CNNVD-202602-2275 Information

Feb 13, 2026 cve

CNNVD ID

CNNVD-202602-2275

CVE-2026-26268

CNNVD Published: 2026-02-13

Description (Chinese)

Cursor是Cursor开源的一款深度集成AI的智能代码编辑器。 Cursor 2.5之前版本存在安全漏洞，该漏洞源于可通过写入.git配置实现沙箱逃逸，可能导致触发时发生沙箱外远程代码执行。

Description (English)

Cursor is the smart code editor for a deep integration AI from Cursor Open Source. The previous version of Cursor 2.5 had a security loophole, which had its origin in the escape of sandboxes by writing to the .git configuration, which could lead to remote code implementation outside the sandbox when triggered.

Vulnerability Type

其他

Affected Vendor

Cursor

Published

2026-02-13

Last Modified

2026-02-24

References

https://github.com/cursor/cursor/security/advisories/GHSA-8pcm-8jpx-hv8r

Patch

https://cursor.com/

Share on: