Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19626

19626 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2004-1088 Apple Mac OS X多个远程和本地安全漏洞 — n/a 3.7 -2005-04-14
CVE-2005-0819 Novell Netware Xsession未授权服务器控制台访问漏洞 — n/a 7.2 -2005-03-20
CVE-2005-0746 Novell iChain Mini FTP Server非授权远程路径泄漏漏洞 — n/a 5.3 -2005-03-13
CVE-2005-0703 Xerox MicroServer Web Server 认证绕过漏洞 — n/a 9.8 -2005-03-09
CVE-2004-1461 Cisco Secure ACS NOVELL目录服务验证绕过漏洞 — n/a 7.5 -2005-02-13
CVE-2004-0917 Vignette ApplicationPortal 远程信息泄露漏洞 — n/a 9.1 -2004-11-19
CVE-2002-0672 Pingtel xpressa SIP-based voice-over-IP电话设置无认证恢复漏洞 — n/a 4.6 -2004-09-01
CVE-2002-1099 Cisco VPN 3000 Series Concentrator Web界面信息泄露漏洞 — n/a 5.3 -2004-09-01
CVE-2002-1112 mantis受限项目漏洞列表查看漏洞 — n/a 5.3 -2004-09-01
CVE-2002-1367 CUPS远程打印机名增加漏洞 — n/a 9.1 -2004-09-01
CVE-2003-0974 Applied Watch Command Center验证绕过漏洞 — n/a 7.5 -2003-12-02
CVE-2003-0633 Oracle E-Business Suite Oracle Applications AOL/J Setup Test Suite信息泄漏漏洞 — n/a 7.5 -2003-08-02
CVE-2003-0639 Novell iChain未知漏洞 — n/a 7.5 -2003-08-02
CVE-2003-0366 Lyskom服务程序未授权用户远程拒绝服务攻击漏洞 — n/a 7.5 -2003-06-18
CVE-2003-0258 Cisco VPN 3000系列集中器和Cisco VPN 3002硬件客户端网络威胁 — n/a 5.3 -2003-05-08
CVE-2001-1303 Check Point Firewall-1 SecureRemote网络信息泄露漏洞 — n/a 7.5 -2003-04-02
CVE-2003-0155 Mozilla Bonsai参数页面未授权访问漏洞 — n/a 9.1 -2003-03-26
CVE-2002-0502 Citrix Nfuse泄漏应用程序列表漏洞 — n/a 5.3 -2002-06-11
CVE-2002-0563 Oracle 9iAS已认证用户访问敏感服务漏洞 — n/a 7.5 -2002-06-11
CVE-2001-1151 Trend Micro OfficeScan Corporate Edition (aka Virus Buster)访问敏感信息漏洞 — n/a 9.8 -2002-03-15
CVE-1999-1488 IBM SP2 System Data Repository (SDR) sdrd后台程序文件任意读取漏洞 — n/a 7.5 -2002-03-09
CVE-2001-0870 Alchemy Eye系统信息泄漏漏洞 — n/a 5.3 -2001-11-30
CVE-2001-0794 A-FTP Anonymous FTP Server缓冲区溢出漏洞 — n/a 7.5 -2001-10-12
CVE-2000-0945 Catalyst web配置界面任意无认证命令执行漏洞 — n/a 8.1 -2001-09-18
CVE-1999-1020 Netware NDS默认特权漏洞 — n/a 7.5 -2001-09-12
CVE-2001-0437 DCForum 'AZ'字段远程命令执行漏洞 — n/a 9.8 -2001-05-24
CVE-2000-0541 Panda Antivirus端口2001命令执行漏洞 — n/a 7.8 -2001-05-07
CVE-2001-0086 Subscribe-Me Lite管理访问漏洞 — n/a 7.5 -2001-02-02
CVE-2000-1179 Netopia ISDN Router 650-ST登陆界面连接漏洞 — n/a 7.5 -2001-01-22
CVE-2000-0191 Axis StorPoint CD访问控制漏洞 — n/a 9.1 -2000-10-13

Vulnerabilities classified as access:pre-auth represent 19626 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.