access:pre-auth 类型相关 21230 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-10638 | WordPress plugin NS Maintenance Mode for WP 安全漏洞 — NS Maintenance Mode for WP | 5.3AI | MediumAI | 2025-10-22 |
| CVE-2025-61756 | Oracle Financial Services Applications 安全漏洞 — Oracle Financial Services Analytical Applications Infrastructure | 7.5 | High | 2025-10-21 |
| CVE-2025-62481 | Oracle E-Business Suite 安全漏洞 — Oracle Marketing | 9.8 | Critical | 2025-10-21 |
| CVE-2025-62287 | Oracle Health Sciences Applications 安全漏洞 — Oracle Life Sciences InForm | 6.1 | Medium | 2025-10-21 |
| CVE-2025-61764 | Oracle Fusion Middleware 安全漏洞 — Oracle WebLogic Server | 5.3 | Medium | 2025-10-21 |
| CVE-2025-61881 | Oracle Database Server 安全漏洞 — Oracle Database Server | 5.9 | Medium | 2025-10-21 |
| CVE-2025-61755 | Oracle Java SE 安全漏洞 — Oracle GraalVM for JDK | 3.7 | Low | 2025-10-21 |
| CVE-2025-61757 | Oracle Fusion Middleware 安全漏洞 — Identity Manager | 9.8 | Critical | 2025-10-21 |
| CVE-2025-61752 | Oracle Fusion Middleware 安全漏洞 — Oracle WebLogic Server | 7.5 | High | 2025-10-21 |
| CVE-2025-61753 | Oracle E-Business Suite 安全漏洞 — Oracle Scripting | 6.1 | Medium | 2025-10-21 |
| CVE-2025-53072 | Oracle E-Business Suite 安全漏洞 — Oracle Marketing | 9.8 | Critical | 2025-10-21 |
| CVE-2025-61748 | Oracle Java SE 安全漏洞 — Oracle Java SE | 3.7 | Low | 2025-10-21 |
| CVE-2025-53065 | Oracle PeopleSoft 安全漏洞 — PeopleSoft Enterprise PeopleTools | 5.4 | Medium | 2025-10-21 |
| CVE-2025-53066 | Oracle Java SE 安全漏洞 — Oracle Java SE | 7.5 | High | 2025-10-21 |
| CVE-2025-53060 | Oracle JD Edwards 安全漏洞 — JD Edwards EnterpriseOne Tools | 6.1 | Medium | 2025-10-21 |
| CVE-2025-53057 | Oracle Java SE 安全漏洞 — Oracle Java SE | 5.9 | Medium | 2025-10-21 |
| CVE-2025-53058 | Oracle E-Business Suite 安全漏洞 — Oracle Applications Manager | 6.1 | Medium | 2025-10-21 |
| CVE-2025-53055 | Oracle PeopleSoft 安全漏洞 — PeopleSoft Enterprise PeopleTools | 6.1 | Medium | 2025-10-21 |
| CVE-2025-53056 | Oracle JD Edwards 安全漏洞 — JD Edwards EnterpriseOne Tools | 6.1 | Medium | 2025-10-21 |
| CVE-2025-53052 | Oracle E-Business Suite 安全漏洞 — Oracle Workflow | 6.1 | Medium | 2025-10-21 |
| CVE-2025-53050 | Oracle PeopleSoft 安全漏洞 — PeopleSoft Enterprise PeopleTools | 7.5 | High | 2025-10-21 |
| CVE-2025-53047 | Oracle Database Server 安全漏洞 — Oracle Database Server | 5.8 | Medium | 2025-10-21 |
| CVE-2025-53041 | Oracle E-Business Suite 安全漏洞 — Oracle iStore | 6.1 | Medium | 2025-10-21 |
| CVE-2025-53036 | Oracle Financial Services Applications 安全漏洞 — Oracle Financial Services Analytical Applications Infrastructure | 8.6 | High | 2025-10-21 |
| CVE-2025-53037 | Oracle Financial Services Applications 安全漏洞 — Oracle Financial Services Analytical Applications Infrastructure | 9.8 | Critical | 2025-10-21 |
| CVE-2025-53034 | Oracle Financial Services Applications 安全漏洞 — Oracle Financial Services Analytical Applications Infrastructure | 5.4 | Medium | 2025-10-21 |
| CVE-2025-62250 | Liferay Portal和Liferay DXP 访问控制错误漏洞 — PortalCWE-346 | 9.8AI | CriticalAI | 2025-10-21 |
| CVE-2025-10640 | Work Examiner Professional 安全漏洞 — WorkExaminer ProfessionalCWE-602 | 9.1AI | CriticalAI | 2025-10-21 |
| CVE-2025-11949 | Digiwin EasyFlow .NET 访问控制错误漏洞 — EasyFlow .NETCWE-306 | 7.5 | High | 2025-10-21 |
| CVE-2025-10916 | WordPress plugin FormGent 安全漏洞 — FormGent | 9.1AI | CriticalAI | 2025-10-21 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21230 条 CVE 漏洞。