CyberSecurity News
Cursor Flaw Lets Malicious Cloned Repositories Trigger Windows Code Execution
AI summary
A vulnerability in Cursor on Windows allows malicious cloned repositories to execute code. If a repository contains a file named git.exe in its root, Cursor will automatically run it without prompting the user. The executed binary will run with the user's privileges, accessing their source code, SSH keys, and cloud tokens. The binary will continue to run as long as the project remains open in Cursor. This execution occurs without any warning or approval dialog, and no user interaction is required.
This is an AI-generated brief aggregated by HackerFeeds for convenience and grounded in the source’s own summary; the related CVE, threat-group and country data is from HackerFeeds’ own indexes. The original article is the authoritative source — all rights belong to The Hacker News.

