Lucene search
K

5 matches found

The Hacker News
The Hacker News
added 2025/08/05 1:1 p.m.6 views

Cursor AI Code Editor Vulnerability Enables RCE via Malicious MCP File Swaps Post Approval

Cybersecurity researchers have disclosed a high-severity security flaw in the artificial intelligence AI-powered code editor Cursor that could result in remote code execution. The vulnerability, tracked as CVE-2025-54136 CVSS score: 7.2, has been codenamed MCPoison by Check Point Research, owing ...

7.2CVSS8AI score0.07598EPSS
Exploits2
NVD
NVD
added 2025/08/02 12:15 a.m.8 views

CVE-2025-54136

Cursor is a code editor built for programming with AI. In versions 1.2.4 and below, attackers can achieve remote and persistent code execution by modifying an already trusted MCP configuration file inside a shared GitHub repository or editing the file locally on the target's machine. Once a...

8.8CVSS0.07598EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/08/01 11:8 p.m.3 views

CVE-2025-54136 Cursor's Modification of MCP Server Definitions Bypasses Manual Re-approvals

Cursor is a code editor built for programming with AI. In versions 1.2.4 and below, attackers can achieve remote and persistent code execution by modifying an already trusted MCP configuration file inside a shared GitHub repository or editing the file locally on the target's machine. Once a...

7.2CVSS7.7AI score0.07598EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/08/01 11:8 p.m.9 views

CVE-2025-54136 Cursor's Modification of MCP Server Definitions Bypasses Manual Re-approvals

Cursor is a code editor built for programming with AI. In versions 1.2.4 and below, attackers can achieve remote and persistent code execution by modifying an already trusted MCP configuration file inside a shared GitHub repository or editing the file locally on the target's machine. Once a...

7.2CVSS0.07598EPSS
Exploits2References1
CVE
CVE
added 2025/08/01 11:8 p.m.61 views

CVE-2025-54136

Cursor is an AI code editor where CVE-2025-54136 affects versions

8.8CVSS8.4AI score0.07598EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder