CVE-2025-64108

Name of the Vulnerable Software and Affected Versions Cursor versions 1.7.44 and below

Description Cursor, a code editor for programming with AI, has an issue where NTFS path quirks can be exploited by an attacker to bypass file protections and overwrite files that normally require user confirmation. Successful modification of certain protected files could lead to Remote Code Execution (RCE). This requires chaining with a prompt injection or the attachment of a malicious model. The issue only affects systems that support the NTFS file system.

Recommendations Update to version 2.0.