Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
2693 articles · 173668 vulns · 37/41 feeds (7d)
← Back to list
EST
PRE-CVE

Remote Code Execution via Prompt Injection in Anthropic Claude Code and OpenAI Codex

49% confidence

Description

A proof-of-concept exploit demonstrates remote code execution in Anthropic’s Claude Code and OpenAI’s Codex when used with specific AI models. Attackers can inject malicious instructions into open-source codebases, tricking the AI into executing arbitrary commands during automated analysis tasks. The exploit leverages multi-stage prompt injection and tool-use exploitation to bypass safety checks in auto-mode or auto-review mode.

Related News (1 articles)

Tier D
Infosecurity Magazine1h ago
Anthropic and OpenAI Security Tools Could Fuel Cyber-Attacks, Researchers Warn
→ No new info (linked only)
CISA KEV❌ No
Actively exploited❌ No
PublishedJul 10, 2026
Last enriched1h ago
Tags
airceprompt injection
Trending Score20
Source articles1
Independent1
Info Completeness4/14
Missing: cve_id, vendor, product, cvss, epss, cwe, kev, patch, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Pin to Dashboard

Verification

State: reported
Confidence: 49%

Vulnerability Timeline

CVE Published
Jul 10, 2026
Exploit Available
Jul 10, 2026
Discovered by ZDM
Jul 10, 2026