Primary

Context

Cursor JSON Schema Download Vulnerability Leading to Potential Information Exfiltration

Vulnerability

A vulnerability in the Cursor code editor, prior to version 0.51.0, allowed for arbitrary HTTP GET requests to be sent without user confirmation. This was possible because the default setting for 'json.schemaDownload.enable' was True. The Cursor Agent's ability to edit JSON files could be exploited, especially after a successful prompt injection attack, to exfiltrate data from an agent-controlled URL.

Impact

Exploitation of this vulnerability could lead to unauthorized data exfiltration from the user's environment, particularly information accessible to the Cursor Agent.

Remediation

Users should update to Cursor version 0.51.0 or later, and ensure that the 'json.schemaDownload.enable' setting is disabled by default.

Added: Jun 11, 2025, 6:29 PM

Updated: Jun 11, 2025, 6:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Cursor JSON Schema Download Vulnerability Leading to Potential Information Exfiltration

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating