🔴 Critical | Source: The Hacker News
Two critical vulnerabilities (CVE-2026-50548 and CVE-2026-50549), collectively named DuneSlide, have been discovered in the Cursor AI code editor. They allow a maliciously crafted prompt to escape the editor’s security sandbox and execute arbitrary commands on the developer’s machine without requiring any user interaction or approval. With CVSS scores of 9.8 and 9.3 respectively, the risk to developer workstations and by extension CI/CD pipelines and cloud environments is significant.
Security Architect’s Take: Audit your engineering teams’ use of Cursor immediately and enforce patching to the latest version; consider blocking or restricting Cursor’s network and filesystem access via endpoint controls until patched, and review whether any developer machines running Cursor have direct access to cloud credentials or production environments.
Original advisory: Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands