Cybersecurity researchers from Novee have uncovered a high-severity arbitrary code execution vulnerability in the widely used AI-powered IDE, Cursor. Tracked as CVE-2026-26268, this flaw allows attackers to execute malicious code remotely on a developer’s machine. The vulnerability does not stem from Cursor’s core product code. Instead, it arises from how Cursor’s autonomous AI agent interacts […] The post Critical Cursor Vulnerability Exposes Developer Workstations To Remote Code Execution appeared first on Cyber Security News.