CVE-2025-61590: 
NixOS vulnerability analysis and mitigation

Cursor, a code editor built for programming with AI, was found to be vulnerable to Remote Code Execution (RCE) attacks through Visual Studio Code Workspaces in versions 1.6 and below. The vulnerability, identified as CVE-2025-61590, was discovered and disclosed on October 3, 2025. The issue stems from VS Code's automatic creation of untitled workspaces (untitled.code-workspace) that contain folders and workspace settings from the user's current session (GitHub Advisory, NVD).

The vulnerability exploits VS Code's workspace functionality, which allows users to open multiple folders and save specific settings similar to .vscode/settings.json. The attack vector emerges when a user has a .code-workspace file in their path, either automatically created or manually saved. The vulnerability received a CVSS v3.1 base score of 7.5 (High), with a vector string of CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating network attack vector, high attack complexity, low privileges required, and no user interaction needed (GitHub Advisory).

The vulnerability can lead to Remote Code Execution on the victim's system without user approval if an attacker successfully hijacks the user's chat context. This represents a significant security risk as it allows for complete system compromise, potentially affecting the confidentiality, integrity, and availability of the system (GitHub Advisory).

The vulnerability has been patched in Cursor version 1.7. The fix includes adding the extension code-workspace to the list of sensitive files that require user approval. Users are advised to upgrade to version 1.7 or later to protect against this vulnerability (GitHub Advisory).