access:pre-auth 类型相关 19065 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2021-29102 | Esri Arcgis Server 代码问题漏洞 — ArcGIS ServerCWE-918 | 7.5 | - | 2021-07-11 |
| CVE-2021-29107 | Esri Arcgis Server 跨站脚本漏洞 — ArcGIS ServerCWE-79 | 6.1 | - | 2021-07-10 |
| CVE-2021-26100 | Fortinet FortiMail 数据伪造问题漏洞 — Fortinet FortiMail | 5.9 | Medium | 2021-07-09 |
| CVE-2021-24020 | Fortinet FortiMail 数据伪造问题漏洞 — Fortinet FortiMail | 7.5 | High | 2021-07-09 |
| CVE-2021-33012 | Allen Bradley Micrologix 1100 输入验证错误漏洞 — Rockwell Automation MicroLogix 1100CWE-20 | 8.6 | - | 2021-07-09 |
| CVE-2021-30118 | Kaseya VSA RMM 代码问题漏洞 — n/a | 9.8 | Critical | 2021-07-09 |
| CVE-2021-30116 | Kaseya VSA 输入验证错误漏洞 — n/a | 10.0 | Critical | 2021-07-09 |
| CVE-2021-1598 | Cisco Video Surveillance 7000 Series IP Cameras 安全漏洞 — Cisco Video Surveillance 7000 Series IP CamerasCWE-401 | 6.5 | Medium | 2021-07-08 |
| CVE-2021-1597 | Cisco Video Surveillance 7000 安全漏洞 — Cisco Video Surveillance 7000 Series IP CamerasCWE-401 | 6.5 | Medium | 2021-07-08 |
| CVE-2021-1596 | Cisco Video Surveillance 7000 Series IP Cameras 安全漏洞 — Cisco Video Surveillance 7000 Series IP CamerasCWE-401 | 6.5 | Medium | 2021-07-08 |
| CVE-2021-1595 | Cisco Video Surveillance 7000 Series IP Cameras 安全漏洞 — Cisco Video Surveillance 7000 Series IP CamerasCWE-401 | 6.5 | Medium | 2021-07-08 |
| CVE-2021-1585 | Cisco Adaptive Security Device Manager 代码注入漏洞 — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-94 | 7.5 | High | 2021-07-08 |
| CVE-2021-1575 | Cisco Virtualized Voice Browser 跨站脚本漏洞 — Cisco Virtualized Voice BrowserCWE-79 | 6.1 | Medium | 2021-07-08 |
| CVE-2021-33221 | CommScope Ruckus IoT Controller 访问控制错误漏洞 — n/a | 9.8 | - | 2021-07-07 |
| CVE-2021-32535 | QSAN SANOS 信任管理问题漏洞 — SANOSCWE-798 | 9.8 | Critical | 2021-07-07 |
| CVE-2021-32530 | QSAN XEVO 操作系统命令注入漏洞 — XEVOCWE-78 | 9.8 | Critical | 2021-07-07 |
| CVE-2021-32529 | 多款 QSAN 产品命令注入漏洞 — XEVOCWE-77 | 9.8 | Critical | 2021-07-07 |
| CVE-2021-32527 | QSAN Storage Manager 路径遍历漏洞 — Storage ManagerCWE-22 | 7.5 | High | 2021-07-07 |
| CVE-2021-32513 | QSAN Storage Manager 操作系统命令注入漏洞 — Storage ManagerCWE-78 | 9.8 | Critical | 2021-07-07 |
| CVE-2021-32512 | QSAN Storage Manager 操作系统命令注入漏洞 — Storage ManagerCWE-78 | 9.8 | Critical | 2021-07-07 |
| CVE-2021-31925 | Pexip Infinity 输入验证错误漏洞 — n/a | 7.5 | - | 2021-07-07 |
| CVE-2020-25868 | Pexip Infinity 输入验证错误漏洞 — n/a | 7.5 | - | 2021-07-07 |
| CVE-2021-35451 | Teradici PCoIP Management Console 跨站脚本漏洞 — n/a | 4.3 | - | 2021-07-07 |
| CVE-2021-20739 | ELECOM 多款产品操作系统命令注入漏洞 — WRC-300FEBK, WRC-F300NF, WRC-733FEBK, WRH-300RD, WRH-300BK, WRH-300SV, WRH-300WH, WRH-H300WH, WRH-H300BK, WRH-300BK-S, and WRH-300WH-S | 8.8 | - | 2021-07-07 |
| CVE-2021-20738 | ELECOM 多款产品安全漏洞 — WRC-1167FS-W, WRC-1167FS-B, and WRC-1167FSA | 4.3 | - | 2021-07-07 |
| CVE-2021-24389 | WordPress 插件 跨站脚本漏洞 — WP FoodbakeryCWE-79 | 6.1 | - | 2021-07-06 |
| CVE-2021-24387 | WordPress 插件跨站脚本漏洞 — WP Pro Real Estate 7CWE-79 | 6.1 | - | 2021-07-06 |
| CVE-2021-24384 | WordPress 插件 代码问题漏洞 — JoomSport – for Sports: Team & League, Football, Hockey & moreCWE-502 | 9.8 | - | 2021-07-06 |
| CVE-2021-24375 | WordPress 插件路径遍历漏洞 — MotorCWE-22 | 9.8 | - | 2021-07-06 |
| CVE-2021-35336 | Tieline IP Audio Gateway 访问控制错误漏洞 — n/a | 9.8 | - | 2021-07-01 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19065 条 CVE 漏洞。