VYPR

Openharness

by Hkuds

Source repositories

CVEs (9)

  • CVE-2026-7551HigApr 30, 2026
    risk 0.50cvss 8.8epss 0.01

    HKUDS OpenHarness contains a remote code execution vulnerability in the /bridge slash command that allows remote senders accepted by configuration to execute arbitrary operating system commands. Attackers can invoke the /bridge spawn command with attacker-controlled command text…

  • CVE-2026-6819HigApr 21, 2026
    risk 0.50cvss 8.8epss 0.00

    HKUDS OpenHarness prior to PR #156 remediation exposes plugin lifecycle commands including /plugin install, /plugin enable, /plugin disable, and /reload-plugins to remote senders by default. Attackers who gain access through the channel layer can remotely manage plugin trust and…

  • CVE-2026-40502HigApr 16, 2026
    risk 0.50cvss 8.8epss 0.02

    OpenHarness prior to commit dd1d235 contains a command injection vulnerability that allows remote gateway users with chat access to invoke sensitive administrative commands by exploiting insufficient distinction between local-only and remote-safe commands in the gateway handler.…

  • CVE-2026-40516HigApr 17, 2026
    risk 0.47cvss 8.3epss 0.00

    OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the web_fetch and web_search tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses.…

  • CVE-2026-6823HigApr 21, 2026
    risk 0.46cvss 8.2epss 0.00

    HKUDS OpenHarness prior to PR #147 remediation contains an insecure default configuration vulnerability where remote channels inherit allow_from = ["*"] permitting arbitrary remote senders to pass admission checks. Attackers who can reach the configured channel can bypass access…

  • CVE-2026-40515HigApr 17, 2026
    risk 0.42cvss 7.5epss 0.00

    OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attackers can invoke the built-in grep and glob tools with sensitive root…

  • CVE-2026-40503MedApr 16, 2026
    risk 0.35cvss 6.5epss 0.00

    OpenHarness prior to commit dd1d235 contains a path traversal vulnerability that allows remote gateway users with chat access to read arbitrary files by supplying path traversal sequences to the /memory show slash command. Attackers can manipulate the path input parameter to…

  • CVE-2026-6729MedApr 20, 2026
    risk 0.34cvss 6.3epss 0.00

    HKUDS OpenHarness prior to PR #159 remediation contains a session key derivation vulnerability that allows authenticated participants in shared chats or threads to hijack other users' sessions by exploiting a shared ohmo session key that lacks sender identity verification.…

  • CVE-2026-56695Jun 23, 2026
    risk 0.00cvss epss 0.00

    OpenHarness ohmo gateway /resume and /summary slash commands default remote_invocable to True, allowing admitted remote senders to enumerate and load arbitrary session snapshots by ID. Attackers can exploit this to access victim snapshots containing private prompts, credentials,…