CVE-2026-48124
Cursor Desktop sandbox escape via Claude hook configuration
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Cursor is a code editor built for programming with AI. In versions prior to 3.0.0, the Cursor Desktop could execute workspace-defined Claude hook commands from .claude/settings.local.json without dedicated user approval. A malicious workspace or agent-created file could configure hooks that run local commands in the user's context when an agent turn ends. This could allow sandbox escape, persistence across turns, local data access, or follow-on compromise. This issue has been fixed in version 3.0.0.
| CWE | CWE-829 CWE-94 |
| Vendor | cursor |
| Product | cursor |
| Published | Jun 15, 2026 |
Stay Ahead of the Next One
Get instant alerts for cursor cursor
Be the first to know when new unknown vulnerabilities affecting cursor cursor are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
cursor / cursor
< 3.0.0