A vulnerability in Cursor IDE enables arbitrary code execution by executing malicious git binaries in project roots. Reported by Mindgard in December 2025, the issue remains unpatched, affecting over 7 million users. The flaw involves Cursor executing 'git.exe' files in repository roots without user interaction, posing significant security risks.
A critical vulnerability in Cursor IDE allows arbitrary code execution by executing malicious git binaries found in project roots on Windows. This issue risks exposing user credentials and compromising system security without any prior interaction from the user.
Cursor, a widely-used AI-assisted development environment, has over 7 million active users. This unpatched vulnerability exposes a significant number of developers to potential security threats, as the IDE executes 'git.exe' files without user prompts or warnings.
Mindgard, an AI security firm, identified and reported the vulnerability to Cursor on December 15, 2025. Despite multiple disclosures, Cursor has not released a patch or provided an advisory, leaving users vulnerable to potential exploitation.
The flaw involves Cursor looking for Git binaries in multiple locations, including the workspace, when a project is loaded. If a malicious 'git.exe' file is placed in the root of a repository, it will be executed automatically, leading to arbitrary code execution.
β¨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors β check the original sources. How BrevFeed works β
An unpatched vulnerability in Cursor on Windows permits code execution by executing a malicious git.exe when a developer opens a repository. This security flaw affects over 7 million users and remains unaddressed by the Cursor team after multiple disclosures.
A vulnerability in Cursor allows arbitrary code execution simply by opening a repository containing a 'git.exe' file, risking user credentials and system security. Despite being reported in December 2025, Cursor has not released a patch or advisory, leaving users exposed.
A critical vulnerability in Cursor IDE enables arbitrary code execution by executing malicious git binaries found in project roots, posing significant security risks. Despite being reported over six months ago by Mindgard, the issue remains unpatched, potentially affecting over 7 million users.