Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19263

19263 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2020-29041 Web-Sesame 安全漏洞 — n/a 7.5 -2021-01-06
CVE-2020-27285 Red Lion Controls Crimson 访问控制错误漏洞 — Crimson 3.1CWE-306 9.1 -2021-01-06
CVE-2021-3018 Ipeak Ibexwebcms SQL注入漏洞 — n/a 9.8 -2021-01-05
CVE-2020-29498 Dell Wyse Management Suite 输入验证错误漏洞 — Wyse Management SuiteCWE-601 6.1 -2021-01-04
CVE-2020-5361 Dell Client Commercial and Consumer 授权问题漏洞 — CPG BIOSCWE-640 5.1 Medium2021-01-04
CVE-2020-29492 Dell Wyse ThinOS 授权问题漏洞 — Wyse Proprietary OS (ThinOS)CWE-276 10.0 Critical2021-01-04
CVE-2020-29491 Dell Wyse ThinOS 安全漏洞 — Wyse Proprietary OS (ThinOS)CWE-276 10.0 Critical2021-01-04
CVE-2020-35219 ASUS DSL-N17U 授权问题漏洞 — n/a 9.8 -2021-01-04
CVE-2020-36155 WordPress 安全漏洞 — n/a 10.0 Critical2021-01-04
CVE-2020-36157 WordPress 输入验证错误漏洞 — n/a 10.0 Critical2021-01-04
CVE-2020-35949 WordPress Quiz and Survey Master plugin 安全漏洞 — n/a 10.0 Critical2021-01-01
CVE-2020-35951 WordPress Quiz and Survey Master plugin 安全漏洞 — n/a 9.9 Critical2021-01-01
CVE-2018-14067 Green Packet WiMax DV-360 命令注入漏洞 — n/a 9.8 -2020-12-31
CVE-2020-35783 多款Netgear产品访问控制错误漏洞 — n/a 6.5 Medium2020-12-29
CVE-2020-35797 多款 NETGEAR 设备命令注入漏洞 — n/a 9.8 Critical2020-12-29
CVE-2020-35798 Certain NETGEAR devices 命令注入漏洞 — n/a 9.3 Critical2020-12-29
CVE-2020-35799 Certain NETGEAR devices 缓冲区错误漏洞 — n/a 8.8 High2020-12-29
CVE-2020-35795 Certain NETGEAR devices 安全漏洞 — n/a 9.8 Critical2020-12-29
CVE-2020-35796 Certain NETGEAR devices 缓冲区错误漏洞 — n/a 8.8 High2020-12-29
CVE-2020-9124 多款 Huawei 产品安全漏洞 — CloudEngine 12800 7.5 -2020-12-29
CVE-2020-5807 FactoryTalk Diagnostics 所有安全漏洞 — Rockwell FactoryTalk Diagnostics 7.5 -2020-12-29
CVE-2020-26286 Arbitary file upload — hedgedocCWE-434 7.5 High2020-12-28
CVE-2020-14273 HCL Software HCL Domino 输入验证错误漏洞 — HCL Domino 7.5 -2020-12-28
CVE-2020-27837 GNOME Display Manager 竞争条件问题漏洞 — gdmCWE-362 5.7 -2020-12-28
CVE-2020-35736 Liftoff GateOne 路径遍历漏洞 — n/a 7.5 -2020-12-27
CVE-2020-26282 Template Injection in BrowserUp Proxy — browserup-proxyCWE-74 10.0 Critical2020-12-24
CVE-2020-28186 Terramaster TOS 授权问题漏洞 — n/a 9.8 -2020-12-24
CVE-2020-28185 Terramaster TOS 权限许可和访问控制问题漏洞 — n/a 5.3 -2020-12-24
CVE-2020-35674 BigProf Online Invoicing System SQL注入漏洞 — n/a 9.8 -2020-12-24
CVE-2020-28188 Terramaster TOS 操作系统命令注入漏洞 — n/a 9.8 -2020-12-24

Vulnerabilities classified as access:pre-auth represent 19263 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.