all documents

When Agents Execute: RCE Paths in LLM-Powered Coding Tools

January 29, 2026

This talk is a follow-on to our September 2025 research on denial-of-service and permission escape in Claude Code. We now examine how LLM-powered coding agents can be weaponized end-to-end, including paths to remote code execution. Using Claude Code as a primary case study, and extending to VS Code extension exploits and recent Cursor incidents, we show how agent autonomy, extension APIs, and execution boundaries collapse into a practical RCE surface.

written by
No items found.
published on
January 29, 2026
Contents
Example H2
Example H3

Written by

No items found.

More documents

View all
Unlocking Growth Opportunities in Modern Application Security | Growth Webinar Highlights

Unlocking Growth Opportunities in Modern Application Security | Growth Webinar Highlights

September 5, 2025
The Definitive Playbook to Secure Vibe Coding

The Definitive Playbook to Secure Vibe Coding

April 10, 2025
White Paper

White Paper

March 17, 2025

A Primer on Runtime Intelligence

See how Kodem's cutting-edge sensor technology revolutionizes application monitoring at the kernel level.

5.1k
Applications covered
1.1m
False positives eliminated
4.8k
Triage hours reduced

Platform Overview Video

Watch our short platform overview video to see how Kodem discovers real security risks in your code at runtime.

5.1k
Applications covered
1.1m
False positives eliminated
4.8k
Triage hours reduced

Get real-time insights across the full stack…code, containers, OS, and memory

Watch how Kodem’s runtime security platform detects and blocks attacks before they cause damage. No guesswork. Just precise, automated protection.

Stay up-to-date on Audit Nexus

A curated resource for the many updates to cybersecurity and AI risk regulations, frameworks, and standards.