Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19242

19242 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2020-6369 SAP Solution Manager和SAP Focused Run 安全漏洞 — CA Introscope Enterprise Manager (Affected products: SAP Solution Manager and SAP Focused Run) 7.5 -2020-10-20
CVE-2020-5640 OneThird CMS 安全漏洞 — OneThird CMS 9.8 -2020-10-20
CVE-2020-9113 Huawei Mate 20 缓冲区错误漏洞 — HUAWEI Mate 20 8.8 -2020-10-19
CVE-2020-16943 Dynamics 365 Commerce Elevation of Privilege Vulnerability — Dynamics 365 Commerce version 10.0.12 6.5 Medium2020-10-16
CVE-2020-16904 Azure Functions Elevation of Privilege Vulnerability — Azure Functions 5.3 Medium2020-10-16
CVE-2020-1680 Junos OS: MX Series: MS-MPC/MIC might crash when processing malformed IPv6 packet in NAT64 configuration. — Junos OSCWE-131 5.3 Medium2020-10-16
CVE-2020-1673 Junos OS: Reflected Cross-site Scripting vulnerability in J-Web and web based (HTTP/HTTPS) services — Junos OSCWE-79 8.8 High2020-10-16
CVE-2020-24408 Stored XSS in customer address upload feature — Magento CommerceCWE-79 6.1 Medium2020-10-16
CVE-2020-26583 Sage DPW 代码问题漏洞 — n/a 6.1 -2020-10-16
CVE-2020-14185 Atlassian JIRA Server 信息泄露漏洞 — Jira Server 5.3 -2020-10-15
CVE-2020-15793 Siemens DESIGO INSIGHT 安全漏洞 — Desigo InsightCWE-1021 5.4 -2020-10-15
CVE-2020-12502 Pepperl+Fuchs improper authorization affects multiple Comtrol RocketLinx products — P+F Comtrol RocketLinxCWE-352 8.8 High2020-10-15
CVE-2020-12500 Pepperl+Fuchs improper authorization affects multiple Comtrol RocketLinx products — P+F Comtrol RocketLinxCWE-306 9.8 Critical2020-10-15
CVE-2020-11637 Automation Runtime TFTP Service DoS Vulnerability — Automation RuntimeCWE-401 5.8 Medium2020-10-15
CVE-2020-27156 Veritas APTARE 安全漏洞 — n/a 9.8 Critical2020-10-15
CVE-2020-27157 Veritas APTARE 安全漏洞 — n/a 8.1 High2020-10-15
CVE-2020-6365 SAP NetWeaver Application Server Java 输入验证错误漏洞 — SAP NetWeaver Application Server Java 6.1 -2020-10-15
CVE-2020-6319 SAP 跨站脚本漏洞 — SAP NetWeaver Application Server Java 6.1 -2020-10-15
CVE-2020-8349 CNOS 代码注入漏洞 — Cloud Networking Operating System (CNOS)CWE-20 9.8 Critical2020-10-14
CVE-2020-13957 Apache Solr 安全漏洞 — Apache Solr 9.8 -2020-10-13
CVE-2020-15797 Siemens DCA Vantage Analyzer 安全漏洞 — DCA Vantage AnalyzerCWE-269 6.8 -2020-10-13
CVE-2020-16124 Integer overflow in ROS communications library — ros_comm ROS communications packagesCWE-190 7.3 High2020-10-13
CVE-2020-9107 Huawei P30 Pro 缓冲区错误漏洞 — HUAWEI P30 Pro 5.5 -2020-10-12
CVE-2020-9108 Huawei P30 Pro 缓冲区错误漏洞 — HUAWEI P30 Pro 5.5 -2020-10-12
CVE-2020-5143 SonicWall SonicOS SSLVPN NACagent 安全漏洞 — SonicOSCWE-203 5.3 -2020-10-12
CVE-2020-5141 SonicWall SonicOS 安全漏洞 — SonicOSCWE-799 6.5 -2020-10-12
CVE-2020-5142 SonicWall SonicOS SSLVPN NACagent 跨站脚本漏洞 — SonicOSCWE-79 6.1 -2020-10-12
CVE-2020-5138 SonicWall SonicOS 缓冲区错误漏洞 — SonicOSCWE-122 7.5 -2020-10-12
CVE-2020-5139 SonicWall SonicOS SSLVPN NACagent 安全漏洞 — SonicOSCWE-763 7.5 -2020-10-12
CVE-2020-5140 SonicWall SonicOS 缓冲区错误漏洞 — SonicOSCWE-125 7.5 -2020-10-12

Vulnerabilities classified as access:pre-auth represent 19242 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.