access:pre-auth 类型相关 19065 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2021-22275 | B&R Automation Runtime 安全漏洞 — Automation Runtime webserverCWE-120 | 8.6 | High | 2022-05-13 |
| CVE-2022-29854 | Mitel 6900 Series IP Phone MiNet 安全漏洞 — n/a | 6.8 | - | 2022-05-13 |
| CVE-2020-22983 | MicroStrategy Web SDK 代码问题漏洞 — n/a | 8.1 | - | 2022-05-13 |
| CVE-2020-22985 | MicroStrategy Web SDK 跨站脚本漏洞 — n/a | 6.1 | - | 2022-05-12 |
| CVE-2020-22986 | MicroStrategy Web SDK 跨站脚本漏洞 — n/a | 6.1 | - | 2022-05-12 |
| CVE-2020-22987 | MicroStrategy Web SDK 跨站脚本漏洞 — n/a | 6.1 | - | 2022-05-12 |
| CVE-2020-22984 | MicroStrategy Web SDK 跨站脚本漏洞 — n/a | 6.1 | - | 2022-05-12 |
| CVE-2022-23166 | Sysaid Technologies SysAid 路径遍历漏洞 — Sysaid | 6.1 | Medium | 2022-05-12 |
| CVE-2022-0004 | Intel Processors 安全特征问题漏洞 — Intel(R) Processors in Intel(R) Boot Guard and Intel(R) TXT | 6.8 | - | 2022-05-12 |
| CVE-2021-33082 | 多款Intel产品安全漏洞 — Intel(R) SSD and Intel(R) Optane(TM) SSD Products | 4.6 | - | 2022-05-12 |
| CVE-2021-33074 | 多款Intel产品安全漏洞 — Intel(R) SSD, Intel(R) SSD DC and Intel(R) Optane(TM) SSD Products | 4.6 | - | 2022-05-12 |
| CVE-2021-33080 | 多款Intel产品安全漏洞 — Intel(R) SSD DC, Intel(R) Optane(TM) SSD and Intel(R) Optane(TM) SSD DC Products | 6.8 | - | 2022-05-12 |
| CVE-2021-33077 | 多款Intel产品安全漏洞 — Intel(R) SSD, Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products | 6.8 | - | 2022-05-12 |
| CVE-2021-33130 | Intel RealSense ID Solution F450 安全漏洞 — Intel(R) RealSense(TM) ID Solution F450 | 4.6 | - | 2022-05-12 |
| CVE-2022-29538 | RESI Gemini-Net 安全漏洞 — n/a | 5.3 | - | 2022-05-12 |
| CVE-2022-29539 | RESI Gemini-Net 操作系统命令注入漏洞 — n/a | 9.8 | - | 2022-05-12 |
| CVE-2022-29855 | Mitel 6900 SIP 安全漏洞 — n/a | 6.8 | - | 2022-05-11 |
| CVE-2022-29847 | Progress Software WhatsUp Gold 代码问题漏洞 — n/a | 9.1 | - | 2022-05-11 |
| CVE-2022-29846 | Progress Software WhatsUp Gold 信息泄露漏洞 — n/a | 5.3 | - | 2022-05-11 |
| CVE-2021-43081 | Fortinet FortiProxy SSL VPN跨站脚本漏洞 — Fortinet FortiProxy | 6.1 | Medium | 2022-05-11 |
| CVE-2021-44167 | Fortinet FortiClient 安全漏洞 — Fortinet FortiClientLinux | 6.8 | Medium | 2022-05-11 |
| CVE-2022-29932 | PRIMEUR SPAZIO 安全漏洞 — n/a | 7.5 | - | 2022-05-11 |
| CVE-2022-30278 | Black Duck Hub 跨站脚本漏洞 — Black Duck HubCWE-79 | 6.1 | - | 2022-05-10 |
| CVE-2022-1505 | WordPress plugin RSVPMaker SQL注入漏洞 — RSVPMakerCWE-89 | 9.8 | Critical | 2022-05-10 |
| CVE-2022-1442 | WordPress plugin Metform 安全漏洞 — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-862 | 7.5 | High | 2022-05-10 |
| CVE-2022-1453 | WordPress plugin RSVPMaker SQL注入漏洞 — RSVPMakerCWE-89 | 9.8 | Critical | 2022-05-10 |
| CVE-2022-22774 | 多款TIBCO Software产品代码问题漏洞 — TIBCO Managed File Transfer Command Center | 8.6 | High | 2022-05-10 |
| CVE-2022-29883 | Siemens SICAM 访问控制错误漏洞 — SICAM TCWE-287 | 5.3 | Medium | 2022-05-10 |
| CVE-2022-29882 | Siemens SICAM 跨站脚本漏洞 — SICAM TCWE-79 | 7.1 | High | 2022-05-10 |
| CVE-2022-29881 | Siemens SICAM 访问控制错误漏洞 — SICAM TCWE-306 | 5.3 | Medium | 2022-05-10 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19065 条 CVE 漏洞。