CNNVD-202509-3694 Information
CNNVD ID
CNNVD-202509-3694
Related CVE
- CNNVD Published: 2025-09-23
Description (Chinese)
Autodesk Fusion是美国Autodesk公司的一款数据管理软件平台。 Autodesk Fusion存在安全漏洞,该漏洞源于处理特制HTML有效载荷时存在存储型跨站脚本漏洞,可能导致读取本地文件或在当前进程环境中执行任意代码。
Description (English)
Autodesk Fusion is a data management software platform for Autodesk in the United States. There is a security loophole in Autodesk Fusion, which stems from the storage of cross-site scripts when special HTML payloads are processed, which may lead to the reading of local files or the implementation of any code in the current process environment.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Autoeastern
Published
2025-09-23
Last Modified
2026-02-24
References
https://dl.appstreaming.autodesk.com/production/installers/Fusion%20Client%20Downloader.dmg https://dl.appstreaming.autodesk.com/production/installers/Fusion%20Client%20Downloader.exe https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0020
Patch
https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0020
Share on: