Navigation
Recherche
|
Vibe coding tool Cursor's MCP implementation allows persistent code execution
mercredi 6 août 2025, 01:28 , par TheRegister
More evidence that AI expands the attack surface
Check Point researchers uncovered a remote code execution bug in popular vibe-coding AI tool Cursor that could allow an attacker to poison developer environments by secretly modifying a previously approved Model Context Protocol (MCP) configuration, silently swapping it for a malicious command without any user prompt.…
https://go.theregister.com/feed/www.theregister.com/2025/08/05/mcpoison_bug_abuses_cursor_mcp/
Voir aussi |
56 sources (32 en français)
Date Actuelle
jeu. 7 août - 21:51 CEST
|