Description

Cursor is a code editor built for programming with AI. In versions 1.7.44 and below, various NTFS path quirks allow a prompt injection attacker to circumvent sensitive file protections and overwrite files which Cursor requires human approval to overwrite. Modification of some of the protected files can lead to RCE. Must be chained with a prompt injection or malicious model attach. Only affects systems supporting NTFS. This issue is fixed in version 2.0.

INFO

Published Date :

2025-11-04T22:58:53.745Z

Last Modified :

2025-11-07T14:26:51.902Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-64108 vulnerability.

Vendors Products
Anysphere
  • Cursor
Cursor
  • Cursor
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-64108.

URL Resource
https://github.com/cursor/cursor/security/advisories/GHSA-6r98-6qcw-rxrw cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact