Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19626

19626 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2021-41436 ASUS routers 环境问题漏洞 — n/a 9.1 -2021-11-19
CVE-2021-41532 Unauthenticated access to Ozone Recon HTTP endpoints — Apache OzoneCWE-200 5.3 -2021-11-19
CVE-2021-42338 4MOSAn GCB Doctor - Improper Authorization — GCB DoctorCWE-285 9.8 Critical2021-11-19
CVE-2021-42268 Adobe Animate FLA File Parsing Null Pointer Dereference Application Denial of Service — AnimateCWE-476 5.5 Medium2021-11-18
CVE-2021-40761 Adobe After Effects NULL Pointer Dereference Application Denial of Service — After EffectsCWE-476 5.5 Medium2021-11-18
CVE-2021-40756 Adobe After Effects NULL Pointer Dereference Application Denial of Service — After EffectsCWE-476 5.5 Medium2021-11-18
CVE-2021-0182 Intel HAXM 资源管理错误漏洞 — Intel(R) HAXM software 5.5 -2021-11-17
CVE-2021-0180 Intel HAXM 资源管理错误漏洞 — Intel(R) HAXM software 7.8 -2021-11-17
CVE-2021-0013 Intel Endpoint Management Assistant 输入验证错误漏洞 — Intel(R) EMA 7.5 -2021-11-17
CVE-2021-0079 Intel PROSet Wireless 输入验证错误漏洞 — Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi in Windows 10 6.5 -2021-11-17
CVE-2021-0069 Intel PROSet Wireless 输入验证错误漏洞 — Intel(R) PROSet/Wireless WiFi in multiple operating systems and some Killer(TM) WiFi in Windows 10 6.5 -2021-11-17
CVE-2021-0071 Intel PROSet Wireless 输入验证错误漏洞 — Intel(R) PROSet/Wireless WiFi in UEFI 8.8 -2021-11-17
CVE-2021-0078 Intel PROSet Wireless 输入验证错误漏洞 — Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi in Windows 10 8.1 -2021-11-17
CVE-2021-0063 Intel PROSet Wireless 输入验证错误漏洞 — Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi in Windows 10 6.5 -2021-11-17
CVE-2021-0146 Intel Processors 安全漏洞 — Intel(R) processors which 6.8 -2021-11-17
CVE-2021-0110 Intel Thunderbolt DCH drivers 安全漏洞 — Intel(R) Thunderbolt(TM) Windows DCH Drivers 5.5 -2021-11-17
CVE-2021-33073 Intel Distribution of OpenVINO(TM) Toolkit 资源管理错误漏洞 — Intel(R) Distribution of OpenVINOâ„¢ Toolkit 5.5 -2021-11-17
CVE-2021-33058 Intel Ethernet controllers 安全漏洞 — version 7.8 -2021-11-17
CVE-2021-40745 Adobe Campaign Path Traversal Leads to Information Exposure — CampaignCWE-22 7.5 High2021-11-17
CVE-2021-24796 My Tickets < 1.8.31 - Unauthenticated Stored Cross-Site Scripting — My TicketsCWE-79 6.1 -2021-11-17
CVE-2021-43011 Adobe Prelude M4A file memory corruption vulnerability could lead to remote code execution — PreludeCWE-788 7.8 High2021-11-16
CVE-2021-43012 Adobe Prelude M4A file memory corruption vulnerability could lead to remote code execution — PreludeCWE-788 7.8 High2021-11-16
CVE-2021-42731 Adobe Indesign Buffer Overflow Could Lead to Remote Code Execution — InDesignCWE-120 7.8 High2021-11-16
CVE-2021-43013 Adobe Media Encoder memory corruption vulnerability could lead to remote code execution — Media EncoderCWE-788 7.8 High2021-11-16
CVE-2021-43048 TIBCO PartnerExpress Click-Jacking vulnerability — TIBCO PartnerExpress 9.8 Critical2021-11-16
CVE-2021-43046 TIBCO PartnerExpress Session Token in URL — TIBCO PartnerExpress 7.5 High2021-11-16
CVE-2021-25984 FactorJS - Stored Cross-Site Scripting (XSS) in Post Reply Functionality — FactorCWE-79 6.1 Medium2021-11-16
CVE-2021-25983 FactorJS - Reflected Cross-Site Scripting (XSS) in Tags and Categories Functionality — FactorCWE-79 6.1 Medium2021-11-16
CVE-2021-25982 FactorJS - Reflected Cross-Site Scripting (XSS) in Search Functionality — FactorCWE-79 6.1 Medium2021-11-16
CVE-2021-41269 Unauthenticated remote code injection in cron-utils — cron-utilsCWE-94 10.0 Critical2021-11-15

Vulnerabilities classified as access:pre-auth represent 19626 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.