Description
Cursor is a code editor built for programming with AI. In versions 1.7 and below, automatic loading of project-specific CLI configuration from the current working directory (<project>/.cursor/cli.json) could override certain global configurations in Cursor CLI. This allowed users running the CLI inside a malicious repository to be vulnerable to Remote Code Execution through a combination of permissive configuration (allowing shell commands) and prompt injection delivered via project-specific Rules (<project>/.cursor/rules/rule.mdc) or other mechanisms. The fix for this issue is currently available as a patch 2025.09.17-25b418f. As of October 3, 2025 there is no release version.
INFO
Published Date :
2025-10-03T17:23:37.743Z
Last Modified :
2025-10-03T18:29:26.868Z
Source :
GitHub_M
AFFECTED PRODUCTS
The following products are affected by CVE-2025-61592 vulnerability.
| Vendors | Products |
|---|---|
| Anysphere |
|
| Cursor |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2025-61592.
