Security · 1h ago
Cursor AI Editor Patches Critical Sandbox Escape Flaws
Two critical vulnerabilities, named DuneSlide, allowed attackers to escape Cursor's AI agent sandbox via crafted instructions in MCP tools or web fetches. Patched in Cursor 3.0 on April 2, the flaws affect all prior versions and carry CVSS scores of 9.8/9.3. Over half of Fortune 500 companies use Cursor, making the blast radius significant.
Meridian48 take
The coordinated disclosure is commendable, but the severity underscores how AI coding tools remain a prime vector for supply-chain attacks.
cursor-aisandbox-escape