Vulnerabilities (CVE)

Filtered by vendor Autodesk Subscribe
Filtered by product Fusion 360
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-27873 1 Autodesk 1 Fusion 360 2024-11-21 N/A 7.8 HIGH
An attacker can force the victim’s device to perform arbitrary HTTP requests in WAN through a malicious SVG file being parsed by Autodesk Fusion 360’s document parser. The vulnerability exists in the application’s ‘Insert SVG’ procedure. An attacker can also leverage this vulnerability to obtain victim’s public IP and possibly other sensitive information.