diff --git a/advisories/feed.json b/advisories/feed.json index 327aed6..99b0e75 100644 --- a/advisories/feed.json +++ b/advisories/feed.json @@ -1,8 +1,183 @@ { "version": "0.0.3", - "updated": "2026-05-31T07:16:20Z", + "updated": "2026-06-01T07:41:34Z", "description": "Community-driven security advisory feed for ClawSec. Automatically updated with OpenClaw-related CVEs from NVD and community-reported security incidents.", "advisories": [ + { + "id": "CVE-2026-10224", + "severity": "medium", + "type": "uncontrolled_resource_consumption", + "nvd_category_id": "CWE-400", + "title": "A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. This vulner...", + "description": "A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. This vulnerability affects the function _handle_webhook_request of the file gateway/platforms/feishu.py of the component Webhook Endpoint. Such manipulation leads to resource consumption. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T06:16:38.657", + "references": [ + "https://gist.github.com/YLChen-007/0304e313d811f187ade93d3b01de0f87", + "https://vuldb.com/cve/CVE-2026-10224", + "https://vuldb.com/submit/822022" + ], + "cvss_score": 5.3, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10224", + "exploitability_score": "high", + "exploitability_rationale": "Medium CVSS score (5.3); remotely exploitable without authentication; RCE is critical in agent deployments", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": false, + "requires_user_interaction": false, + "complexity": "low" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, + { + "id": "CVE-2026-10223", + "severity": "medium", + "type": "unknown_cwe_707", + "nvd_category_id": "CWE-707", + "title": "A weakness has been identified in NousResearch hermes-agent up to 2026.4.30. This affects the functi...", + "description": "A weakness has been identified in NousResearch hermes-agent up to 2026.4.30. This affects the function _scan_memory_content of the file tools/memory_tool.py. This manipulation causes injection. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T06:16:37.900", + "references": [ + "https://gist.github.com/YLChen-007/a1fb77ad2488c545a35d0f66356ea7b4", + "https://vuldb.com/cve/CVE-2026-10223", + "https://vuldb.com/submit/822021" + ], + "cvss_score": 6.3, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10223", + "exploitability_score": "medium", + "exploitability_rationale": "Medium CVSS score (6.3); network accessible", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": true, + "requires_user_interaction": false, + "complexity": "low" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, + { + "id": "CVE-2026-10222", + "severity": "medium", + "type": "unknown_cwe_707", + "nvd_category_id": "CWE-707", + "title": "A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this i...", + "description": "A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this issue is the function _sanitize_env_lines of the file hermes_cli/config.py. The manipulation results in injection. It is possible to launch the attack remotely. The attack requires a high level of complexity. The exploitation is known to be difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T06:16:36.053", + "references": [ + "https://gist.github.com/YLChen-007/7ee2eeaa383b3540d2e8854250c03fb0", + "https://vuldb.com/cve/CVE-2026-10222", + "https://vuldb.com/submit/822020" + ], + "cvss_score": 5.6, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10222", + "exploitability_score": "high", + "exploitability_rationale": "Medium CVSS score (5.6); remotely exploitable without authentication", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": false, + "requires_user_interaction": false, + "complexity": "high" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, + { + "id": "CVE-2026-10221", + "severity": "high", + "type": "unknown_cwe_707", + "nvd_category_id": "CWE-707", + "title": "A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerabi...", + "description": "A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function _compress_context of the file run_agent.py. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T04:16:21.550", + "references": [ + "https://gist.github.com/YLChen-007/d343fcfe2c009cd45f56dc475fd5ac03", + "https://vuldb.com/cve/CVE-2026-10221", + "https://vuldb.com/submit/822019" + ], + "cvss_score": 7.3, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10221", + "exploitability_score": "high", + "exploitability_rationale": "High CVSS score (7.3); remotely exploitable without authentication", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": false, + "requires_user_interaction": false, + "complexity": "low" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, + { + "id": "CVE-2026-10220", + "severity": "high", + "type": "unknown_cwe_707", + "nvd_category_id": "CWE-707", + "title": "A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Affected is the functio...", + "description": "A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Affected is the function _serve_plugin_skill/skill_view of the file tools/skills_tool.py. Executing a manipulation can lead to injection. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T04:16:21.260", + "references": [ + "https://gist.github.com/YLChen-007/9dd399c6f75b31fa741a613dfd41de08", + "https://vuldb.com/cve/CVE-2026-10220", + "https://vuldb.com/submit/822018" + ], + "cvss_score": 7.3, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10220", + "exploitability_score": "high", + "exploitability_rationale": "High CVSS score (7.3); remotely exploitable without authentication", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": false, + "requires_user_interaction": false, + "complexity": "low" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, { "id": "CVE-2026-35674", "severity": "high", diff --git a/advisories/feed.json.sig b/advisories/feed.json.sig index 92984e1..cc454e5 100644 --- a/advisories/feed.json.sig +++ b/advisories/feed.json.sig @@ -1 +1 @@ -SE1ABPYgbMiDh9K/VkPj5uJZ0tEDlEw/DdmTFWLsu3znvm/l5m0pPAllEJ1a6NYktZMcTtzRASy6dN9coDZyBg== \ No newline at end of file +9PWV2h4x7ERA8nnPVlSREnEehSm1o2eG0XzjqYZZ0cye6cxKubG7CduX/gz/osUeOu9t2AANvWbhCed1SquNDA== \ No newline at end of file diff --git a/skills/clawsec-feed/advisories/feed.json b/skills/clawsec-feed/advisories/feed.json index 327aed6..99b0e75 100644 --- a/skills/clawsec-feed/advisories/feed.json +++ b/skills/clawsec-feed/advisories/feed.json @@ -1,8 +1,183 @@ { "version": "0.0.3", - "updated": "2026-05-31T07:16:20Z", + "updated": "2026-06-01T07:41:34Z", "description": "Community-driven security advisory feed for ClawSec. Automatically updated with OpenClaw-related CVEs from NVD and community-reported security incidents.", "advisories": [ + { + "id": "CVE-2026-10224", + "severity": "medium", + "type": "uncontrolled_resource_consumption", + "nvd_category_id": "CWE-400", + "title": "A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. This vulner...", + "description": "A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. This vulnerability affects the function _handle_webhook_request of the file gateway/platforms/feishu.py of the component Webhook Endpoint. Such manipulation leads to resource consumption. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T06:16:38.657", + "references": [ + "https://gist.github.com/YLChen-007/0304e313d811f187ade93d3b01de0f87", + "https://vuldb.com/cve/CVE-2026-10224", + "https://vuldb.com/submit/822022" + ], + "cvss_score": 5.3, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10224", + "exploitability_score": "high", + "exploitability_rationale": "Medium CVSS score (5.3); remotely exploitable without authentication; RCE is critical in agent deployments", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": false, + "requires_user_interaction": false, + "complexity": "low" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, + { + "id": "CVE-2026-10223", + "severity": "medium", + "type": "unknown_cwe_707", + "nvd_category_id": "CWE-707", + "title": "A weakness has been identified in NousResearch hermes-agent up to 2026.4.30. This affects the functi...", + "description": "A weakness has been identified in NousResearch hermes-agent up to 2026.4.30. This affects the function _scan_memory_content of the file tools/memory_tool.py. This manipulation causes injection. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T06:16:37.900", + "references": [ + "https://gist.github.com/YLChen-007/a1fb77ad2488c545a35d0f66356ea7b4", + "https://vuldb.com/cve/CVE-2026-10223", + "https://vuldb.com/submit/822021" + ], + "cvss_score": 6.3, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10223", + "exploitability_score": "medium", + "exploitability_rationale": "Medium CVSS score (6.3); network accessible", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": true, + "requires_user_interaction": false, + "complexity": "low" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, + { + "id": "CVE-2026-10222", + "severity": "medium", + "type": "unknown_cwe_707", + "nvd_category_id": "CWE-707", + "title": "A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this i...", + "description": "A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this issue is the function _sanitize_env_lines of the file hermes_cli/config.py. The manipulation results in injection. It is possible to launch the attack remotely. The attack requires a high level of complexity. The exploitation is known to be difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T06:16:36.053", + "references": [ + "https://gist.github.com/YLChen-007/7ee2eeaa383b3540d2e8854250c03fb0", + "https://vuldb.com/cve/CVE-2026-10222", + "https://vuldb.com/submit/822020" + ], + "cvss_score": 5.6, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10222", + "exploitability_score": "high", + "exploitability_rationale": "Medium CVSS score (5.6); remotely exploitable without authentication", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": false, + "requires_user_interaction": false, + "complexity": "high" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, + { + "id": "CVE-2026-10221", + "severity": "high", + "type": "unknown_cwe_707", + "nvd_category_id": "CWE-707", + "title": "A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerabi...", + "description": "A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function _compress_context of the file run_agent.py. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T04:16:21.550", + "references": [ + "https://gist.github.com/YLChen-007/d343fcfe2c009cd45f56dc475fd5ac03", + "https://vuldb.com/cve/CVE-2026-10221", + "https://vuldb.com/submit/822019" + ], + "cvss_score": 7.3, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10221", + "exploitability_score": "high", + "exploitability_rationale": "High CVSS score (7.3); remotely exploitable without authentication", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": false, + "requires_user_interaction": false, + "complexity": "low" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, + { + "id": "CVE-2026-10220", + "severity": "high", + "type": "unknown_cwe_707", + "nvd_category_id": "CWE-707", + "title": "A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Affected is the functio...", + "description": "A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Affected is the function _serve_plugin_skill/skill_view of the file tools/skills_tool.py. Executing a manipulation can lead to injection. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.", + "affected": [ + "hermes@*" + ], + "platforms": [ + "hermes" + ], + "action": "Review and update affected components. See NVD for remediation details.", + "published": "2026-06-01T04:16:21.260", + "references": [ + "https://gist.github.com/YLChen-007/9dd399c6f75b31fa741a613dfd41de08", + "https://vuldb.com/cve/CVE-2026-10220", + "https://vuldb.com/submit/822018" + ], + "cvss_score": 7.3, + "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10220", + "exploitability_score": "high", + "exploitability_rationale": "High CVSS score (7.3); remotely exploitable without authentication", + "attack_vector_analysis": { + "is_network_accessible": true, + "requires_authentication": false, + "requires_user_interaction": false, + "complexity": "low" + }, + "exploit_detection": { + "exploit_available": false, + "exploit_sources": [] + } + }, { "id": "CVE-2026-35674", "severity": "high", diff --git a/skills/clawsec-feed/advisories/feed.json.sig b/skills/clawsec-feed/advisories/feed.json.sig index 92984e1..cc454e5 100644 --- a/skills/clawsec-feed/advisories/feed.json.sig +++ b/skills/clawsec-feed/advisories/feed.json.sig @@ -1 +1 @@ -SE1ABPYgbMiDh9K/VkPj5uJZ0tEDlEw/DdmTFWLsu3znvm/l5m0pPAllEJ1a6NYktZMcTtzRASy6dN9coDZyBg== \ No newline at end of file +9PWV2h4x7ERA8nnPVlSREnEehSm1o2eG0XzjqYZZ0cye6cxKubG7CduX/gz/osUeOu9t2AANvWbhCed1SquNDA== \ No newline at end of file