Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19070

19070 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2023-43809 Soft Serve Public Key Authentication Bypass Vulnerability when Keyboard-Interactive SSH Authentication is Enabled — soft-serveCWE-287 7.5 High2023-10-04
CVE-2023-20259 Cisco 多款产品安全漏洞 — Cisco Emergency ResponderCWE-400 8.6 High2023-10-04
CVE-2023-20101 Cisco Emergency Responder 信任管理问题漏洞 — Cisco Emergency ResponderCWE-798 9.8 Critical2023-10-04
CVE-2023-3037 HelpDezk Community improper authorization — HelpDezk CommunityCWE-285 8.6 High2023-10-04
CVE-2023-3213 WP Mail SMTP Pro <= 3.8.0 - Missing Authorization to Information Dislcosure via is_print_page — WP Mail SMTP ProCWE-862 5.3 Medium2023-10-04
CVE-2023-36619 Atos Unify OpenScape 输入验证错误漏洞 — n/a 9.8 -2023-10-04
CVE-2023-3349 Information exposure on IBERMATICA RPS — IBERMATICA RPS 2019CWE-200 8.2 High2023-10-03
CVE-2023-42508 JFrog Artifactory Improper header input validation leads to email manipulation sent from the platform — ArtifactoryCWE-20 6.5 Medium2023-10-03
CVE-2022-47892 Information disclosure in NetMan 204 — Netman-204CWE-200 5.3 Medium2023-10-03
CVE-2023-3656 Unauthenticated Remote Code Execution — cashIT! - serving solutions.CWE-749 9.8 Critical2023-10-03
CVE-2023-42771 Furuno ACERA 1320 授权问题漏洞 — ACERA 1320 8.8 -2023-10-03
CVE-2023-30591 NodeBB Pre-Authentication Denial-of-Service — NodeBBCWE-241 7.5 High2023-09-29
CVE-2023-43662 Arbitrary file read vulnerability in Shoko Server — ShokoServerCWE-22 8.6 High2023-09-28
CVE-2023-43013 Asset Management System v1.0 - Unauthenticated SQL Injection (SQLi) — Asset Management SystemCWE-89 9.8 Critical2023-09-28
CVE-2023-38872 Economizzer 安全漏洞 — n/a 5.3 -2023-09-28
CVE-2023-43652 Non-MFA account takeover via using only SSH public key to login in jumpserver — jumpserverCWE-862 8.2 High2023-09-27
CVE-2023-20251 Cisco Wireless LAN Controller 缓冲区错误漏洞 — Cisco Wireless LAN Controller (WLC)CWE-401 6.1 Medium2023-09-27
CVE-2023-20176 Cisco Access Point 资源管理错误漏洞 — Cisco Aironet Access Point SoftwareCWE-400 5.8 Medium2023-09-27
CVE-2023-20202 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE SoftwareCWE-789 6.1 Medium2023-09-27
CVE-2023-20268 Cisco Access Point Software Uncontrolled Resource Consumption Vulnerability — Cisco Aironet Access Point SoftwareCWE-400 4.7 Medium2023-09-27
CVE-2023-20227 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE SoftwareCWE-388 8.6 High2023-09-27
CVE-2023-20226 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE SoftwareCWE-456 8.6 High2023-09-27
CVE-2023-20223 Cisco DNA Center 安全漏洞 — Cisco Digital Network Architecture Center (DNA Center)CWE-284 8.6 High2023-09-27
CVE-2023-20033 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE SoftwareCWE-770 8.6 High2023-09-27
CVE-2023-20187 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE SoftwareCWE-823 8.6 High2023-09-27
CVE-2023-20252 Cisco Catalyst SD-WAN Manager 授权问题漏洞 — Cisco SD-WAN vManageCWE-862 9.8 Critical2023-09-27
CVE-2023-20262 Cisco Catalyst SD-WAN Manager 安全漏洞 — Cisco SD-WAN SolutionCWE-399 5.3 Medium2023-09-27
CVE-2023-20034 Cisco SD-WAN vManage 安全漏洞 — Cisco SD-WAN vManageCWE-798 7.5 High2023-09-27
CVE-2023-4129 Dell Data Protection Central 加密问题漏洞 — Data Protection CentralCWE-326 5.9 Medium2023-09-27
CVE-2023-40049 WS_FTP Server Information Disclosure via Directory Listing — WS_FTP ServerCWE-200 5.3 Medium2023-09-27

Vulnerabilities classified as access:pre-auth represent 19070 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.