目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1325

100%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 20697

access:pre-auth 类型相关 20697 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2018-18845 Advanced Comment System 跨站脚本漏洞 — n/a 6.1 -2019-03-17
CVE-2018-19524 Skyworth GPON HomeGateways和Optical Network terminals 输入验证错误漏洞 — n/a 9.8 -2019-03-17
CVE-2018-19515 Webgalamb 安全漏洞 — n/a 9.8 -2019-03-17
CVE-2019-6716 LongBox Access Manager 信息泄露漏洞 — n/a 9.4 -2019-03-17
CVE-2019-6714 BlogEngine.NET 路径遍历漏洞 — n/a 9.8 -2019-03-17
CVE-2018-19391 Cobham Satcom Sailor 250和Cobham Satcom Sailor 500 跨站脚本漏洞 — n/a 6.1 -2019-03-15
CVE-2018-19392 Cobham Satcom Sailor 250和Cobham Satcom Sailor 500 信任管理问题漏洞 — n/a 9.8 -2019-03-15
CVE-2019-3833 Openwsman 资源管理错误漏洞 — openwsmanCWE-835 7.5 -2019-03-14
CVE-2018-12185 Intel Converged Security and Management Engine 输入验证漏洞 — Intel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology 6.8 -2019-03-14
CVE-2018-12187 Intel Active Management Technology 输入验证错误漏洞 — Intel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology 7.5 -2019-03-14
CVE-2018-12188 Intel Converged Security and Management Engine和Intel TXE 输入验证漏洞 — Intel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology 4.6 -2019-03-14
CVE-2018-12191 多款Intel产品缓冲区错误漏洞 — Intel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology 7.6 -2019-03-14
CVE-2018-12192 Intel Converged Security and Management Engine和Intel Server Platform Services Kernel subsystem 授权问题漏洞 — Intel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology 7.6 -2019-03-14
CVE-2018-12205 7th Generation Intel Core Processor和8th Generation Intel Core Processor 信任管理问题漏洞 — Intel Platform Sample / Silicon Reference firmware 6.8 -2019-03-14
CVE-2018-12208 多款Intel产品缓冲区错误漏洞 — Intel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology 7.6 -2019-03-14
CVE-2019-9787 WordPress 跨站请求伪造漏洞 — n/a 8.8 -2019-03-14
CVE-2019-9761 灵宝简好网络科技 PHPSHE 安全漏洞 — n/a 7.5 -2019-03-14
CVE-2019-3816 Openwsman 路径遍历漏洞 — openwsmanCWE-22 7.5 -2019-03-14
CVE-2019-6600 F5 BIG-IP 跨站脚本漏洞 — BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) 6.1 -2019-03-13
CVE-2019-1723 Cisco Common Services Platform Collector 权限许可和访问控制漏洞 — Cisco Common Services Platform Collector SoftwareCWE-264 9.8 -2019-03-13
CVE-2018-0389 Cisco Small Business SPA514G IP Phones 资源管理错误漏洞 — Cisco Small Business SPA500 Series IP PhonesCWE-399 7.5 -2019-03-13
CVE-2019-1616 Cisco NX-OS Software 缓冲区错误漏洞 — MDS 9000 Series Multilayer SwitchesCWE-20 7.5 -2019-03-11
CVE-2019-1617 Cisco NX-OS Software 安全漏洞 — Nexus 9000 Series Switches in Standalone NX-OS ModeCWE-913 7.4 -2019-03-11
CVE-2019-1690 Cisco Application Policy Infrastructure Controller 访问控制错误漏洞 — Cisco Application Policy Infrastructure Controller (APIC)CWE-284 8.3 -2019-03-11
CVE-2019-1702 Cisco Enterprise Chat and Email 跨站脚本漏洞 — Cisco Enterprise Chat and EmailCWE-79 6.1 -2019-03-11
CVE-2018-18815 TIBCO Software Jaspersoft JasperReports Server 设计错误漏洞 — TIBCO JasperReports Server 9.8 -2019-03-07
CVE-2019-1598 Cisco NX-OS Software和Cisco FXOS Software 输入验证错误漏洞 — Firepower 4100 Series Next-Generation FirewallsCWE-20 7.5 -2019-03-07
CVE-2019-1599 Cisco NX-OS Software 资源管理错误漏洞 — Nexus 1000V Switch for Microsoft Hyper-VCWE-399 8.6 -2019-03-07
CVE-2019-1597 Cisco NX-OS Software和Cisco FXOS Software 输入验证错误漏洞 — Firepower 4100 Series Next-Generation FirewallsCWE-20 7.5 -2019-03-07
CVE-2019-3712 Dell WES Wyse Device Agent和Dell Wyse ThinLinux HAgent 缓冲区错误漏洞 — Wyse Device Agent 8.8 -2019-03-07

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 20697 条 CVE 漏洞。