Cursor AI Code Editor Fixed Flaw Allowing Attackers to Run Commands via Prompt Injection

August 1, 2025 invoker category_news

Security Update News

Update Information

Title Cursor AI Code Editor Fixed Flaw Allowing Attackers to Run Commands via Prompt Injection
Update ID THN:1617E3C4F6E826F929868C5B250F0535
Type thn
Published 2025-08-01T15:31:00
Last Updated 2025-08-01T17:11:28

Security Impact

Severity NONE

AI Analysis

AI Description A high-severity vulnerability in the Cursor AI code editor allows remote code execution via prompt injection. This issue was patched in version 1.3. The flaw could enable attackers to run malicious commands, leading to data theft or ransomware attacks.
AI Severity Critical
AI Vendor Cursor
AI Product Cursor AI Code Editor
AI Version versions prior to 1.3

Affected CVEs

  • CVE-2025-54135

Update Details

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.