access:pre-auth 类型相关 19017 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2022-48323 | Sunlogin Sunflower Simplified 路径遍历漏洞 — n/a | 9.8 | - | 2023-02-13 |
| CVE-2023-22367 | Ichiran 信任管理问题漏洞 — Ichiran App for iOS and Ichiran App for Android | 5.9 | - | 2023-02-13 |
| CVE-2023-22854 | Mitel MiContact Center Business 安全漏洞 — n/a | 7.5 | - | 2023-02-13 |
| CVE-2023-25717 | Ruckus Wireless SmartZone 代码注入漏洞 — n/a | 9.8 | - | 2023-02-13 |
| CVE-2023-25561 | DataHub 安全漏洞 — datahubCWE-755 | 5.7 | Medium | 2023-02-10 |
| CVE-2022-46675 | Dell Wyse Management Suite 安全漏洞 — Wyse Management SuiteCWE-209 | 5.3 | Medium | 2023-02-10 |
| CVE-2022-34448 | Dell PowerPath Management Appliance 跨站请求伪造漏洞 — PowerPath Management ApplianceCWE-352 | 8.8 | High | 2023-02-10 |
| CVE-2022-34444 | Dell PowerScale OneFS 加密问题漏洞 — PowerScale OneFSCWE-327 | 5.9 | Medium | 2023-02-10 |
| CVE-2022-34389 | Dell SupportAssist for Home PCs 安全漏洞 — SupportAssist CWE-307 | 3.7 | Low | 2023-02-10 |
| CVE-2022-24410 | Dell BIOS 安全漏洞 — CPG BIOSCWE-200 | 6.8 | Medium | 2023-02-10 |
| CVE-2022-45699 | APsystems Energy Communication Unit 操作系统命令注入漏洞 — n/a | 9.8 | - | 2023-02-10 |
| CVE-2022-3568 | WordPress plugin ImageMagick Engine 跨站请求伪造漏洞 — ImageMagick EngineCWE-502 | 8.8 | High | 2023-02-09 |
| CVE-2023-24688 | mojoPortal 安全漏洞 — n/a | 5.3 | - | 2023-02-09 |
| CVE-2023-0726 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-08 |
| CVE-2023-0722 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-08 |
| CVE-2023-0725 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-08 |
| CVE-2023-0724 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-08 |
| CVE-2023-0685 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-08 |
| CVE-2023-0723 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-07 |
| CVE-2023-0730 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-07 |
| CVE-2023-0727 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-07 |
| CVE-2023-0728 | WordPress plugin Wicked Folders 跨站请求伪造漏洞 — Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post TypesCWE-352 | 5.4 | Medium | 2023-02-07 |
| CVE-2022-3229 | Rapid7 Metasploit 安全漏洞 — Unified RemoteCWE-285 | 9.8 | - | 2023-02-06 |
| CVE-2022-4681 | WordPress plugin Hide My WP SQL注入漏洞 — Hide My WP | 9.8 | - | 2023-02-06 |
| CVE-2022-2933 | WordPress plugin 0mk Shortener 跨站请求伪造漏洞 — 0mk ShortenerCWE-352 | 5.4 | Medium | 2023-02-06 |
| CVE-2022-48164 | WAVLINK WL-WN533A8 安全漏洞 — n/a | 7.5 | - | 2023-02-06 |
| CVE-2022-48166 | WAVLINK WL-WN530HG4 安全漏洞 — n/a | 9.1 | - | 2023-02-06 |
| CVE-2023-23849 | Synopsys Coverity Connect 跨站脚本漏洞 — CoverityCWE-79 | 6.1 | - | 2023-02-06 |
| CVE-2023-24576 | Dell EMC NetWorker 代码注入漏洞 — NetWorker, NVECWE-94 | 7.5 | High | 2023-02-03 |
| CVE-2023-25135 | Gimmie vBulletin 代码问题漏洞 — n/a | 9.8 | - | 2023-02-03 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19017 条 CVE 漏洞。