CVE-2025-64107 | Cursor up to 1.7.52 on Windows path traversal (GHSA-2jr2-8wf5-v6pf)

November 5, 2025 Yanac

A vulnerability was found in Cursor up to 1.7.52 on Windows. It has been classified as critical. Affected is an unknown function. This manipulation causes path traversal.

This vulnerability is handled as CVE-2025-64107. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More

CVE-2025-62369 | xibosignage xibo-cms up to 4.3.0 Module Templating code injection (GHSA-7rmm-689c-gjgv)
CVE-2025-64109 | Cursor up to 15.4.1 Model Context Protocol Server cursor/mcp.json os command injection (GHSA-4hwr-97q3-37w2)