目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 19065

access:pre-auth 类型相关 19065 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2022-29878 Siemens SICAM 安全漏洞 — SICAM TCWE-294 7.5 High2022-05-10
CVE-2022-29877 Siemens SICAM 访问控制错误漏洞 — SICAM P850CWE-306 8.2 -2022-05-10
CVE-2022-29876 Siemens SICAM 跨站脚本漏洞 — SICAM TCWE-79 7.1 High2022-05-10
CVE-2022-29874 Siemens SICAM 安全漏洞 — SICAM TCWE-319 8.8 High2022-05-10
CVE-2022-29873 Siemens SICAM 安全漏洞 — SICAM TCWE-141 9.8 Critical2022-05-10
CVE-2022-24043 多款Siemens产品安全漏洞 — Desigo DXR2CWE-203 5.3 -2022-05-10
CVE-2022-29933 Pixel&tonic Craft CMS 授权问题漏洞 — n/a 7.5 -2022-05-09
CVE-2022-0948 WordPress plugin Order Listener for WooCommerce SQL注入漏洞 — Order Listener for WooCommerce – Play Sounds Instantly on New OrdersCWE-89 9.8 -2022-05-09
CVE-2022-0836 WordPress plugin SEMA API SQL注入漏洞 — SEMA APICWE-89 9.8 -2022-05-09
CVE-2022-0826 WordPress plugin WP Video Gallery SQL注入漏洞 — WP Video GalleryCWE-89 9.8 -2022-05-09
CVE-2022-0817 WordPress plugin BadgeOS SQL注入漏洞 — BadgeOSCWE-89 9.8 -2022-05-09
CVE-2022-0814 WordPress plugin Ubigeo de Peru SQL注入漏洞 — Ubigeo de Perú para Woocommerce y WordPressCWE-89 9.8 -2022-05-09
CVE-2022-0592 WordPress plugin MapSVG SQL注入漏洞 — MapSVGCWE-89 9.8 -2022-05-09
CVE-2022-0424 WordPress plugin Popup by Supsystic 访问控制错误漏洞 — Popup by SupsysticCWE-306 5.3 -2022-05-09
CVE-2019-12254 TECSON/GOK SmartBox 授权问题漏洞 — e-litro netCWE-287 9.8 Critical2022-05-06
CVE-2022-28005 3CX Phone system(web)management console 安全漏洞 — n/a 9.8 -2022-05-06
CVE-2022-20785 ClamAV 安全漏洞 — Cisco AMP for EndpointsCWE-401 7.5 High2022-05-04
CVE-2022-20771 ClamAV 资源管理错误漏洞 — Cisco AMP for EndpointsCWE-399 7.5 High2022-05-04
CVE-2022-20770 ClamAV 资源管理错误漏洞 — Cisco AMP for EndpointsCWE-399 8.6 High2022-05-04
CVE-2022-23443 Fortinet FortiSOAR 安全漏洞 — Fortinet FortiSOAR 7.5 High2022-05-04
CVE-2022-20715 Cisco Firepower Threat Defense和Cisco Adaptive Security Appliances Software 输入验证错误漏洞 — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-399 8.6 High2022-05-03
CVE-2022-20730 Cisco Firepower Threat Defense 安全漏洞 — Cisco Firepower Threat Defense SoftwareCWE-241 4.0 Medium2022-05-03
CVE-2022-20740 Cisco Firepower Management Center 跨站脚本漏洞 — Cisco Firepower Management Center 6.1.0CWE-80 6.1 Medium2022-05-03
CVE-2022-20742 多款Cisco产品安全漏洞 — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-325 7.4 High2022-05-03
CVE-2022-20767 Cisco Firepower Threat Defense 资源管理错误漏洞 — Cisco Firepower Threat Defense SoftwareCWE-399 8.6 High2022-05-03
CVE-2022-20760 多款Cisco产品资源管理错误漏洞 — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-400 8.6 High2022-05-03
CVE-2022-20757 Cisco Firepower Threat Defense 安全漏洞 — Cisco Firepower Threat Defense SoftwareCWE-770 8.6 High2022-05-03
CVE-2022-20751 Cisco Firepower Threat Defense 安全漏洞 — Cisco Firepower Threat Defense SoftwareCWE-770 8.6 High2022-05-03
CVE-2022-20748 Cisco Firepower Threat Defense 资源管理错误漏洞 — Cisco Firepower Threat Defense SoftwareCWE-664 5.3 Medium2022-05-03
CVE-2022-20746 Cisco Firepower Threat Defense 代码问题漏洞 — Cisco Firepower Threat Defense SoftwareCWE-476 8.6 High2022-05-03

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19065 条 CVE 漏洞。