CVE-2026-40516Hkuds · Openharness
Vulnerability data via NVD (ingested)
OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the web_fetch and web_search tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses. Attackers can influence an agent session to invoke these tools against loopback, RFC1918, link-local, or other non-public addresses to read response bodies from local development services, cloud metadata endpoints, admin panels, or other private HTTP services reachable from the victim host.
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
vuln:CVE-2026-40516product:"Hkuds Openharness"http.html:"Openharness"More intel sources (5)
vuln:CVE-2026-40516vulnerabilities.cve_id: CVE-2026-40516CVE-2026-40516CVE-2026-40516"CVE-2026-40516" exploit -site:nvd.nist.gov