Nixpkgs security tracker
7.1 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Local (L)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): Required (R)
- Scope (S): Unchanged (U)
- Confidentiality (C): High (H)
- Integrity (I): High (H)
- Availability (A): None (N)
- Modified Attack Vector (MAV): Local (L)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): Required (R)
- Modified Confidentiality (MC): High (H)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): High (H)
- Modified Availability (MA): None (N)
by @LeSuisse Activity log
- Created suggestion
- @LeSuisse dismissed (not in Nixpkgs)
Stored Cross-Site Scripting (XSS) Vulnerability in Design Name
A maliciously crafted HTML payload, stored in a design name and exported to CSV, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the context of the current process.
References
Affected products
- <2702.1.47
Matching in nixpkgs
pkgs.datafusion-cli
CLI for Apache Arrow DataFusion
pkgs.lxgw-fusionkai
Simplified Chinese font derived from LXGW WenKai GB, iansui and Klee One
pkgs.fusionInventory
FusionInventory unified Agent for UNIX, Linux, Windows and MacOSX
pkgs.finalfusion-utils
Utility for converting, quantizing, and querying word embeddings
pkgs.stable-diffusion-cpp
Stable Diffusion inference in pure C/C++
-
nixos-unstable 558-8afbeb6
- nixpkgs-unstable 558-8afbeb6
- nixos-unstable-small 558-8afbeb6
pkgs.fusioninventory-agent
FusionInventory unified Agent for UNIX, Linux, Windows and MacOSX
pkgs.stable-diffusion-cpp-cuda
Stable Diffusion inference in pure C/C++
-
nixos-unstable 558-8afbeb6
- nixpkgs-unstable 558-8afbeb6
- nixos-unstable-small 558-8afbeb6
pkgs.stable-diffusion-cpp-rocm
Stable Diffusion inference in pure C/C++
-
nixos-unstable 558-8afbeb6
- nixpkgs-unstable 558-8afbeb6
- nixos-unstable-small 558-8afbeb6
pkgs.stable-diffusion-cpp-vulkan
Stable Diffusion inference in pure C/C++
-
nixos-unstable 558-8afbeb6
- nixpkgs-unstable 558-8afbeb6
- nixos-unstable-small 558-8afbeb6
pkgs.python312Packages.datafusion
Extensible query execution framework
pkgs.python313Packages.datafusion
Extensible query execution framework
pkgs.python313Packages.vegafusion
Core tools for using VegaFusion from Python
pkgs.python314Packages.datafusion
Extensible query execution framework
pkgs.python314Packages.vegafusion
Core tools for using VegaFusion from Python
pkgs.haskellPackages.fusion-plugin
GHC plugin to make stream fusion more predictable
pkgs.pkgsRocm.stable-diffusion-cpp
Stable Diffusion inference in pure C/C++
-
nixos-unstable 558-8afbeb6
- nixpkgs-unstable 558-8afbeb6
- nixos-unstable-small 558-8afbeb6
pkgs.python312Packages.finalfusion
Python module for using finalfusion, word2vec, and fastText word embeddings
pkgs.python312Packages.k-diffusion
Karras et al. (2022) diffusion models for PyTorch
-
nixos-25.11 0.1.1.post1
- nixos-25.11-small 0.1.1.post1
- nixpkgs-25.11-darwin 0.1.1.post1
pkgs.python313Packages.finalfusion
Python module for using finalfusion, word2vec, and fastText word embeddings
pkgs.python313Packages.k-diffusion
Karras et al. (2022) diffusion models for PyTorch
-
nixos-unstable 0.1.1.post1
- nixpkgs-unstable 0.1.1.post1
- nixos-unstable-small 0.1.1.post1
-
nixos-25.11 0.1.1.post1
- nixos-25.11-small 0.1.1.post1
- nixpkgs-25.11-darwin 0.1.1.post1
pkgs.python314Packages.finalfusion
Python module for using finalfusion, word2vec, and fastText word embeddings
pkgs.python314Packages.k-diffusion
Karras et al. (2022) diffusion models for PyTorch
-
nixos-unstable 0.1.1.post1
- nixpkgs-unstable 0.1.1.post1
- nixos-unstable-small 0.1.1.post1
pkgs.haskellPackages.gogol-datafusion
Google Cloud Data Fusion SDK
pkgs.haskellPackages.gogol-fusiontables
Google Fusion Tables SDK
pkgs.haskellPackages.fusion-plugin-types
Types for the fusion-plugin package
pkgs.pkgsRocm.python3Packages.k-diffusion
Karras et al. (2022) diffusion models for PyTorch
-
nixos-unstable 0.1.1.post1
- nixpkgs-unstable 0.1.1.post1
- nixos-unstable-small 0.1.1.post1
-
nixos-25.11 0.1.1.post1
- nixos-25.11-small 0.1.1.post1
- nixpkgs-25.11-darwin 0.1.1.post1
pkgs.pkgsRocm.stable-diffusion-cpp-vulkan
Stable Diffusion inference in pure C/C++
-
nixos-unstable 558-8afbeb6
- nixpkgs-unstable 558-8afbeb6
- nixos-unstable-small 558-8afbeb6
Package maintainers
-
@happysalada Raphael Megzari <raphael@megzari.com>
-
@phile314 Philipp Hausmann <nix@314.ch>
-
@hellodword hellodword
-
@Mic92 Jörg Thalheim <joerg@thalheim.io>
-
@adrlau Adrian Gunnar Lauterer <adrian@lauterer.it>
-
@dit7ya Mostly Void <7rat13@gmail.com>
-
@cpcloud Phillip Cloud
-
@wariuccio Wariuccio