CVE-2025-54131 — MEDIUM (6.4)

Q: How severe is CVE-2025-54131?

CVE-2025-54131 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-54131?

Check the references section above for vendor advisories and patch information. Affected products include: Anysphere Cursor.

Vulnerability Description

Cursor is a code editor built for programming with AI. In versions below 1.3, an attacker can bypass the allow list in auto-run mode with a backtick (`) or $(cmd). If a user has swapped Cursor from its default settings (requiring approval for every terminal call) to an allowlist, an attacker can execute arbitrary command execution outside of the allowlist without user approval. An attacker can trigger this vulnerability if chained with indirect prompt injection. This is fixed in version 1.3.

CVSS Score

6.4

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Anysphere	Cursor	< 1.3

Related Weaknesses (CWE)

CWE-77

References

https://github.com/cursor/cursor/security/advisories/GHSA-534m-3w6r-8pqrVendor Advisory

FAQ

What is CVE-2025-54131?

CVE-2025-54131 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Cursor is a code editor built for programming with AI. In versions below 1.3, an attacker can bypass the allow list in auto-run mode with a backtick (`) or $(cmd). If a user has swapped Cursor from it...

How severe is CVE-2025-54131?

CVE-2025-54131 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-54131?

Check the references section above for vendor advisories and patch information. Affected products include: Anysphere Cursor.