216.73.217.64

CVE-2025-64106

· Published 04/11/2025 23:15 · Modified 07/11/2025 17:48

Labels: CVE-2025-64106 2025-11-04CVE-2025-64106CWE-78[email protected]

Essential information

Published
04/11/2025 23:15
Modified
07/11/2025 17:48
Author
Creator
CVSS
8.8 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS metrics

Description

Cursor is a code editor built for programming with AI. In versions 1.7.28 and below, an input validation flaw in Cursor's MCP server installation enables specially crafted deep-links to bypass the standard security warnings and conceal executed commands from users if they choose to accept the server. If an attacker is able to convince a victim to navigate to a malicious deeplink, the victim will not see the correct speedbump modal, and if they choose to accept, will execute commands specified by the attackers deeplink.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
anysphere / cursor cpe:2.3:a:anysphere:cursor:*:*:*:*:*:*:*:*

References