logo

Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands

ID: 254ca294-d2e4-5cc2-8be3-6339fd8501bf

STIX ID: report--254ca294-d2e4-5cc2-8be3-6339fd8501bf

Feed Name: The Hacker News

Threat Score
75/100

Date Published: 2026-07-01

Date Updated: 2026-07-01

Author: [email protected] (The Hacker News)

...
...

Two critical vulnerabilities named DuneSlide (CVE-2026-50548 and CVE-2026-50549) in the Cursor AI code editor allow a zero-click prompt-injection to write files that disable the editor's sandbox, enabling arbitrary commands to run as the user; both are rated highly severe (CVSS 9.8), were reported to Cursor in February 2026 and fixed in Cursor 3.0 (released April 2), and no known in-the-wild exploitation was reported at publication — immediate patching is recommended for users, especially in enterprise environments.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.