AI Coding Tool CVE Surge: Cursor IDE Vulnerability, LiteLLM SQL Injection, LMDeploy SSRF Exploited
Published 2026-04-30Ingested 2026-05-04AI Engineering PracticesHigh
Summary
A cluster of high-severity CVEs targeting AI coding infrastructure emerged in April-May 2026, signaling a new threat category: vulnerabilities in the AI tooling layer itself rather than just in AI-generated code. CVE-2026-26268 in Cursor IDE allows arbitrary code execution via Git hook exploitation when an AI agent autonomously executes Git operations in an untrusted repository. CVE-2026-42208 (LiteLLM, CVSS 9.3) is a SQL injection vulnerability in the LLM proxy framework that was exploited with
Radar Context
Cursor
Alignment: Reinforces current position
Related Positions: AI Governance and Risk, AI-Assisted Development Tooling
Related Partnerships: Cognition (Windsurf / Devin), Anthropic (Claude), Microsoft (GitHub / Copilot)
cvesecuritycursor-idelitellmlmdeployai-coding-toolsvulnerabilitymcp-serversai-generated-codeenterprise-security