access:pre-auth 类型相关 19009 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2020-8761 | Intel CSME 加密问题漏洞 — Intel(R) CSME | 4.6 | - | 2020-11-12 |
| CVE-2020-8754 | Intel Active Management Technology 缓冲区错误漏洞 — Intel(R) AMT, Intel(R) ISM | 7.5 | - | 2020-11-12 |
| CVE-2020-8751 | Intel TXE和Intel Converged Security and Management Engine 信息泄露漏洞 — Intel(R) CSME, Intel(R) TXE | 4.6 | - | 2020-11-12 |
| CVE-2020-12355 | Intel TXE 安全漏洞 — Intel(R) TXE | 6.8 | - | 2020-11-12 |
| CVE-2020-8705 | 多款Intel产品安全漏洞 — Intel(R) Boot Guard, Intel(R) CSME, Intel(R) TXE, Intel(R) SPS | 6.8 | - | 2020-11-12 |
| CVE-2020-8745 | Intel TXE 安全漏洞 — Intel(R) CSME, Intel(R) TXE | 6.8 | - | 2020-11-12 |
| CVE-2020-8753 | Intel AMT和Intel ISM 缓冲区错误漏洞 — Intel(R) AMT, Intel(R) ISM versions | 5.3 | - | 2020-11-12 |
| CVE-2020-8752 | Intel AMT 缓冲区错误漏洞 — Intel(R) AMT, Intel(R) ISM versions | 9.8 | - | 2020-11-12 |
| CVE-2020-12312 | Intel Quartus Prime Pro 缓冲区错误漏洞 — Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software | 6.8 | - | 2020-11-12 |
| CVE-2020-8737 | Intel Stratix FPGA firmware provided 和 Intel Quartus Prime Pro software 缓冲区错误漏洞 — Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software | 6.8 | - | 2020-11-12 |
| CVE-2020-0584 | Intel SSD DC和Intel Optane SSD 缓冲区错误漏洞 — Intel(R) SSD DC P4800X and P4801X Series, Intel(R) Optane(TM) SSD 900P and 905P Series | 6.2 | - | 2020-11-12 |
| CVE-2020-12311 | Intel 多款产品安全漏洞 — Intel(R) Client SSDs and some Intel(R) Data Center SSDs | 4.6 | - | 2020-11-12 |
| CVE-2020-12310 | Intel 多款产品安全漏洞 — Intel(R) Client SSDs and some Intel(R) Data Center SSDs | 4.6 | - | 2020-11-12 |
| CVE-2020-12309 | Intel Client SSDs 和 Intel Data Center SSDs 安全漏洞 — Intel(R) Client SSDs and some Intel(R) Data Center SSDs | 4.6 | - | 2020-11-12 |
| CVE-2020-7472 | SugarCRM 安全漏洞 — n/a | 9.8 | - | 2020-11-12 |
| CVE-2020-27481 | GoodLayers LMS for Wordpress SQL注入漏洞 — n/a | 9.8 | - | 2020-11-12 |
| CVE-2020-26070 | Cisco ASR 9000 安全漏洞 — Cisco IOS XR SoftwareCWE-404 | 8.6 | High | 2020-11-12 |
| CVE-2020-27146 | TIBCO Software TIBCO iProcess Workspace (Browser) 跨站请求伪造漏洞 — TIBCO iProcess Workspace (Browser) | 5.0 | Medium | 2020-11-10 |
| CVE-2020-26810 | SAP Commerce Cloud 安全漏洞 — SAP Commerce Cloud (Accelerator Payment Mock) | 7.5 | - | 2020-11-10 |
| CVE-2020-26823 | sap solution manager (java stack) 安全漏洞 — SAP Solution Manager (JAVA stack) | 10.0 | - | 2020-11-10 |
| CVE-2020-26821 | sap solution manager (java stack) 安全漏洞 — SAP Solution Manager (JAVA stack) | 10.0 | - | 2020-11-10 |
| CVE-2020-26824 | sap solution manager (java stack) 安全漏洞 — SAP Solution Manager (JAVA stack) | 10.0 | - | 2020-11-10 |
| CVE-2020-26822 | sap solution manager (java stack) 安全漏洞 — SAP Solution Manager (JAVA stack) | 10.0 | - | 2020-11-10 |
| CVE-2020-26820 | SAP NetWeaver AS JAVA 代码问题漏洞 — SAP NetWeaver AS JAVA | 7.2 | - | 2020-11-10 |
| CVE-2020-26811 | SAP Commerce Cloud 代码问题漏洞 — SAP Commerce Cloud (Accelerator Payment Mock) | 5.3 | - | 2020-11-10 |
| CVE-2020-24384 | A10 Networks ACOS和A10 Networks aGalaxy 安全漏洞 — n/a | 9.8 | - | 2020-11-10 |
| CVE-2020-13927 | Apache Airflow 安全漏洞 — Apache Airflow | 9.8 | - | 2020-11-10 |
| CVE-2020-28351 | Mitel ShoreTel 跨站脚本漏洞 — n/a | 6.1 | - | 2020-11-09 |
| CVE-2020-3579 | Cisco SD-WAN vManage Software 跨站脚本漏洞 — Cisco SD-WAN vManageCWE-79 | 6.1 | - | 2020-11-06 |
| CVE-2020-3574 | Cisco IP Phone 8800 Series和Cisco IP Phone 7800 Series 安全漏洞 — Cisco IP Phones with Multiplatform FirmwareCWE-371 | 7.5 | High | 2020-11-06 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19009 条 CVE 漏洞。