Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19273

19273 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2020-8672 多款Intel产品缓冲区错误漏洞 — Intel BIOS Advisory 7.8 -2021-02-02
CVE-2020-29662 Harbor 授权问题漏洞 — n/a 5.3 -2021-02-02
CVE-2021-3024 HashiCorp Vault and Vault Enterprise 安全漏洞 — n/a 5.3 -2021-02-01
CVE-2020-25594 Hashicorp Vault 安全漏洞 — n/a 5.3 -2021-02-01
CVE-2021-3282 HashiCorp Vault Enterprise 授权问题漏洞 — n/a 7.5 -2021-02-01
CVE-2020-15834 Mofi Network MOFI4500-4GXeLTE 信息泄露漏洞 — n/a 7.5 -2021-02-01
CVE-2020-13857 Mofi Network MOFI4500-4GXeLTE 安全漏洞 — n/a 7.5 -2021-02-01
CVE-2021-20586 多款Mitsubishi Electric产品资源管理错误漏洞 — Robot Controller MELFA FR Series; Robot Controller CR Series; Cooperative Robot ASSISTA 7.5 -2021-01-29
CVE-2021-25909 ZIV AUTOMATION 4CCT Denial of Service vulnerability — 4CCT-EA6-334126BFCWE-400 8.6 High2021-01-29
CVE-2020-35547 Mitel Networks MiCollab 授权问题漏洞 — n/a 9.1 -2021-01-29
CVE-2021-3160 Aca Assurex Rentes 代码问题漏洞 — n/a 9.8 -2021-01-28
CVE-2020-25785 Accfly Wireless Security IR Camera System 720P Software 缓冲区错误漏洞 — n/a 9.8 -2021-01-28
CVE-2020-25784 Accfly Wireless Security IR Camera System 720P Software 缓冲区错误漏洞 — n/a 9.8 -2021-01-28
CVE-2020-25783 Accfly Wireless Security IR Camera System 720P Software 缓冲区错误漏洞 — n/a 9.8 -2021-01-28
CVE-2020-25782 Accfly Wireless Security IR Camera System 720P Software 缓冲区错误漏洞 — n/a 9.8 -2021-01-28
CVE-2021-26067 Atlassian Bamboo 信息泄露漏洞 — Bamboo 5.3 -2021-01-28
CVE-2020-6779 Hard-coded Credentials in the Database of Bosch FSM-2500 Server and Bosch FSM-5000 Server — FSM-2500CWE-798 10.0 Critical2021-01-25
CVE-2021-3193 Nagios Docker 安全漏洞 — n/a 9.8 -2021-01-22
CVE-2020-27583 IBM InfoSphere Information Server 代码问题漏洞 — n/a 9.8 -2021-01-21
CVE-2021-1138 Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerabilities — Cisco Smart Software Manager On-PremCWE-20 9.8 Critical2021-01-20
CVE-2021-1139 Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerabilities — Cisco Smart Software Manager On-PremCWE-20 9.8 Critical2021-01-20
CVE-2021-1140 Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerabilities — Cisco Smart Software Manager On-PremCWE-20 9.8 Critical2021-01-20
CVE-2021-1141 Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerabilities — Cisco Smart Software Manager On-PremCWE-20 9.8 Critical2021-01-20
CVE-2021-1142 Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerabilities — Cisco Smart Software Manager On-PremCWE-20 9.8 Critical2021-01-20
CVE-2021-1225 Cisco SD-WAN vManage SQL Injection Vulnerabilities — Cisco SD-WAN vManageCWE-89 9.1 -2021-01-20
CVE-2021-1241 Cisco SD-WAN Denial of Service Vulnerabilities — Cisco SD-WAN SolutionCWE-119 8.6 High2021-01-20
CVE-2021-1312 Cisco Elastic Services Controller Denial of Service Vulnerability — Cisco Elastic Services ControllerCWE-400 5.3 Medium2021-01-20
CVE-2021-1350 Cisco Umbrella Dashboard Packet Flood Vulnerability — Cisco Umbrella Insights Virtual ApplianceCWE-770 5.3 Medium2021-01-20
CVE-2021-1353 Cisco StarOS IPv4 Denial of Service Vulnerability — Cisco ASR 5000 Series SoftwareCWE-401 5.8 Medium2021-01-20
CVE-2021-1257 Cisco DNA Center Cross-Site Request Forgery Vulnerability — Cisco Digital Network Architecture Center (DNA Center)CWE-352 8.8 -2021-01-20

Vulnerabilities classified as access:pre-auth represent 19273 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.