Cursor Flaw Lets Malicious Cloned Repositories Trigger Windows Code Execution
A security vulnerability has been discovered in Cursor, an AI-powered code editor, that enables arbitrary code execution on Windows machines when a user clones a malicious repository. The flaw, reported by The Hacker News, exploits how Cursor handles certain files within cloned repositories. An attacker can craft a repository that, when cloned by a victim, triggers code execution without further user interaction. The vulnerability specifically affects Windows systems, though the exact mechanism and affected Cursor versions were not detailed in the source. This type of attack vector is particularly concerning for developers who frequently clone repositories from untrusted sources, as it bypasses typical security checks. The source does not mention any patch or mitigation steps, nor does it provide a CVE identifier or specific version numbers. The discovery highlights risks in AI-assisted development tools that may have insufficient sandboxing or file handling safeguards.
Developers using Cursor on Windows risk code execution from cloned repositories, bypassing typical security checks.