CVE-2026-0533

Name of the Vulnerable Software and Affected Versions Autodesk Fusion versions (affected versions not specified)

Description A specially crafted HTML payload within a design name can lead to a Stored Cross-site Scripting (XSS) issue when shown in the delete confirmation dialog and clicked by a user. This could allow a malicious actor to read local files or execute arbitrary code within the current process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.