目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

access:pre-auth 标签下的 CVE 漏洞 19065

access:pre-auth 类型相关 19065 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE IDタイトルCVSS深刻度公開日
CVE-2022-24424 DELL EMC AppSync 路径遍历漏洞 — AppSyncCWE-22 7.5 High2022-04-21
CVE-2022-24423 Dell iDRAC8 输入验证错误漏洞 — Integrated Dell Remote Access Controller 8CWE-20 5.3 Medium2022-04-21
CVE-2022-20773 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability — Cisco Umbrella Insights Virtual ApplianceCWE-321 7.5 High2022-04-21
CVE-2022-20804 Cisco Unified Communications Products Denial of Service Vulnerability — Cisco Unified Communications ManagerCWE-754 5.3 Medium2022-04-21
CVE-2022-20795 Cisco Adaptive Security Appliance and Cisco Firepower Threat Defense Software AnyConnect SSL VPN Denial of Service Vulnerability — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-345 5.8 Medium2022-04-21
CVE-2022-20788 Cisco Unified Communications Products Cross-Site Scripting Vulnerability — Cisco Unified Communications ManagerCWE-79 6.1 Medium2022-04-21
CVE-2022-20783 Cisco TelePresence Collaboration Endpoint and RoomOS Software H.323 Denial of Service Vulnerability — Cisco RoomOS SoftwareCWE-1287 7.5 High2022-04-21
CVE-2022-20778 Cisco Webex Meetings Cross-Site Scripting Vulnerability — Cisco Webex MeetingsCWE-79 6.1 Medium2022-04-21
CVE-2022-27926 Zimbra 安全漏洞 — n/a 6.1 -2022-04-20
CVE-2022-27924 Zimbra 注入漏洞 — n/a 5.3 -2022-04-20
CVE-2022-26133 Atlassian Bitbucket Data Center 代码问题漏洞 — Bitbucket Data Center 9.8 -2022-04-20
CVE-2022-0540 Atlassian Jira 授权问题漏洞 — Jira Core Server 9.8 -2022-04-20
CVE-2022-25343 Kyocera d-COLOR MF3555 安全漏洞 — n/a 7.5 -2022-04-20
CVE-2022-27629 WordPress Plugin MicroPayments 跨站请求伪造漏洞 — MicroPayments - Paid Author Subscriptions, Content, Downloads, Membership 8.8 -2022-04-20
CVE-2022-21497 Oracle Web Services Manager 输入验证错误漏洞 — Web Services Manager 8.1 High2022-04-19
CVE-2022-21496 Oracle Java SE 输入验证错误漏洞 — Java SE JDK and JRE 5.3 Medium2022-04-19
CVE-2022-21492 Oracle Fusion Middleware 缓冲区错误漏洞 — Business Intelligence Enterprise Edition 6.1 Medium2022-04-19
CVE-2022-21480 Oracle Transportation Management 输入验证错误漏洞 — Transportation Management 6.1 Medium2022-04-19
CVE-2022-21476 Oracle Java SE 输入验证错误漏洞 — Java SE JDK and JRE 7.5 High2022-04-19
CVE-2022-21470 Oracle PeopleSoft Enterprise PeopleTools 输入验证错误漏洞 — PeopleSoft Enterprise PT PeopleTools 6.1 Medium2022-04-19
CVE-2022-21469 Oracle Enterprise Manager Base Platform 输入验证错误漏洞 — Enterprise Manager Base Platform 4.7 Medium2022-04-19
CVE-2022-21468 Oracle E-Business Suite 输入验证错误漏洞 — Applications Framework 6.1 Medium2022-04-19
CVE-2022-21466 Oracle Commerce 输入验证错误漏洞 — Commerce Guided Search / Oracle Commerce Experience Manager 7.5 High2022-04-19
CVE-2022-21464 Oracle JD Edwards Products 输入验证错误漏洞 — JD Edwards EnterpriseOne Tools 8.2 High2022-04-19
CVE-2022-21458 Oracle PeopleSoft Products产品输入验证错误漏洞 — PeopleSoft Enterprise PT PeopleTools 6.1 Medium2022-04-19
CVE-2022-21457 Oracle MySQL 输入验证错误漏洞 — MySQL Server 5.9 Medium2022-04-19
CVE-2022-21456 Oracle PeopleSoft Enterprise PeopleTools产品安全漏洞 — PeopleSoft Enterprise PT PeopleTools 6.1 Medium2022-04-19
CVE-2022-21453 Oracle Fusion Middleware 缓冲区错误漏洞 — WebLogic Server 6.1 Medium2022-04-19
CVE-2022-21449 Oracle Java SE 输入验证错误漏洞 — Java SE JDK and JRE 7.5 High2022-04-19
CVE-2022-21448 Oracle Fusion Middleware 缓冲区错误漏洞 — Business Intelligence Enterprise Edition 6.1 Medium2022-04-19

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19065 条 CVE 漏洞。