therefore, organizations using affected versions of Hermes WebUI should update to the patched version to mitigate this risk and maintain compliance with relevant security and privacy standards.

Hi! I’m here to help you understand CVE-2026-49957. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70