A vulnerability described as problematic has been identified in nesquena hermes-webui up to 0.51.442 . This issue affects some unknown processing of the file /api/session of the component Conversation Handler . The manipulation results in authorization bypass. This vulnerability is known as CVE-2026-55197 . It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is recommended.