At least a portion of the Desktop App runs as a service using the “NT AUTHORITY\SYSTEM” account which has global permissions to everything on the system.
In summary, it would be possible for an attacker to load an arbitrary DLL as a regular user and execute the code within as a process which is signed by AutoDesk Inc. as NT AUTHORITY\SYSTEM. This article has more details.
If you are running the Autodesk Desktop App, we’d suggest to simply uninstall it. Why? Here are some reasons. If you choose to keep it, then make sure to update it ASAP.
Here are some more reasons to ban Desktop [Cr]App from being used at your company:
https://forums.autodesk.com/t5/civil-3d-forum/where-is-civil-3d-2018-1/m-p/7448964#M350266
Thanks for the link @BlackBox
I appreciate you posting about this issue. I hadn’t heard about it yet. I ban Autodesk Desktop and Infocenter for 95% of our users.