access:pre-auth 类型相关 19065 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2021-43050 | Tibco BusinessConnect Container Edition 权限许可和访问控制问题漏洞 — TIBCO BusinessConnect Container Edition | 8.4 | High | 2022-02-15 |
| CVE-2021-43049 | Tibco BusinessConnect Container Edition 权限许可和访问控制问题漏洞 — TIBCO BusinessConnect Container Edition | 9.8 | Critical | 2022-02-15 |
| CVE-2021-43953 | Atlassian Jira Server 和 Data Center 跨站请求伪造漏洞 — Jira Server | 4.3 | - | 2022-02-15 |
| CVE-2021-43952 | Atlassian Jira 跨站请求伪造漏洞 — Jira Server | 4.3 | - | 2022-02-15 |
| CVE-2021-4201 | ForgeRock Access Management授权问题漏洞 — Access ManagementCWE-284 | 9.6 | Critical | 2022-02-14 |
| CVE-2021-45310 | Sangoma Technologies Corporation Switchvox 信息泄露漏洞 — n/a | 7.5 | - | 2022-02-14 |
| CVE-2022-0214 | WordPress和WordPress plugin 资源管理错误漏洞 — Popup | Custom Popup Builder | 7.5 | - | 2022-02-14 |
| CVE-2022-0212 | WordPress和WordPress plugin 跨站脚本漏洞 — SpiderCalendarCWE-79 | 6.1 | - | 2022-02-14 |
| CVE-2021-25115 | WordPress和WordPress plugin 跨站脚本漏洞 — WP Photo Album PlusCWE-79 | 5.4 | - | 2022-02-14 |
| CVE-2021-25107 | WordPress 跨站脚本漏洞 — Form Store to DBCWE-79 | 6.1 | - | 2022-02-14 |
| CVE-2022-24977 | ImpressCMS 安全漏洞 — n/a | 9.8 | - | 2022-02-13 |
| CVE-2021-31932 | Nokia BTS TRS web console 安全漏洞 — n/a | 9.8 | - | 2022-02-11 |
| CVE-2021-44850 | Xilinx Zynq-7000 数据伪造问题漏洞 — n/a | 6.8 | - | 2022-02-10 |
| CVE-2022-20738 | Cisco Umbrella 安全漏洞 — Cisco Umbrella Insights Virtual ApplianceCWE-693 | 5.8 | Medium | 2022-02-10 |
| CVE-2021-41445 | D-Link DIR-X1860 跨站脚本漏洞 — n/a | 6.1 | - | 2022-02-10 |
| CVE-2022-24111 | Catalyst IT Mahara 访问控制错误漏洞 — n/a | 4.3 | - | 2022-02-10 |
| CVE-2022-22536 | SAP多个产品环境问题漏洞 — SAP NetWeaver and ABAP PlatformCWE-444 | 9.8 | - | 2022-02-09 |
| CVE-2022-22534 | SAP Netweaver 跨站脚本漏洞 — SAP NetWeaver (ABAP and Java application Servers) | 6.1 | - | 2022-02-09 |
| CVE-2022-22532 | SAP多个产品环境问题漏洞 — SAP NetWeaver Application Server JavaCWE-444 | 9.8 | - | 2022-02-09 |
| CVE-2022-21205 | Intel Quartus Prime Pro 代码问题漏洞 — Intel(R) Quartus(R) Prime Pro Edition | 7.5 | - | 2022-02-09 |
| CVE-2021-33110 | Intel Wireless Bluetooth 和 Killer Bluetooth 输入验证错误漏洞 — Intel(R) Wireless Bluetooth(R) products and Killer(TM) Bluetooth(R) products in Windows 10 and 11 | 6.5 | - | 2022-02-09 |
| CVE-2021-33113 | Intel PROSet/Wireless WiFi Software 输入验证错误漏洞 — Intel(R) PROSet/Wireless WiFi in multiple operating systems and Killer(TM) WiFi in Windows 10 and 11 | 8.1 | - | 2022-02-09 |
| CVE-2021-33115 | Intel PROSet/Wireless WiFi Software 输入验证错误漏洞 — Intel(R) PROSet/Wireless WiFi in UEFI | 8.8 | - | 2022-02-09 |
| CVE-2021-33107 | Intel 多款产品安全漏洞 — Intel(R) AMT SDK before version 16.0.3, Intel(R) SCS before version 12.2 and Intel(R) MEBx | 4.6 | - | 2022-02-09 |
| CVE-2021-0178 | Intel 多款产品输入验证错误漏洞 — Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 | 6.5 | - | 2022-02-09 |
| CVE-2021-0183 | Intel 多款产品输入验证错误漏洞 — Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 | 6.5 | - | 2022-02-09 |
| CVE-2021-0177 | Intel 多款产品输入验证错误漏洞 — Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 | 6.5 | - | 2022-02-09 |
| CVE-2021-0179 | Intel 多款产品输入验证错误漏洞 — Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 | 6.5 | - | 2022-02-09 |
| CVE-2021-0174 | Intel 多款产品输入验证错误漏洞 — Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 | 6.5 | - | 2022-02-09 |
| CVE-2021-0175 | Intel 多款产品输入验证错误漏洞 — Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 | 6.5 | - | 2022-02-09 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19065 条 CVE 漏洞。