📄 الوصف (الإنجليزية)
A maliciously crafted HTML payload in a design name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the context of the current process.
🤖
في طابور التحليل الذكي
سيتم تحليل هذا CVE تلقائياً في المهام المجدولة.
🔗 المراجع والمصادر 3
🔗
https://dl.appstreaming.autodesk.com/production/installers/Fusion%20Client%20Downloader...
psirt@autodesk.com
Product
🔗
https://dl.appstreaming.autodesk.com/production/installers/Fusion%20Client%20Downloader...
psirt@autodesk.com
Product
🔗
https://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0001
psirt@autodesk.com
Patch
Vendor Advisory
📦 المنتجات المتأثرة 1 منتج
autodesk:fusion