目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 19065

access:pre-auth 类型相关 19065 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2021-45918 National Health Insurance 缓冲区错误漏洞 — health insurance web service componentCWE-122 7.5 High2022-06-20
CVE-2022-31784 Mitel MiVoice Business Express 安全漏洞 — n/a 9.8 -2022-06-17
CVE-2022-32276 Grafana 授权问题漏洞 — n/a 9.1 -2022-06-17
CVE-2022-31295 Online Discussion Forum Site 安全漏洞 — n/a 4.3 -2022-06-16
CVE-2022-27511 Citrix Application Delivery Management 安全漏洞 — Citrix Application Delivery Management (Citrix ADM)CWE-284 9.8 -2022-06-16
CVE-2022-24562 IOBit IOTransfer 访问控制错误漏洞 — n/a 9.8 -2022-06-16
CVE-2022-31294 Sourcecodester Online Discussion Forum Site 跨站请求伪造漏洞 — n/a 6.5 -2022-06-16
CVE-2021-41420 MaianAffiliate 跨站脚本漏洞 — n/a 5.4 -2022-06-16
CVE-2022-24946 Mitsubishi Electric MELSEC-Q Series 安全漏洞 — Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V; Mitsubishi Electric MELSEC-Q Series Q03UDECPU; Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU; Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU; Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU; Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V; Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G); Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS; Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P); Mitsubishi Electric MELSEC-L series L26CPU-(P)BT; Mitsubishi Electric MELIPC Series MI5122-VW 7.5 -2022-06-15
CVE-2021-43756 Adobe Media Encoder 缓冲区错误漏洞 — Media EncoderCWE-787 7.8 High2022-06-15
CVE-2022-20825 Cisco Small Business 缓冲区错误漏洞 — Cisco Small Business RV Series Router FirmwareCWE-121 9.8 Critical2022-06-15
CVE-2022-20817 Cisco Unified IP Phones 安全特征问题漏洞 — Cisco IP Phones with Multiplatform FirmwareCWE-338 7.4 High2022-06-15
CVE-2022-20798 Cisco多款产品 授权问题漏洞 — Cisco Email Security Appliance (ESA)CWE-287 9.8 Critical2022-06-15
CVE-2022-20736 Cisco AppDynamics Controller 安全漏洞 — Cisco AppDynamicsCWE-939 5.3 Medium2022-06-15
CVE-2022-20733 Cisco Identity Services Engine 安全漏洞 — Cisco Identity Services Engine SoftwareCWE-287 5.3 Medium2022-06-15
CVE-2022-32157 Splunk 访问控制错误漏洞 — Splunk EnterpriseCWE-306 7.5 High2022-06-15
CVE-2021-36901 WordPress plugin Age Gate 跨站脚本漏洞 — Age Gate (WordPress plugin)CWE-79 6.1 Medium2022-06-15
CVE-2022-31066 EdgeX Foundry 信息泄露漏洞 — edgex-goCWE-200 5.9 Medium2022-06-14
CVE-2022-32230 Microsoft Windows SMBv3 代码问题漏洞 — Windows 10 Version 20H2CWE-476 7.5 High2022-06-14
CVE-2022-29618 SAP NetWeaver Development Infrastructure 跨站脚本漏洞 — SAP NetWeaver Development Infrastructure (Design Time Repository)CWE-79 6.1 -2022-06-14
CVE-2022-27668 SAP NetWeaver 和 ABAP Platform 安全漏洞 — SAP NetWeaver and ABAP PlatformCWE-863 9.8 -2022-06-14
CVE-2022-30230 Siemens SICAM GridEdge Essential 访问控制错误漏洞 — SICAM GridEdge (Classic)CWE-306 9.8 Critical2022-06-14
CVE-2022-30229 Siemens SICAM GridEdge Essential 授权问题漏洞 — SICAM GridEdge (Classic)CWE-306 7.2 High2022-06-14
CVE-2022-26476 Siemens Spectrum Power 信任管理问题漏洞 — Spectrum Power 4CWE-798 8.8 -2022-06-14
CVE-2021-37182 Siemens SCALANCE 安全漏洞 — SCALANCE XM408-4CCWE-354 9.8 -2022-06-14
CVE-2021-40604 Invision Community 代码问题漏洞 — n/a 9.1 -2022-06-13
CVE-2022-23167 Amodat Mobile Application Gateway 安全漏洞 — Amodat 5.3 Medium2022-06-13
CVE-2022-1969 WordPress plugin Mobile browser color select 跨站请求伪造漏洞 — Mobile browser color selectCWE-352 8.8 High2022-06-13
CVE-2022-1820 WordPress plugin Keep Backup Daily 跨站脚本漏洞 — Keep Backup DailyCWE-79 6.1 Medium2022-06-13
CVE-2022-1768 WordPress plugin RSVPMaker SQL注入漏洞 — RSVPMakerCWE-89 9.8 Critical2022-06-13

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19065 条 CVE 漏洞。