Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19850

19850 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2017-6672 Cisco ASR 5000 Series Aggregation Services路由器安全漏洞 — Cisco ASR 5000 Series Aggregation Services Routers 5.3 -2017-07-25
CVE-2017-6750 Cisco Web Security Appliance AsyncOS 安全漏洞 — Cisco Web Security Appliance 9.8 -2017-07-25
CVE-2017-6751 Cisco Web Security Appliance 安全漏洞 — Cisco Web Security Appliance 7.5 -2017-07-25
CVE-2017-6753 Google Chrome和Mozilla firefox for Windows Cisco WebEx Browser Extension 安全漏洞 — Cisco WebEx Browser ExtensionCWE-119 8.8 -2017-07-25
CVE-2017-6755 Cisco Prime Collaboration Provisioning Tool 跨站脚本漏洞 — Cisco Prime Collaboration Provisioning Tool 6.1 -2017-07-25
CVE-2017-11495 PHICOMM K2(PSG1218)输入验证漏洞 — n/a 9.8 -2017-07-20
CVE-2017-11456 Geneko GWR路由器路径遍历漏洞 — n/a 7.5 -2017-07-19
CVE-2017-10604 Junos OS: SRX Series: Cluster configuration sync failures occur if the root user account is locked out — Junos OS 5.3 -2017-07-14
CVE-2017-1000028 Oracle GlassFish Server Open Source Edition 路径遍历漏洞 — n/a 7.5 -2017-07-13
CVE-2017-1000030 Oracle GlassFish Server Open Source Edition 授权问题漏洞 — n/a 9.8 -2017-07-13
CVE-2017-1000060 EyesOfNetwork SQL注入漏洞 — n/a 9.8 -2017-07-13
CVE-2017-1000080 Linux ONOS 权限许可和访问控制问题漏洞 — n/a 9.1 -2017-07-13
CVE-2017-1000081 Linux ONOS 代码问题漏洞 — n/a 9.8 -2017-07-13
CVE-2017-4052 McAfee Advanced Threat Defense 安全漏洞 — Advanced Threat Defense (ATD) 9.8 -2017-07-12
CVE-2017-4053 McAfee Advanced Threat Defense 命令注入漏洞 — Advanced Threat Defense (ATD) 9.8 -2017-07-12
CVE-2017-4055 McAfee Advanced Threat Defense 安全漏洞 — Advanced Threat Defense (ATD) 9.1 -2017-07-12
CVE-2016-8638 SAML 授权问题漏洞 — n/a 9.1 -2017-07-12
CVE-2017-6727 Cisco Wide Area Application Services 安全漏洞 — Cisco Wide Area Application Services 5.9 -2017-07-10
CVE-2017-6729 Cisco ASR 5000 Series Routers和Cisco Virtualized Packet Core Software 安全漏洞 — Cisco StarOS 7.5 -2017-07-10
CVE-2017-6730 Cisco Wide Area Application Services 信息泄露漏洞 — Cisco Wide Area Application Services 5.3 -2017-07-10
CVE-2017-6731 Cisco IOS XR Software 安全漏洞 — Cisco IOS XR 5.9 -2017-07-10
CVE-2017-6733 Cisco Identity Services Engine 跨站脚本漏洞 — Cisco Identity Services Engine 6.1 -2017-07-10
CVE-2017-6868 Siemens SIMATIC CP 44x-1 RNA 授权问题漏洞 — Siemens SIMATIC CP 44x-1 Redundant Network Access ModulesCWE-287 8.1 -2017-07-07
CVE-2017-10974 Yaws 安全漏洞 — n/a 7.5 -2017-07-07
CVE-2017-6708 Cisco Ultra Services Framework 信息泄露漏洞 — Cisco Ultra Services FrameworkCWE-200 9.8 -2017-07-06
CVE-2017-6709 Cisco Ultra Services Framework AutoVNF工具信息泄露漏洞 — Cisco Ultra Services FrameworkCWE-200 9.8 -2017-07-06
CVE-2017-6711 Cisco Ultra Services Framework 授权问题漏洞 — Cisco Ultra Services FrameworkCWE-287 8.2 -2017-07-06
CVE-2017-6713 Cisco Elastic Services Controller 安全漏洞 — Cisco Elastic Services ControllerCWE-264 9.8 -2017-07-06
CVE-2017-6714 Cisco Ultra Services Framework Staging Server AutoIT service 操作系统命令注入漏洞 — Cisco Ultra Services FrameworkCWE-78 9.8 -2017-07-06
CVE-2017-3865 Cisco ASR 5500 Series routers StarOS IPsec组件资源管理错误漏洞 — Cisco StarOS for ASR 5000 Series Routers 5.8 -2017-07-04

Vulnerabilities classified as access:pre-auth represent 19850 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.