CVE-2026-61613: Cursor is a code editor built for programming with AI. Prior to the Cloud Agent fix on 03/31/2026, browser-enabled Curso
criticalvulnerability
security
Summary
Cursor is a code editor that uses AI to help with programming. Before a fix on March 31, 2026, attackers could use malicious web content to connect to an unprotected local endpoint (a communication point on a user's computer) in Cursor's Cloud Agent, allowing them to run code, steal files, access environment variables (settings that programs use), steal credentials (login information), and take GitHub App access tokens (digital keys that grant permissions to GitHub accounts).
Solution / Mitigation
This issue was fixed on 03/31/2026 by requiring authentication for the relevant agent endpoint.
Vulnerability Details
EPSS (30-day exploit probability)
EPSS: 0.0%
Disclosure Date
July 15, 2026
Classification
Attack SophisticationModerate
Impact (CIA+S)
confidentialityintegrityavailability
Affected Vendors
Monthly digest — independent AI security research
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-61613
First tracked: July 15, 2026 at 02:07 PM
Classified by LLM (prompt v3) · confidence: 92%