Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19065

19065 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2003-1264 Longshine Wireless Access Point设备信息泄露漏洞 — n/a 9.8 -2005-11-16
CVE-2005-2424 Siemens Santis 50无线路由器 拒绝服务漏洞 — n/a 7.5 -2005-08-03
CVE-2000-1228 Phorum admin.php3无需验证修改管理员口令漏洞 — n/a 9.1 -2005-07-14
CVE-2004-2166 Canon ImageRUNNER 5000打印机邮件打印漏洞 — n/a 7.5 -2005-07-10
CVE-2005-2168 PlagueNewsSystem delete.php 绕过认证漏洞 — n/a 7.5 -2005-07-06
CVE-2005-0771 Veritas Backup Exec Server远程访问漏洞 — n/a 7.5 -2005-06-29
CVE-2002-1810 D-Link DWL-900AP+ TFTP服务器任意文件获取漏洞 — n/a 7.5 -2005-06-28
CVE-2001-1484 Alcatel ADSL调制解调器 — n/a 6.5 -2005-06-21
CVE-2005-1709 Blue Coat Reporter License HTML注入漏洞 — n/a 7.5 -2005-05-24
CVE-2004-1088 Apple Mac OS X多个远程和本地安全漏洞 — n/a 3.7 -2005-04-14
CVE-2005-0819 Novell Netware Xsession未授权服务器控制台访问漏洞 — n/a 7.2 -2005-03-20
CVE-2005-0746 Novell iChain Mini FTP Server非授权远程路径泄漏漏洞 — n/a 5.3 -2005-03-13
CVE-2005-0703 Xerox MicroServer Web Server 认证绕过漏洞 — n/a 9.8 -2005-03-09
CVE-2004-1461 Cisco Secure ACS NOVELL目录服务验证绕过漏洞 — n/a 7.5 -2005-02-13
CVE-2004-0917 Vignette ApplicationPortal 远程信息泄露漏洞 — n/a 9.1 -2004-11-19
CVE-2002-0672 Pingtel xpressa SIP-based voice-over-IP电话设置无认证恢复漏洞 — n/a 4.6 -2004-09-01
CVE-2002-1099 Cisco VPN 3000 Series Concentrator Web界面信息泄露漏洞 — n/a 5.3 -2004-09-01
CVE-2002-1112 mantis受限项目漏洞列表查看漏洞 — n/a 5.3 -2004-09-01
CVE-2002-1367 CUPS远程打印机名增加漏洞 — n/a 9.1 -2004-09-01
CVE-2003-0974 Applied Watch Command Center验证绕过漏洞 — n/a 7.5 -2003-12-02
CVE-2003-0633 Oracle E-Business Suite Oracle Applications AOL/J Setup Test Suite信息泄漏漏洞 — n/a 7.5 -2003-08-02
CVE-2003-0639 Novell iChain未知漏洞 — n/a 7.5 -2003-08-02
CVE-2003-0366 Lyskom服务程序未授权用户远程拒绝服务攻击漏洞 — n/a 7.5 -2003-06-18
CVE-2003-0258 Cisco VPN 3000系列集中器和Cisco VPN 3002硬件客户端网络威胁 — n/a 5.3 -2003-05-08
CVE-2001-1303 Check Point Firewall-1 SecureRemote网络信息泄露漏洞 — n/a 7.5 -2003-04-02
CVE-2003-0155 Mozilla Bonsai参数页面未授权访问漏洞 — n/a 9.1 -2003-03-26
CVE-2002-0502 Citrix Nfuse泄漏应用程序列表漏洞 — n/a 5.3 -2002-06-11
CVE-2002-0563 Oracle 9iAS已认证用户访问敏感服务漏洞 — n/a 7.5 -2002-06-11
CVE-2001-1151 Trend Micro OfficeScan Corporate Edition (aka Virus Buster)访问敏感信息漏洞 — n/a 9.8 -2002-03-15
CVE-1999-1488 IBM SP2 System Data Repository (SDR) sdrd后台程序文件任意读取漏洞 — n/a 7.5 -2002-03-09

Vulnerabilities classified as access:pre-auth represent 19065 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.