Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19513

19513 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2021-28616 Adobe After Effects Out-of-bounds Read vulnerability — After EffectsCWE-125 6.1 Medium2021-08-24
CVE-2021-28609 Adobe After Effects Out-of-bounds Read vulnerability could lead to sensitive information disclosure — After EffectsCWE-125 5.5 -2021-08-24
CVE-2021-28607 Adobe After Effects heap corruption vulnerability could lead to arbitrary code execution — After EffectsCWE-787 7.8 High2021-08-24
CVE-2021-28606 Adobe After Effects Stack Overflow vulnerability could lead to arbitrary code execution — After EffectsCWE-121 7.8 -2021-08-24
CVE-2021-28605 Adobe After Effects memory corruption could lead to arbitrary code execution — After EffectsCWE-787 7.8 High2021-08-24
CVE-2021-28600 Adobe After Effects Out-of-bounds Read vulnerability could lead to sensitive information disclosure — After EffectsCWE-125 5.5 Medium2021-08-24
CVE-2021-28602 Adobe After Effects Memory corruption could lead to code execution vulnerability — After EffectsCWE-787 7.8 High2021-08-24
CVE-2021-28603 Adobe After Effects heap corruption vulnerability could lead to arbitrary code execution — After EffectsCWE-122 7.8 -2021-08-24
CVE-2021-28604 Adobe After Effects heap corruption vulnerability could lead to arbitrary code execution — After EffectsCWE-122 7.8 -2021-08-24
CVE-2021-28601 Adobe After Effects NULL Pointer Dereference vulnerability — After EffectsCWE-476 3.3 Low2021-08-24
CVE-2021-28626 Adobe Experience Manager Improper Authorization at /content/usergenerated — Experience ManagerCWE-285 3.7 Low2021-08-24
CVE-2021-28631 Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2021-08-24
CVE-2021-28551 Adobe Acrobat Pro DC JPEG2000 Editing Out-Of-Bounds Read Remote Code Execution Vulnerability — Acrobat ReaderCWE-125 7.8 High2021-08-24
CVE-2021-28552 Adobe Acrobat Reader DC XFA Template Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2021-08-24
CVE-2021-28632 ZDI-CAN-13471: Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability — Acrobat ReaderCWE-416 7.8 High2021-08-24
CVE-2021-28554 Adobe Acrobat Reader DC Path Parsing Out-Of-Bounds Read could lead to arbitrary code execution — Acrobat ReaderCWE-125 7.8 High2021-08-24
CVE-2021-37538 PrestaShop SQL注入漏洞 — n/a 9.8 -2021-08-24
CVE-2021-38306 LG N1T1 操作系统命令注入漏洞 — n/a 9.8 -2021-08-24
CVE-2021-36385 Cerner Mobile Care SQL注入漏洞 — n/a 9.8 -2021-08-24
CVE-2021-28596 Adobe FrameMaker PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — FrameMakerCWE-787 7.8 High2021-08-23
CVE-2021-36013 Adobe Media Encoder VOB File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Media EncoderCWE-125 3.3 Low2021-08-23
CVE-2021-22449 Huawei WATCH Kid 输入验证错误漏洞 — Elf-G10HN 5.3 -2021-08-23
CVE-2021-36016 Adobe Media Encoder FLV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Media EncoderCWE-125 3.3 Low2021-08-20
CVE-2021-36014 Adobe Media Encoder MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability — Media EncoderCWE-20 3.3 Low2021-08-20
CVE-2021-36015 Adobe Media Encoder Memory Corruption Could Lead To Remote Code Execution — Media EncoderCWE-788 7.8 High2021-08-20
CVE-2021-36011 Adobe Illustrator improper neutralization of special elements used in an OS command — IllustratorCWE-78 8.3 High2021-08-20
CVE-2021-36008 Adobe Illustrator PDF File Parsing Use-After-Free Information Disclosure Vulnerability — IllustratorCWE-416 3.3 Low2021-08-20
CVE-2021-36009 Adobe Illustrator PDF File Parsing Memory Corruption Remote Code Execution Vulnerability — IllustratorCWE-788 7.8 High2021-08-20
CVE-2021-36006 Adobe Photoshop MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability — PhotoshopCWE-20 3.3 Low2021-08-20
CVE-2021-36007 Adobe Prelude MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability — PreludeCWE-20 3.3 Low2021-08-20

Vulnerabilities classified as access:pre-auth represent 19513 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.