CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31 matches found

RedhatCVE•added 2026/06/05 7:14 p.m.•5 views

CVE-2026-4345

A maliciously crafted HTML payload, stored in a design name and exported to CSV, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the context o...

7.1CVSS5.9AI score0.00024EPSS

Exploits0References1

EUVD•added 2026/04/14 3:30 p.m.•2 views

EUVD-2026-22273

A maliciously crafted HTML payload in a component name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read loc...

7.1CVSS6.1AI score0.00037EPSS

Exploits0References4

EUVD•added 2026/04/14 3:30 p.m.•3 views

EUVD-2026-22274

7.1CVSS6.1AI score0.00024EPSS

Exploits0References4

NVD•added 2026/04/14 3:16 p.m.•2 views

CVE-2026-4344

7.1CVSS0.00037EPSS

Exploits0References3

NVD•added 2026/04/14 3:16 p.m.•2 views

CVE-2026-4369

A maliciously crafted HTML payload in an assembly variant name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to...

7.1CVSS0.00037EPSS

Exploits0References3

Vulnrichment•added 2026/04/14 1:56 p.m.•1 views

CVE-2026-4344 Stored Cross-Site Scripting (XSS) Vulnerability in Assembly Component Name

7.1CVSS6.1AI score0.00037EPSS

Exploits0References3

Cvelist•added 2026/04/14 1:56 p.m.•24 views

CVE-2026-4345 Stored Cross-Site Scripting (XSS) Vulnerability in Design Name

7.1CVSS0.00024EPSS

Exploits0References3

CVE•added 2026/04/14 1:56 p.m.•6 views

CVE-2026-4345

CVE-2026-4345 describes a stored XSS flaw in Autodesk Fusion desktop: a malicious design name, when exported to CSV, can execute in the app’s process context and read local files. Affected: Fusion desktop application; vulnerability arises from stored payload in design names. CVSS base metrics ind...

7.1CVSS6.1AI score0.00024EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2026/04/14 1:56 p.m.•1 views

CVE-2026-4345

7.1CVSS6.1AI score0.00024EPSS

Exploits0References4Affected Software1

CVE•added 2026/04/14 1:47 p.m.•7 views

CVE-2026-4369

The CVE-2026-4369 entry describes a Stored Cross-Site Scripting (XSS) vulnerability in Autodesk Fusion desktop app tied to a malicious payload in an assembly variant name. The vulnerability can be triggered when the affected variant name is rendered in the delete confirmation dialog, and a user c...

7.1CVSS6.1AI score0.00037EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/04/14 1:47 p.m.•1 views

CVE-2026-4369 Stored Cross-Site Scripting (XSS) Vulnerability in Assembly Variant Name

7.1CVSS6.1AI score0.00037EPSS

Exploits0References3

Positive Technologies•added 2026/04/14 12:0 a.m.•1 views

PT-2026-32645

7.1CVSS6.1AI score0.00024EPSS

Exploits0References6

Positive Technologies•added 2026/04/14 12:0 a.m.•2 views

PT-2026-32646

7.1CVSS6.1AI score0.00037EPSS

Exploits0References5

CNNVD•added 2026/04/14 12:0 a.m.•2 views

Autodesk Fusion 跨站脚本漏洞

Autodesk Fusion is a data management software platform developed by Autodesk, Inc. in the United States. Autodesk Fusion has a cross-site scripting vulnerability, which stems from malicious HTML payloads stored in the design names. This vulnerability can lead to storage-based cross-site scripting...

7.1CVSS6AI score0.00024EPSS

Exploits0References3

RedhatCVE•added 2026/01/23 9:14 p.m.•4 views

CVE-2026-0533

A maliciously crafted HTML payload in a design name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local...

8.1CVSS6AI score0.00033EPSS

Exploits0References1

NVD•added 2026/01/22 5:16 p.m.•3 views

CVE-2026-0535

A maliciously crafted HTML payload, stored in a component’s description and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in...

8.1CVSS0.00036EPSS

Exploits0References3

OSV•added 2026/01/22 5:16 p.m.•2 views

CVE-2026-0535

8.1CVSS6.1AI score0.00036EPSS

Exploits0References3

NVD•added 2026/01/22 5:16 p.m.•3 views

CVE-2026-0534

A maliciously crafted HTML payload, stored in a part’s attribute and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the...

8.1CVSS0.00029EPSS

Exploits0References3

Cvelist•added 2026/01/22 4:59 p.m.•19 views

CVE-2026-0535 Stored XSS in Electronic Library Component Description

8.1CVSS0.00036EPSS

Exploits0References3

CVE•added 2026/01/22 4:59 p.m.•15 views

CVE-2026-0535

Technical details about CVE-2026-0535 are not publicly provided in the connected documents. Monitor for updates from Autodesk and security advisories.

8.1CVSS5.9AI score0.00036EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by