access:pre-auth 类型相关 20034 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2018-0281 | Cisco Firepower System Software 加密问题漏洞 — Cisco Firepower System SoftwareCWE-310 | 5.8 | - | 2018-05-02 |
| CVE-2018-0283 | Cisco Firepower System Software detection引擎加密问题漏洞 — Cisco Firepower System SoftwareCWE-310 | 5.8 | - | 2018-05-02 |
| CVE-2018-0286 | Cisco IOS XR Software netconf界面资源管理错误漏洞 — Cisco IOS XRCWE-399 | 7.5 | - | 2018-05-02 |
| CVE-2018-0287 | Cisco WebEx Business Suite meeting sites、WebEx Meetings sites和WebEx Meetings Server 输入验证漏洞 — Cisco WebEx Advanced Recording Format PlayerCWE-20 | 8.8 | - | 2018-05-02 |
| CVE-2018-0288 | Cisco WebEx Business Suite meeting sites和WebEx Meetings sites WebEx Recording Format Player 信息泄露漏洞 — Cisco WebEx Recording Format PlayerCWE-200 | 4.0 | - | 2018-05-02 |
| CVE-2018-10544 | Meross MSS110 安全漏洞 — n/a | 9.8 | - | 2018-05-02 |
| CVE-2017-17314 | 多款Huawei产品安全漏洞 — DP300, RP200, TE30, TE40, TE50, TE60 | 3.7 | - | 2018-04-30 |
| CVE-2017-2591 | Red Hat 389 Directory Server attribute uniqueness插件缓冲区错误漏洞 — 389-ds-baseCWE-122 | 7.5 | - | 2018-04-30 |
| CVE-2018-8072 | EDIMAX IC-3140W、IC-5150W和IC-6220DC 缓冲区错误漏洞 — n/a | 9.8 | - | 2018-04-26 |
| CVE-2017-1721 | IBM Security QRadar SIEM 安全漏洞 — Security QRadar SIEM | 7.7 | - | 2018-04-26 |
| CVE-2018-9101 | Mitel MiVoice Connect R1707-PREM SP1和Mitel ST conferencing组件跨站脚本漏洞 — n/a | 6.1 | - | 2018-04-25 |
| CVE-2018-9102 | Mitel MiVoice Connect R1707-PREM SP1和Mitel ST conferencing组件SQL注入漏洞 — n/a | 7.5 | - | 2018-04-25 |
| CVE-2018-9103 | Mitel MiVoice Connect R1707-PREM SP1和Mitel ST conferencing组件跨站脚本漏洞 — n/a | 6.1 | - | 2018-04-25 |
| CVE-2018-9104 | Mitel MiVoice Connect R1707-PREM SP1和Mitel ST conferencing组件跨站脚本漏洞 — n/a | 6.1 | - | 2018-04-25 |
| CVE-2018-1112 | glusterfs server 安全漏洞 — glusterfsCWE-287 | 9.1 | - | 2018-04-25 |
| CVE-2017-17251 | 多款Huawei产品H323协议安全漏洞 — AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600, AR510, DP300, IPS Module, NGFW Module, NIP6300, NIP6600, NIP6800, NetEngine16EX, RSE6500, SRG1300, SRG2300, SRG3300, SVN5600, SVN5800, SVN5800-C, SeMG9811, Secospace USG6300, Secospace USG6500, Secospace USG6600, TE30, TE40, TE50, TE60, TP3106, TP3206, USG6000V, USG9500, USG9520, USG9560, USG9580, VP9660, ViewPoint 8660, ViewPoint 9030 | 7.5 | - | 2018-04-24 |
| CVE-2017-17252 | 多款Huawei产品H323协议缓冲区错误漏洞 — AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600, AR510, DP300, IPS Module, NGFW Module, NIP6300, NIP6600, NIP6800, NetEngine16EX, RSE6500, SRG1300, SRG2300, SRG3300, SVN5600, SVN5800, SVN5800-C, SeMG9811, Secospace USG6300, Secospace USG6500, Secospace USG6600, TE30, TE40, TE50, TE60, TP3106, TP3206, USG6000V, USG9500, USG9520, USG9560, USG9580, VP9660, ViewPoint 8660, ViewPoint 9030 | 7.5 | - | 2018-04-24 |
| CVE-2017-17253 | 多款Huawei产品H323协议缓冲区错误漏洞 — AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600, AR510, DP300, IPS Module, NGFW Module, NIP6300, NIP6600, NIP6800, NetEngine16EX, RSE6500, SRG1300, SRG2300, SRG3300, SVN5600, SVN5800, SVN5800-C, SeMG9811, Secospace USG6300, Secospace USG6500, Secospace USG6600, TE30, TE40, TE50, TE60, TP3106, TP3206, USG6000V, USG9500, USG9520, USG9560, USG9580, VP9660, ViewPoint 8660, ViewPoint 9030 | 7.5 | - | 2018-04-24 |
| CVE-2017-17254 | 多款Huawei产品H323协议安全漏洞 — n/a | 7.5 | - | 2018-04-24 |
| CVE-2017-17255 | 多款Huawei产品H323协议安全漏洞 — AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600, AR510, DP300, IPS Module, NGFW Module, NIP6300, NIP6600, NIP6800, NetEngine16EX, RSE6500, SRG1300, SRG2300, SRG3300, SVN5600, SVN5800, SVN5800-C, SeMG9811, Secospace USG6300, Secospace USG6500, Secospace USG6600, TE30, TE40, TE50, TE60, TP3106, TP3206, USG6000V, USG9500, USG9520, USG9560, USG9580, VP9660, ViewPoint 8660, ViewPoint 9030 | 7.5 | - | 2018-04-24 |
| CVE-2017-17256 | 多款Huawei产品H323协议安全漏洞 — AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600, AR510, DP300, IPS Module, NGFW Module, NIP6300, NIP6600, NIP6800, NetEngine16EX, RSE6500, SRG1300, SRG2300, SRG3300, SVN5600, SVN5800, SVN5800-C, SeMG9811, Secospace USG6300, Secospace USG6500, Secospace USG6600, TE30, TE40, TE50, TE60, TP3106, TP3206, USG6000V, USG9500, USG9520, USG9560, USG9580, VP9660, ViewPoint 8660, ViewPoint 9030 | 7.5 | - | 2018-04-24 |
| CVE-2017-17257 | 多款Huawei产品H323协议安全漏洞 — AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600, AR510, DP300, IPS Module, NGFW Module, NIP6300, NIP6600, NIP6800, NetEngine16EX, RSE6500, SRG1300, SRG2300, SRG3300, SVN5600, SVN5800, SVN5800-C, SeMG9811, Secospace USG6300, Secospace USG6500, Secospace USG6600, TE30, TE40, TE50, TE60, TP3106, TP3206, USG6000V, USG9500, USG9520, USG9560, USG9580, VP9660, ViewPoint 8660, ViewPoint 9030 | 7.5 | - | 2018-04-24 |
| CVE-2017-17258 | 多款Huawei产品H323协议资源管理错误漏洞 — AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600, AR510, DP300, IPS Module, NGFW Module, NIP6300, NIP6600, NIP6800, NetEngine16EX, RSE6500, SRG1300, SRG2300, SRG3300, SVN5600, SVN5800, SVN5800-C, SeMG9811, Secospace USG6300, Secospace USG6500, Secospace USG6600, TE30, TE40, TE50, TE60, TP3106, TP3206, USG6000V, USG9500, USG9520, USG9560, USG9580, VP9660, ViewPoint 8660, ViewPoint 9030 | 7.5 | - | 2018-04-24 |
| CVE-2018-0227 | 多款Cisco产品授权问题漏洞 — Cisco Adaptive Security ApplianceCWE-295 | 7.5 | - | 2018-04-19 |
| CVE-2018-0228 | 多款Cisco产品Adaptive Security Appliance和Firepower Threat Defense Software 输入验证错误漏洞 — Cisco Adaptive Security ApplianceCWE-20 | 8.6 | - | 2018-04-19 |
| CVE-2018-0229 | 多款Cisco产品AnyConnect Secure Mobility Client、Adaptive Security ApplianceSoftware和Firepower Threat Defense Software 安全漏洞 — Cisco ASA Software, FTD Software, and AnyConnect Secure Mobility ClientCWE-384 | 8.1 | - | 2018-04-19 |
| CVE-2018-0230 | Cisco Firepower 2100 Series Security Appliances Firepower Threat Defense Software 安全漏洞 — Cisco Firepower 2100 Series Security AppliancesCWE-400 | 8.6 | - | 2018-04-19 |
| CVE-2018-0231 | 多款Cisco产品缓冲区错误漏洞 — Cisco Adaptive Security ApplianceCWE-20 | 8.6 | - | 2018-04-19 |
| CVE-2018-0233 | 多款Cisco产品Firepower System Software detection引擎安全漏洞 — Cisco Firepower Detection EngineCWE-400 | 8.6 | - | 2018-04-19 |
| CVE-2018-0237 | Cisco Advanced Malware Protection for Endpoints macOS Connector 输入验证错误漏洞 — Cisco AMP for EndpointsCWE-20 | 8.6 | - | 2018-04-19 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 20034 条 CVE 漏洞。