VYPR
Unrated severityNVD Advisory· Published Oct 3, 2025· Updated Oct 3, 2025

Cursor CLI Agent: Sensitive File Overwrite Bypass

CVE-2025-61593

Description

Cursor is a code editor built for programming with AI. In versions 1.7 and below, a vulnerability in the way Cursor CLI Agent protects its sensitive files (i.e. */.cursor/cli.json) allows attackers to modify the content of the files through prompt injection, thus achieving remote code execution. A prompt injection can lead to full RCE through modifying sensitive files on case-insensitive filesystems. This issue is fixed in a commit, 25b418f, but has yet to be released as of October 3, 2025.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Getcursor/Cursorllm-fuzzy2 versions
    <=1.7+ 1 more
    • (no CPE)range: <=1.7
    • (no CPE)range: <= 1.7

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.