Known Vulnerabilities for Cursor by Anysphere Inc.
Listed below are 10 of the newest known vulnerabilities associated with "Cursor" by "Anysphere Inc.".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-63093 json | Cursor for Windows version 3.2.16 contains a binary planting vulnerability that allows remote attackers to achieve arbitrary ... | Not Provided | 2026-07-17 | 2026-07-17 |
| CVE-2026-61613 json | Cursor is a code editor built for programming with AI. Prior to the Cloud Agent fix on 03/31/2026, browser-enabled Cursor Clo... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-58049 json | FFmpeg's RASC video decoder (decode_dlta in libavcodec/rasc.c) performs 32-bit reads and writes at the row cursor before the ... | Not Provided | 2026-06-28 | 2026-07-15 |
| CVE-2026-56307 json | Cap-go before 12.128.12 contains a broken cursor pagination vulnerability in the /private/devices endpoint on the Cloudflare/... | Not Provided | 2026-06-20 | 2026-06-22 |
| CVE-2026-56221 json | Cap-go before 12.128.2 contains multiple SQL injection vulnerabilities in cloudflare.ts where user-controlled values from API... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-53655 json | node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (node-tar) applies a PAX extended header's size= record (an... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-53356 json | In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix phys BO pread/pwrite with offset sg_p... | Not Provided | 2026-07-01 | 2026-07-01 |
| CVE-2026-53190 json | In the Linux kernel, the following vulnerability has been resolved: drm/virtio: fix dma_fence refcount leak on error in virt... | Not Provided | 2026-06-25 | 2026-06-25 |
| CVE-2026-52965 json | In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix ttm_bo_swapout() infinite LRU walk on swapo... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-52722 json | A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimens... | Not Provided | 2026-06-15 | 2026-07-15 |