Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19253

19253 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2003-0366 Lyskom服务程序未授权用户远程拒绝服务攻击漏洞 — n/a 7.5 -2003-06-18
CVE-2003-0258 Cisco VPN 3000系列集中器和Cisco VPN 3002硬件客户端网络威胁 — n/a 5.3 -2003-05-08
CVE-2001-1303 Check Point Firewall-1 SecureRemote网络信息泄露漏洞 — n/a 7.5 -2003-04-02
CVE-2003-0155 Mozilla Bonsai参数页面未授权访问漏洞 — n/a 9.1 -2003-03-26
CVE-2002-0502 Citrix Nfuse泄漏应用程序列表漏洞 — n/a 5.3 -2002-06-11
CVE-2002-0563 Oracle 9iAS已认证用户访问敏感服务漏洞 — n/a 7.5 -2002-06-11
CVE-2001-1151 Trend Micro OfficeScan Corporate Edition (aka Virus Buster)访问敏感信息漏洞 — n/a 9.8 -2002-03-15
CVE-1999-1488 IBM SP2 System Data Repository (SDR) sdrd后台程序文件任意读取漏洞 — n/a 7.5 -2002-03-09
CVE-2001-0870 Alchemy Eye系统信息泄漏漏洞 — n/a 5.3 -2001-11-30
CVE-2001-0794 A-FTP Anonymous FTP Server缓冲区溢出漏洞 — n/a 7.5 -2001-10-12
CVE-2000-0945 Catalyst web配置界面任意无认证命令执行漏洞 — n/a 8.1 -2001-09-18
CVE-1999-1020 Netware NDS默认特权漏洞 — n/a 7.5 -2001-09-12
CVE-2001-0437 DCForum 'AZ'字段远程命令执行漏洞 — n/a 9.8 -2001-05-24
CVE-2000-0541 Panda Antivirus端口2001命令执行漏洞 — n/a 7.8 -2001-05-07
CVE-2001-0086 Subscribe-Me Lite管理访问漏洞 — n/a 7.5 -2001-02-02
CVE-2000-1179 Netopia ISDN Router 650-ST登陆界面连接漏洞 — n/a 7.5 -2001-01-22
CVE-2000-0191 Axis StorPoint CD访问控制漏洞 — n/a 9.1 -2000-10-13
CVE-1999-0497 HostFTP Server组件安全漏洞 — n/a 9.1 -2000-02-04
CVE-1999-0795 rpc server 安全漏洞 — n/a 9.8 -2000-02-04
CVE-1999-0734 CiscoSecure 访问控制服务器(ACS)默认配置授权问题漏洞。 — n/a 7.5 -2000-01-18
CVE-1999-0291 WinGate 安全漏洞 — n/a 6.5 -2000-01-04
CVE-1999-0383 ACC's Tigris访问终端漏洞 — n/a 9.1 -1999-09-29
CVE-1999-0471 Winroute 安全漏洞 — n/a 5.8 -1999-09-29

Vulnerabilities classified as access:pre-auth represent 19253 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.