19411 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.
The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2017-10019 | Oracle PeopleSoft Enterprise PeopleTools 安全漏洞 — PeopleSoft Enterprise PT PeopleTools | 6.1 | - | 2017-08-08 |
| CVE-2017-10021 | Oracle PeopleSoft Enterprise PeopleTools 安全漏洞 — PeopleSoft Enterprise PT PeopleTools | 6.1 | - | 2017-08-08 |
| CVE-2017-10024 | Oracle BI Publisher 安全漏洞 — BI Publisher (formerly XML Publisher) | 8.2 | - | 2017-08-08 |
| CVE-2017-10025 | Oracle BI Publisher 安全漏洞 — BI Publisher (formerly XML Publisher) | 8.2 | - | 2017-08-08 |
| CVE-2017-10028 | Oracle BI Publisher 安全漏洞 — BI Publisher (formerly XML Publisher) | 8.2 | - | 2017-08-08 |
| CVE-2017-10029 | Oracle BI Publisher 安全漏洞 — BI Publisher (formerly XML Publisher) | 8.2 | - | 2017-08-08 |
| CVE-2017-10030 | Oracle BI Publisher 安全漏洞 — BI Publisher (formerly XML Publisher) | 8.2 | - | 2017-08-08 |
| CVE-2017-10031 | Oracle Communications Convergence 安全漏洞 — Communications Convergence | 7.2 | - | 2017-08-08 |
| CVE-2017-10035 | Oracle BI Publisher 安全漏洞 — BI Publisher (formerly XML Publisher) | 8.2 | - | 2017-08-08 |
| CVE-2017-10036 | Oracle Solaris 安全漏洞 — Solaris Operating System | 7.5 | - | 2017-08-08 |
| CVE-2017-10040 | Oracle WebCenter Content 安全漏洞 — WebCenter Content | 8.2 | - | 2017-08-08 |
| CVE-2017-10042 | Oracle Solaris 安全漏洞 — Solaris Operating System | 7.5 | - | 2017-08-08 |
| CVE-2017-10043 | Oracle BI Publisher 安全漏洞 — BI Publisher (formerly XML Publisher) | 8.2 | - | 2017-08-08 |
| CVE-2017-10045 | Oracle PeopleSoft Enterprise PeopleTools 安全漏洞 — PeopleSoft Enterprise PT PeopleTools | 5.3 | - | 2017-08-08 |
| CVE-2017-10047 | Oracle MICROS BellaVita 安全漏洞 — MICROS BellaVita | 6.5 | - | 2017-08-08 |
| CVE-2017-10048 | Oracle Enterprise Repository 安全漏洞 — Enterprise Repository | 6.1 | - | 2017-08-08 |
| CVE-2017-10049 | Oracle Siebel Core CRM 安全漏洞 — Siebel Core - Server Framework | 6.1 | - | 2017-08-08 |
| CVE-2017-10052 | Oracle Agile PLM 安全漏洞 — Agile PLM Framework | 6.1 | - | 2017-08-08 |
| CVE-2017-10053 | 多款 Oracle 产品安全漏洞 — Java | 5.3 | - | 2017-08-08 |
| CVE-2017-10061 | Oracle PeopleSoft Enterprise PeopleTools 安全漏洞 — PeopleSoft Enterprise PT PeopleTools | 8.3 | - | 2017-08-08 |
| CVE-2017-10063 | Oracle WebLogic Server 安全漏洞 — WebLogic Server | 4.8 | - | 2017-08-08 |
| CVE-2017-10064 | Oracle Hospitality WebSuite8 Cloud Service 安全漏洞 — Hospitality WebSuite8 Cloud Service | 6.1 | - | 2017-08-08 |
| CVE-2017-10067 | Oracle Java SE 安全漏洞 — Java | 7.5 | - | 2017-08-08 |
| CVE-2017-10070 | Oracle PeopleSoft Enterprise PRTL Interaction Hub 安全漏洞 — PeopleSoft Enterprise PRTL Interaction Hub | 6.1 | - | 2017-08-08 |
| CVE-2017-10071 | Oracle FLEXCUBE Universal Banking 安全漏洞 — FLEXCUBE Universal Banking | 5.4 | - | 2017-08-08 |
| CVE-2017-10074 | Oracle Java SE和Java SE Embedded 安全漏洞 — Java | 8.3 | - | 2017-08-08 |
| CVE-2017-10075 | Oracle WebCenter Content 安全漏洞 — WebCenter Content | 8.2 | - | 2017-08-08 |
| CVE-2017-10079 | Oracle Hospitality Suites Management 安全漏洞 — Hospitality Suites Management | 6.1 | - | 2017-08-08 |
| CVE-2017-10080 | Oracle Agile PLM 安全漏洞 — Agile PLM Framework | 6.1 | - | 2017-08-08 |
| CVE-2017-10081 | Oracle Java SE和Java SE Embedded 安全漏洞 — Java | 4.3 | - | 2017-08-08 |
Vulnerabilities classified as access:pre-auth represent 19411 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.