HomeCVE Intelligence › CVE-2026-50548
CVSS 8.0 HIGH 🔴 ACTIVELY EXPLOITED Security Vulnerability

CVE-2026-50548: Zero-Click Prompt Injection to RCE in Cursor IDE: DuneSlide

<!-SC_OFF --><div class="md"><p>Cato AI Labs just disclosed DuneSlide, two critical RCE vulnerabilities found in Cursor IDE: CVE-2026-50548 and CVE-2026-50549. Both are rated Critical.</p&…

8.0CVSS Score
HIGHSeverity
NOCISA KEV
Security VulnerabilityImpact Type

📋 Vulnerability Details

CVE IDCVE-2026-50548
Vendorreddit_netsec
Affected ProductThreat Intelligence
Vulnerability TypeSecurity Vulnerability
CVSS Score8.0 (HIGH)
Actively Exploited✅ Yes
Patch StatusSee Vendor Advisory →
Reported ByCYBERDUDEBIVASH SENTINEL APEX Intelligence (via reddit_netsec)

🔬 Technical Analysis

<!-- SC_OFF --><div class="md"><p>Cato AI Labs just disclosed DuneSlide, two critical RCE vulnerabilities found in Cursor IDE: CVE-2026-50548 and CVE-2026-50549. Both are rated Critical.</p> <p>The interesting part is the attack path. This was not just prompt injection changing model output. The agent could ingest untrusted content from sources like MCP servers or web search results, then act through the app around it.</p> <p>With DuneSlide, zero-click prompt injection could become a path to:</p> <ul> <li>sandbox escape</li> <li>arbitrary file write</li> <li>unsandboxed remote code execution</li> </ul> <p>A user does not need to open a malicious file or run attacker-controlled co

🎯 Known Indicators of Compromise

{"type":"url","value":"https://bit.ly/4vMylp8">https://bit.ly/4vMylp8</a></p>","confidence_score":0.82,"first_seen":"2026-07-01","source_count":1} {"type":"url","value":"https://www.reddit.com/user/bscottrosen21">","confidence_score":0.82,"first_seen":"2026-07-01","source_count":1} {"type":"url","value":"https://www.catonetworks.com/blog/duneslide-two-critical-rce-vulnerabilities/">[link]</a&","confidence_score":0.82,"first_seen":"2026-07-01","source_count":1} {"type":"url","value":"https://www.reddit.com/r/netsec/comments/1ukqaam/zeroclick_prompt_injection_to_rce_in_cursor_ide/&qu","confidence_score":0.82,"first_seen":"2026-07-01","source_count":1} {"type":"domain","value":"www.reddit.com","confidence_score":0.75,"first_seen":"2026-07-01","source_count":1} {"type":"domain","value":"www.catonetworks.com","confidence_score":0.75,"first_seen":"2026-07-01","source_count":1}

📚 Advisory References

⚡ DETECTION RULES AVAILABLE

Get CVE-2026-50548 Detection Pack

Sigma rules, YARA signatures, IOC table, and SIEM queries for Splunk, Elastic, Sentinel, and Chronicle — deployable in 5 minutes.

✓ Sigma Rules ✓ YARA Pack ✓ IOC Table ✓ SIEM Queries
🛡️ Get Detection Pack → 🔌 Access via API →

🔗 Related Intelligence