Critical Cursor IDE RCE Vulnerabilities Enable Prompt Injection in Zero-Click

Two critical remote code execution (RCE) vulnerabilities in Cursor IDE, the AI-powered development environment used by more than half of Fortune 500 companies. Cato AI Labs has disclosed two flaws, dubbed ” DuneSlide, ” both of which carry a 9.8 CVSS severity score and were assigned CVE-2026-50548 and CVE-2026-50549, allowing attackers to break out of […]

The post Critical Cursor IDE RCE Vulnerabilities Enable Prompt Injection in Zero-Click appeared first on Cyber Security News.

This article has been indexed from Cyber Security News

Read the original article: