Kaito834

**Name of the Vulnerable Software and Affected Versions** I-O DATA DEVICE HVL-A2.0, HVL-A3.0, HVL-A4.0, HVL-AT1.0S, HVL-AT2.0, HVL-AT3.0, HVL-AT4.0, HVL-AT2.0A, HVL-AT3.0A, and HVL-AT4.0A devices with firmware prior to 2.04 **Description** A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of arbitrary users for requests that delete content. **Recommendations** For devices with firmware prior to 2.04, update the firmware to version 2.04 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Autodesk AutoCAD versions prior to 2014 **Description** The issue allows local users to gain privileges and execute arbitrary VBScript code via a Trojan horse FAS file in the FAS file search path. **Recommendations** For versions prior to 2014, update to version 2014 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Autodesk AutoCAD versions prior to 2014 **Description** The issue allows local users to gain privileges via a Trojan horse DLL in the current working directory due to an untrusted search path vulnerability. **Recommendations** For versions prior to 2014, update to version 2014 or later to resolve the issue.