access:pre-auth 类型相关 19025 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2022-30692 | Intel SUR 代码问题漏洞 — Intel(R) SUR software | 5.9 | Medium | 2023-02-16 |
| CVE-2022-33964 | Intel SUR 输入验证错误漏洞 — Intel(R) SUR software | 7.4 | High | 2023-02-16 |
| CVE-2022-29514 | Intel SUR 安全漏洞 — Intel(R) SUR software | 7.7 | High | 2023-02-16 |
| CVE-2022-25987 | Intel(R) oneAPI DPC++/C++ Compiler 安全漏洞 — Intel(R) C++ Compiler Classic | 8.3 | High | 2023-02-16 |
| CVE-2022-26843 | Intel(R) oneAPI DPC++/C++ Compiler 安全漏洞 — Intel(R) oneAPI DPC++/C++ Compiler | 8.3 | High | 2023-02-16 |
| CVE-2022-39952 | Fortinet FortiNAC 安全漏洞 — FortiNACCWE-73 | 9.8 | Critical | 2023-02-16 |
| CVE-2022-41334 | Fortinet FortiOS 跨站脚本漏洞 — FortiOSCWE-79 | 8.6 | High | 2023-02-16 |
| CVE-2022-39948 | Fortinet FortiOS 信任管理问题漏洞 — FortiProxyCWE-295 | 4.4 | Medium | 2023-02-16 |
| CVE-2022-30304 | Fortinet FortiWeb 跨站脚本漏洞 — FortiAnalyzerCWE-79 | 4.2 | Medium | 2023-02-16 |
| CVE-2022-38375 | Fortinet FortiNAC 安全漏洞 — FortiNACCWE-285 | 8.6 | Critical | 2023-02-16 |
| CVE-2021-42756 | Fortinet FortiWeb 缓冲区错误漏洞 — FortiWebCWE-121 | 9.3 | Critical | 2023-02-16 |
| CVE-2021-42761 | Fortinet FortiWeb 授权问题漏洞 — FortiWebCWE-384 | 8.5 | Critical | 2023-02-16 |
| CVE-2023-20085 | Cisco Identity Services Engine 跨站脚本漏洞 — Cisco Identity Services Engine SoftwareCWE-79 | 6.1 | Medium | 2023-02-16 |
| CVE-2023-20053 | Cisco Nexus Dashboard 跨站脚本漏洞 — Cisco Nexus DashboardCWE-79 | 6.1 | Medium | 2023-02-16 |
| CVE-2022-20952 | Cisco Secure Web Appliance 输入验证错误漏洞 — Cisco Secure Web ApplianceCWE-20 | 5.3 | Medium | 2023-02-16 |
| CVE-2023-20052 | ClamAV 安全漏洞 — Cisco Secure EndpointCWE-611 | 5.3 | Medium | 2023-02-16 |
| CVE-2023-20014 | Cisco Nexus Dashboard 资源管理错误漏洞 — Cisco Nexus DashboardCWE-399 | 7.5 | High | 2023-02-16 |
| CVE-2023-20032 | ClamAV 缓冲区错误漏洞 — Cisco Secure Web ApplianceCWE-120 | 9.8 | Critical | 2023-02-16 |
| CVE-2022-27891 | Palantir 访问控制错误漏洞 — GothamCWE-200 | 5.3 | Medium | 2023-02-16 |
| CVE-2022-27892 | Palantir 输入验证错误漏洞 — GothamCWE-20 | 5.3 | Medium | 2023-02-16 |
| CVE-2022-27897 | Palantir 输入验证错误漏洞 — GothamCWE-20 | 5.3 | Medium | 2023-02-16 |
| CVE-2023-25578 | Starlite 安全漏洞 — starliteCWE-770 | 7.5 | High | 2023-02-15 |
| CVE-2021-33925 | cms-corephp SQL注入漏洞 — n/a | 9.8 | - | 2023-02-15 |
| CVE-2022-22564 | Dell EMC Unity 加密问题漏洞 — UnityCWE-327 | 5.9 | Medium | 2023-02-14 |
| CVE-2023-25614 | SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS ABAP (BSP Framework)CWE-79 | 6.1 | Medium | 2023-02-14 |
| CVE-2023-24522 | SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS ABAP (BSP Framework)CWE-79 | 6.1 | Medium | 2023-02-14 |
| CVE-2023-24521 | SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS ABAP (BSP Framework)CWE-79 | 6.1 | Medium | 2023-02-14 |
| CVE-2023-23860 | SAP NetWeaver AS 输入验证错误漏洞 — NetWeaver AS for ABAP and ABAP PlatformCWE-601 | 6.1 | Medium | 2023-02-14 |
| CVE-2023-23859 | SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS for ABAP and ABAP PlatformCWE-79 | 6.1 | Medium | 2023-02-14 |
| CVE-2023-23858 | SAP NetWeaver AS 跨站脚本漏洞 — SAP NetWeaver AS for ABAP and ABAP PlatformCWE-79 | 6.1 | Medium | 2023-02-14 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19025 条 CVE 漏洞。