漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
nesquena hermes-webui Arbitrary Workspace Directory Access
Vulnerability Description
nesquena hermes-webui contains a trust-boundary failure vulnerability that allows authenticated attackers to set or change a session workspace to an arbitrary existing directory on disk by manipulating workspace path parameters in endpoints such as /api/session/new, /api/session/update, /api/chat/start, and /api/workspaces/add. Attackers can repoint a session workspace to a directory outside the intended trusted root and then use ordinary file read and write APIs to access or modify files outside the intended workspace boundary within the permissions of the hermes-webui process.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Hermes Web UI 路径遍历漏洞
Vulnerability Description
Hermes Web UI是Nathan Esquenazi个人开发者的一个轻量级、暗色主题的自主智能体Web界面。 Hermes Web UI存在路径遍历漏洞,该漏洞源于信任边界失效,允许经过身份验证的攻击者通过操纵/api/session/new、/api/session/update、/api/chat/start和/api/workspaces/add等端点中的workspace路径参数,将会话工作区设置为磁盘上任意现有目录,可能导致攻击者将工作区重定向到预期受信任根目录之外。
CVSS Information
N/A
Vulnerability Type
N/A