19065 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.
The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2001-0870 | Alchemy Eye系统信息泄漏漏洞 — n/a | 5.3 | - | 2001-11-30 |
| CVE-2001-0794 | A-FTP Anonymous FTP Server缓冲区溢出漏洞 — n/a | 7.5 | - | 2001-10-12 |
| CVE-2000-0945 | Catalyst web配置界面任意无认证命令执行漏洞 — n/a | 8.1 | - | 2001-09-18 |
| CVE-1999-1020 | Netware NDS默认特权漏洞 — n/a | 7.5 | - | 2001-09-12 |
| CVE-2001-0437 | DCForum 'AZ'字段远程命令执行漏洞 — n/a | 9.8 | - | 2001-05-24 |
| CVE-2000-0541 | Panda Antivirus端口2001命令执行漏洞 — n/a | 7.8 | - | 2001-05-07 |
| CVE-2001-0086 | Subscribe-Me Lite管理访问漏洞 — n/a | 7.5 | - | 2001-02-02 |
| CVE-2000-1179 | Netopia ISDN Router 650-ST登陆界面连接漏洞 — n/a | 7.5 | - | 2001-01-22 |
| CVE-2000-0191 | Axis StorPoint CD访问控制漏洞 — n/a | 9.1 | - | 2000-10-13 |
| CVE-1999-0497 | HostFTP Server组件安全漏洞 — n/a | 9.1 | - | 2000-02-04 |
| CVE-1999-0795 | rpc server 安全漏洞 — n/a | 9.8 | - | 2000-02-04 |
| CVE-1999-0734 | CiscoSecure 访问控制服务器(ACS)默认配置授权问题漏洞。 — n/a | 7.5 | - | 2000-01-18 |
| CVE-1999-0291 | WinGate 安全漏洞 — n/a | 6.5 | - | 2000-01-04 |
| CVE-1999-0383 | ACC's Tigris访问终端漏洞 — n/a | 9.1 | - | 1999-09-29 |
| CVE-1999-0471 | Winroute 安全漏洞 — n/a | 5.8 | - | 1999-09-29 |
Vulnerabilities classified as access:pre-auth represent 19065 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.