CVE-2026-53870 — Hermes Agent creates response_store.db and webhook_subscriptions.json with world

Description

Hermes Agent before 0.16.0 creates response_store.db and webhook_subscriptions.json with world-readable permissions (mode 0o644), exposing conversation history and HMAC secrets to local users. Attackers with local filesystem access can read these files directly to obtain sensitive data including conversation history, tool payloads, prompts, and per-route HMAC secrets.

How to fix CVE-2026-53870

To remediate CVE-2026-53870, upgrade the affected package to a fixed version below.

—upgrade to 0.16.0 or later

Is CVE-2026-53870 being exploited?

No exploitation signal available. Neither CISA KEV nor a current EPSS score has been published for CVE-2026-53870.

Affected packages (1)

from 0, < 0.16.0

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 4.0	—	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
osv	CVSS 3.1	MEDIUM5.5	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References (7)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2026-53870
PATCHgithub.com/NousResearch/hermes-agent
WEBgithub.com/NousResearch/hermes-agent/commit/3bace071bfadf2d2bec2ee048471a31ec920e3e8
WEBgithub.com/NousResearch/hermes-agent/pull/30917