CVE-2025-61590

Name of the Vulnerable Software and Affected Versions Cursor versions 1.6 and below

Description Cursor, a code editor built for programming with AI, is susceptible to Remote Code Execution (RCE) attacks through Visual Studio Code Workspaces. Workspaces allow users to open multiple folders and save specific settings. An attacker who can hijack the chat context of a victim can use prompt injection to modify workspace files, bypassing a previous security measure and leading to RCE by writing to the settings section.

Recommendations Update to version 1.7 or later.