Recently, the security company Mindgard discovered a shocking 0day vulnerability while conducting a security research on the Cursor IDE. The severity of this vulnerability lies in the fact that when users open a repository containing a malicious `git.exe` on a Windows system, the Cursor IDE will automatically execute the file without any prompt, and without requiring any user interaction. This issue has sparked widespread doubts about Cursor's security practices.

According to reports, Cursor IDE, as a widely popular AI-assisted development environment, is used by over 7 million active users and more than 50,000 companies. However, when facing such an obvious security risk, the response from the Cursor team was extremely slow. Mindgard first reported the vulnerability on December 15, 2025, and then followed up multiple times over the next six months, but they never received effective feedback for a fix. It is puzzling that during this time, Cursor continued to release new versions, but the vulnerability remained unresolved.

image.png

The principle of this vulnerability is very simple: when loading a project, Cursor searches for Git binary files in multiple locations, one of which is the root directory of the project. If an attacker places a malicious `git.exe` file there, Cursor will automatically execute it. To demonstrate this vulnerability, Mindgard even renamed the Windows calculator to `git.exe` and placed it in the repository, successfully making Cursor call the program multiple times, resulting in a chaotic scene with overlapping windows.

For current Cursor users, it is essential to take action as soon as possible. For enterprise users on Windows systems, administrators are advised to use tools like AppLocker to prevent the execution of suspicious executable files from workspace directories. For individual users, it is recommended to only open untrusted repositories in isolated virtual machines or sandbox environments until the issue is resolved, to avoid potential security risks.

In summary, this incident not only highlights the security vulnerabilities in Cursor IDE but also triggers a deep reflection on software security communication and user protection in the industry. In the face of an increasingly complex cybersecurity environment, developers must remain vigilant at all times to ensure that their tools and environments are secure.