Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands
ID: 254ca294-d2e4-5cc2-8be3-6339fd8501bf
STIX ID: report--254ca294-d2e4-5cc2-8be3-6339fd8501bf
Feed Name: The Hacker News
Two critical vulnerabilities named DuneSlide (CVE-2026-50548 and CVE-2026-50549) in the Cursor AI code editor allow a zero-click prompt-injection to write files that disable the editor's sandbox, enabling arbitrary commands to run as the user; both are rated highly severe (CVSS 9.8), were reported to Cursor in February 2026 and fixed in Cursor 3.0 (released April 2), and no known in-the-wild exploitation was reported at publication — immediate patching is recommended for users, especially in enterprise environments.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
