Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19070

19070 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2020-13617 Mitel MiVoice 安全漏洞 — n/a 7.5 -2020-08-26
CVE-2020-3440 Cisco Webex Meetings Desktop App for Windows Arbitrary File Overwrite Vulnerability — Cisco Webex MeetingsCWE-22 8.1 -2020-08-26
CVE-2020-3446 Cisco vWAAS for Cisco ENCS 5400-W Series and CSP 5000-W Series Default Credentials Vulnerability — Cisco Wide Area Application Services (WAAS)CWE-798 9.8 -2020-08-26
CVE-2020-3466 Cisco DNA Center Cross-Site Scripting Vulnerabilities — Cisco Digital Network Architecture Center (DNA Center)CWE-79 6.1 -2020-08-26
CVE-2020-3484 Cisco Vision Dynamic Signage Director Directory Traversal Information Disclosure Vulnerability — Cisco Vision Dynamic Signage DirectorCWE-16 5.3 Medium2020-08-26
CVE-2020-3496 Cisco Small Business Smart and Managed Switches Denial of Service Vulnerability — Cisco Small Business 250 Series Smart Switches SoftwareCWE-20 7.5 -2020-08-26
CVE-2020-3505 Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Memory Leak Vulnerability — Cisco Video Surveillance 8000 Series IP CamerasCWE-400 6.5 Medium2020-08-26
CVE-2020-3506 Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerabilities — Cisco Video Surveillance 8000 Series IP CamerasCWE-20 8.8 High2020-08-26
CVE-2020-3507 Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerabilities — Cisco Video Surveillance 8000 Series IP CamerasCWE-20 8.8 High2020-08-26
CVE-2020-24007 Umanni RH 安全漏洞 — n/a 9.8 -2020-08-26
CVE-2020-24312 WordPress plugin mndpsingh287 WP File Manager 信息泄露漏洞 — n/a 7.5 -2020-08-26
CVE-2020-19880 DBHcms 跨站脚本漏洞 — n/a 6.1 -2020-08-24
CVE-2020-19878 DBHcms 信息泄露漏洞 — n/a 7.5 -2020-08-24
CVE-2020-19877 DBHcms 路径遍历漏洞 — n/a 7.5 -2020-08-24
CVE-2020-24186 WordPress 代码问题漏洞 — n/a 10.0 Critical2020-08-24
CVE-2020-5416 CF clusters with NGINX in front of them may be vulnerable to DoS — RoutingCWE-404 7.5 -2020-08-21
CVE-2020-5775 Canvas LMS 代码问题漏洞 — Instructure Canvas Learning Management System (LMS) 9.3 -2020-08-21
CVE-2020-24052 Moog EXO Series EXVF5C-2 和 EXVP7C2-3 安全漏洞 — n/a 7.5 -2020-08-21
CVE-2020-24051 Moog EXO 授权问题漏洞 — n/a 9.8 -2020-08-21
CVE-2020-1597 ASP.NET Core Denial of Service Vulnerability — ASP.NET Core 2.1 7.5 -2020-08-17
CVE-2020-1472 Netlogon Elevation of Privilege Vulnerability — Windows Server version 2004 5.5 Medium2020-08-17
CVE-2020-3346 Cisco Unified Communications Manager Cross-Site Scripting Vulnerability — Cisco Unified Communications ManagerCWE-79 6.1 Medium2020-08-17
CVE-2020-3363 Cisco Small Business Smart and Managed Switches Denial of Service Vulnerability — Cisco Small Business 250 Series Smart Switches SoftwareCWE-20 7.5 -2020-08-17
CVE-2020-3411 Cisco DNA Center Information Disclosure Vulnerability — Cisco Digital Network Architecture Center (DNA Center)CWE-200 7.5 -2020-08-17
CVE-2020-3448 Cisco Cyber Vision Center Software Access Control Bypass Vulnerability — Cisco Cyber VisionCWE-284 5.3 -2020-08-17
CVE-2020-3449 Cisco IOS XR Software Additional Paths Denial of Service Vulnerability — Cisco IOS XR SoftwareCWE-754 4.3 Medium2020-08-17
CVE-2020-3463 Cisco Webex Meetings Reflected Cross-Site Scripting Vulnerability — Cisco Webex MeetingsCWE-79 6.1 Medium2020-08-17
CVE-2020-3500 Cisco StarOS IPv6 Denial of Service Vulnerability — Cisco ASR 5000 Series SoftwareCWE-119 6.8 Medium2020-08-17
CVE-2020-24208 SourceCodester Online Shopping Alphaware SQL注入漏洞 — n/a 9.8 -2020-08-17
CVE-2019-5591 Fortinet FortiOS 信息泄露漏洞 — Fortinet FortiOS 6.5 -2020-08-14

Vulnerabilities classified as access:pre-auth represent 19070 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.