Lookup for vulnerabilities affecting packages.
| Vulnerability_id | VCID-my5k-7pg2-t3f1 |
|---|
| Summary | Cursor is a code editor built for programming with AI. Cursor allows writing in-workspace files with no user approval in versions below 1.3.9, If the file is a dotfile, editing it requires approval but creating a new one doesn't. Hence, if sensitive MCP files, such as the .cursor/mcp.json file don't already exist in the workspace, an attacker can chain a indirect prompt injection vulnerability to hijack the context to write to the settings file and trigger RCE on the victim without user approval. This is fixed in version 1.3.9. |
|---|
| Aliases |
|
|---|
| Fixed_packages |
|
|---|
| Affected_packages |
|
|---|
| References |
|
|---|
| Weaknesses |
| 0 |
| cwe_id |
78 |
| name |
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') |
| description |
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component. |
|
| 1 |
| cwe_id |
829 |
| name |
Inclusion of Functionality from Untrusted Control Sphere |
| description |
The product imports, requires, or includes executable functionality (such as a library) from a source that is outside of the intended control sphere. |
|
|
|---|
| Exploits |
|
|---|
| Severity_range_score | 8.6 - 8.6 |
|---|
| Exploitability | null |
|---|
| Weighted_severity | null |
|---|
| Risk_score | null |
|---|
| Resource_url | http://public2.vulnerablecode.io/vulnerabilities/VCID-my5k-7pg2-t3f1 |
|---|