Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19401

19401 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2023-20047 Cisco Webex 安全漏洞 — Cisco Webex Room PhoneCWE-400 6.5 Medium2023-01-19
CVE-2023-20018 Cisco IP Phone 安全漏洞 — Cisco Session Initiation Protocol (SIP) SoftwareCWE-288 8.6 High2023-01-19
CVE-2023-20020 Cisco BroadWorks Application 输入验证错误漏洞 — Cisco BroadWorksCWE-835 8.6 High2023-01-19
CVE-2023-20025 Cisco Small Business RV016 输入验证错误漏洞 — Cisco Small Business RV Series Router FirmwareCWE-293 9.0 Critical2023-01-19
CVE-2023-20057 Cisco Email Security Appliance 注入漏洞 — Cisco Email Security Appliance (ESA)CWE-792--2023-01-19
CVE-2023-0126 SonicWALL SMA1000 series 路径遍历漏洞 — SonicWall SMA1000CWE-22 7.5 -2023-01-19
CVE-2023-0385 Custom 404 Pro <= 3.7.1 - Cross-Site Request Forgery — Custom 404 ProCWE-352 4.3 Medium2023-01-18
CVE-2023-21893 Oracle Database Server 安全漏洞 — Data Provider for .NET 7.5 High2023-01-17
CVE-2023-21890 Oracle Communications Converged Application Server 安全漏洞 — Communications Converged Application Server 9.8 Critical2023-01-17
CVE-2023-21886 Oracle VM VirtualBox 安全漏洞 — VM VirtualBox 8.1 High2023-01-17
CVE-2023-21862 Oracle Web Services Manager 安全漏洞 — Web Services Manager 8.1 High2023-01-17
CVE-2023-21858 Oracle E-Business Suite 安全漏洞 — Collaborative Planning 7.5 High2023-01-17
CVE-2023-21854 Oracle E-Business Suite 安全漏洞 — Sales Offline 7.5 High2023-01-17
CVE-2023-21855 Oracle E-Business Suite 安全漏洞 — Sales for Handhelds 7.5 High2023-01-17
CVE-2023-21856 Oracle E-Business Suite 安全漏洞 — iSetup 7.5 High2023-01-17
CVE-2023-21857 Oracle E-Business Suite 安全漏洞 — HCM Common Architecture 7.5 High2023-01-17
CVE-2023-21851 Oracle E-Business Suite 安全漏洞 — Marketing 7.5 High2023-01-17
CVE-2023-21852 Oracle E-Business Suite 安全漏洞 — Learning Management 7.5 High2023-01-17
CVE-2023-21853 Oracle E-Business Suite 安全漏洞 — Mobile Field Service 7.5 High2023-01-17
CVE-2023-21849 Oracle E-Business Suite 安全漏洞 — Applications DBA 7.5 High2023-01-17
CVE-2023-21850 Oracle E-Business Suite 安全漏洞 — Demantra Demand Management 7.5 High2023-01-17
CVE-2023-21842 Oracle WebLogic Server 安全漏洞 — WebLogic Server 7.5 High2023-01-17
CVE-2023-21843 Oracle Java SE 安全漏洞 — Java SE JDK and JRE 3.7 Low2023-01-17
CVE-2023-21839 Oracle WebLogic Server 安全漏洞 — WebLogic Server 7.5 High2023-01-17
CVE-2023-21841 Oracle WebLogic Server 安全漏洞 — WebLogic Server 7.5 High2023-01-17
CVE-2023-21835 Oracle Java SE 安全漏洞 — Java SE JDK and JRE 5.3 Medium2023-01-17
CVE-2023-21837 Oracle WebLogic Server 安全漏洞 — WebLogic Server 7.5 High2023-01-17
CVE-2023-21838 Oracle WebLogic Server 安全漏洞 — WebLogic Server 7.5 High2023-01-17
CVE-2023-21831 Oracle PeopleSoft Enterprise PeopleTools 安全漏洞 — PeopleSoft Enterprise CS Academic Advisement 5.3 Medium2023-01-17
CVE-2023-21830 Oracle Java SE 安全漏洞 — Java SE JDK and JRE 5.3 Medium2023-01-17

Vulnerabilities classified as access:pre-auth represent 19401 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.