A

Autodesk Security Vulnerabilities (CVE)

Explore vulnerabilities and security advisories affecting Autodesk products.

12 known CVE vulnerabilities tracked

Critical
0
High
10
Medium
2
Low
0
None
0

Vulnerabilities By Year

12
2026

Products Affected

3Ds Max 9 Fusion 3

All Autodesk CVEs

Recent Highest Score Oldest
CVE-2026-7454
7.8 high

A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

3Ds Max May 26, 2026
CVE-2026-7453
5.3 medium

A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can cause a Stack Exhaustion vulnerability, leading to a denial-of-service condition.

3Ds Max May 26, 2026
CVE-2026-7452
7.8 high

A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

3Ds Max May 26, 2026
CVE-2026-7451
7.8 high

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

3Ds Max May 26, 2026
CVE-2026-7450
5.3 medium

A maliciously crafted PAR file, when parsed through Autodesk 3ds Max, can force a NULL Pointer Dereference vulnerability. Successful exploitation may cause the application to crash, leading to a denial-of-service condition.

3Ds Max May 26, 2026
CVE-2026-0661
8.4 high

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

3Ds Max Feb 4, 2026
CVE-2026-0660
8.4 high

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

3Ds Max Feb 4, 2026
CVE-2026-0538
8.4 high

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

3Ds Max Feb 4, 2026
CVE-2026-0537
8.4 high

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

3Ds Max Feb 4, 2026
CVE-2026-0535
8.1 high

A maliciously crafted HTML payload, stored in a component’s description and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in

Fusion Jan 22, 2026
CVE-2026-0534
8.1 high

A maliciously crafted HTML payload, stored in a part’s attribute and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the con

Fusion Jan 22, 2026
CVE-2026-0533
8.1 high

A maliciously crafted HTML payload in a design name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local f

Fusion Jan 22, 2026