all documents

When Agents Execute: RCE Paths in LLM-Powered Coding Tools

January 29, 2026

This talk is a follow-on to our September 2025 research on denial-of-service and permission escape in Claude Code. We now examine how LLM-powered coding agents can be weaponized end-to-end, including paths to remote code execution. Using Claude Code as a primary case study, and extending to VS Code extension exploits and recent Cursor incidents, we show how agent autonomy, extension APIs, and execution boundaries collapse into a practical RCE surface.

written by
No items found.
published on
January 29, 2026
Contents
Example H2
Example H3

Written by

No items found.

More documents

View all
Kodem Cyber & Beats (UK) Webinar

Kodem Cyber & Beats (UK) Webinar

May 28, 2026
White Paper: Prepare for the next Software Supply Chain Attack

White Paper: Prepare for the next Software Supply Chain Attack

October 6, 2025
Unlocking Growth Opportunities in Modern Application Security | Growth Webinar Highlights

Unlocking Growth Opportunities in Modern Application Security | Growth Webinar Highlights

September 5, 2025

A Primer on Runtime Intelligence

See how Kodem's cutting-edge sensor technology revolutionizes application monitoring at the kernel level.

5.1k
Applications covered
1.1m
False positives eliminated
4.8k
Triage hours reduced

Platform Overview Video

Watch our short platform overview video to see how Kodem discovers real security risks in your code at runtime.

5.1k
Applications covered
1.1m
False positives eliminated
4.8k
Triage hours reduced

Get real-time insights across the full stack…code, containers, OS, and memory

Watch how Kodem’s runtime security platform detects and blocks attacks before they cause damage. No guesswork. Just precise, automated protection.

Kodem issues list with a magnified view of insight icons: runtime, ingress, and exploitability

Stay up-to-date on Audit Nexus

A curated resource for the many updates to cybersecurity and AI risk regulations, frameworks, and standards.