Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 18844

18844 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE IDTitleCVSSSeverityPublished
CVE-2025-34160 AnyShare ServiceAgent API Unauthenticated RCE — AnyShareCWE-78 9.8AICriticalAI2025-08-27
CVE-2025-34520 Arcserve UDP < 10.2 Authentication Bypass — Unified Data Protection (UDP)CWE-288 9.8AICriticalAI2025-08-27
CVE-2025-34522 Arcserve UDP < 10.2 Pre-Authentication Heap Overflow — Unified Data Protection (UDP)CWE-122 9.8AICriticalAI2025-08-27
CVE-2025-34523 Arcserve UDP < 10.2 Pre-Authentication Heap Overflow — Unified Data Protection (UDP)CWE-122 9.8AICriticalAI2025-08-27
CVE-2025-2246 Missing Authorization in GitLab — GitLabCWE-862 5.8 Medium2025-08-27
CVE-2025-4225 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 5.3 Medium2025-08-27
CVE-2025-20241 Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol <TBD> Denial of Service Vulnerability — Cisco NX-OS SoftwareCWE-733 7.4 High2025-08-27
CVE-2025-20317 Cisco UCS Virtual Keyboard Video Monitor (vKVM) Open Redirect Vulnerability — Cisco Unified Computing System (Managed)CWE-601 7.1 High2025-08-27
CVE-2025-43730 Dell ThinOS 10 参数注入漏洞 — ThinOS 10CWE-88 8.4 High2025-08-27
CVE-2025-43728 Dell ThinOS 10 安全漏洞 — ThinOS 10CWE-693 9.6 Critical2025-08-27
CVE-2025-30048 Unauthenticated access to module configuration endpoint — CGM CLININETCWE-306 7.5AIHighAI2025-08-27
CVE-2025-30040 Missing authentication in API returning request logs containing session IDs — CGM CLININETCWE-306 5.3AIMediumAI2025-08-27
CVE-2025-30039 Missing authentication in API returning a list of all active sessions — CGM CLININETCWE-306 9.8AICriticalAI2025-08-27
CVE-2025-30037 Missing authentication in APIs allowing data retrieval and modification — CGM CLININETCWE-306 7.5AIHighAI2025-08-27
CVE-2025-50972 AbanteCart 安全漏洞 — n/a 9.8 -2025-08-27
CVE-2025-50979 NodeBB 安全漏洞 — n/a 9.8 -2025-08-27
CVE-2025-50984 Diskover-web 安全漏洞 — n/a 7.5 -2025-08-27
CVE-2025-56694 lumasoft fotoShare Cloud 安全漏洞 — n/a 5.3 -2025-08-27
CVE-2025-6247 WordPress Automatic Plugin - AI content generator and auto poster plugin <= 3.118.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting — WordPress Automatic PluginCWE-80 4.7 Medium2025-08-26
CVE-2025-41702 egOS WebGUI Hard-Coded JWT Secret Enables Authentication Bypass — EG400Mk2-D11001-000101CWE-321 9.8 Critical2025-08-26
CVE-2025-9172 Vibes <= 2.2.0 - Unauthenticated SQL Injection via `resource` Parameter — VibesCWE-89 7.5 High2025-08-26
CVE-2025-50971 AbanteCart 安全漏洞 — n/a 7.5AIHighAI2025-08-26
CVE-2025-50974 IPFire 安全漏洞 — n/a 9.8 -2025-08-26
CVE-2025-25734 Kapsch TrafficCom RIS-9260 RSU LEO和Kapsch TrafficCom RIS-9160 安全漏洞 — n/a 9.8 -2025-08-26
CVE-2025-25736 Kapsch TrafficCom RIS-9260 RSU LEO 安全漏洞 — n/a 9.8 -2025-08-26
CVE-2025-8627 Unauthenticated Protocol Commands on TP-Link KP303 — TP-Link KP303 (US) Smartplug 8.1AIHighAI2025-08-25
CVE-2025-53120 Securden Unified PAM Path Traversal In File Upload — Unified PAMCWE-22 9.4 Critical2025-08-25
CVE-2025-53119 Securden Unified PAM Unauthenticated Unrestricted File Upload — Unified PAMCWE-434 7.5 High2025-08-25
CVE-2025-53118 Securden Unified PAM Authentication Bypass — Unified PAMCWE-306 9.8 Critical2025-08-25
CVE-2025-7426 MINOVA TTA Information Disclosure and Credential Exposure — TTACWE-200 9.8AICriticalAI2025-08-25

Vulnerabilities classified as access:pre-auth represent 18844 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.