Primary

Context

Cursor Sandbox Escape Vulnerability Leading to Out-of-Sandbox Remote Code Execution

Vulnerability

A sandbox escape vulnerability has been identified in Cursor, a code editor designed for programming with AI, in versions prior to 2.5. This vulnerability allows a malicious agent to perform prompt injection that writes to unprotected .git configuration settings, including git hooks. The exploitation of this vulnerability could lead to remote code execution outside of the sandboxed environment the next time the modified git hooks are triggered. Notably, this issue does not require user interaction, as Git automatically executes the commands from the hooks.

Impact

Exploitation of this vulnerability allows for a sandbox escape, with the potential for out-of-sandbox remote code execution, particularly when the modified git hooks are executed.

Remediation

Users can upgrade to Cursor version 2.5 or later to address this vulnerability.

Added: Feb 13, 2026, 5:21 PM

Updated: Feb 13, 2026, 10:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.8

remediation

0.0

relevance

3.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.8

remediation

0.0

relevance

3.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Cursor Sandbox Escape Vulnerability Leading to Out-of-Sandbox Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating