Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

access:pre-auth — CVE vulnerabilities tagged 20697

20697 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2017-14083 Trend Micro OfficeScan 安全漏洞 — Trend Micro OfficeScan 7.5 -2017-10-05
CVE-2017-14085 Trend Micro OfficeScan 信息泄露漏洞 — Trend Micro OfficeScan 5.3 -2017-10-05
CVE-2017-14086 Trend Micro OfficeScan 资源管理错误漏洞 — Trend Micro OfficeScan 7.5 -2017-10-05
CVE-2017-14089 Trend Micro OfficeScan 缓冲区错误漏洞 — Trend Micro OfficeScan 9.8 -2017-10-05
CVE-2017-12244 多款Cisco产品Firepower System Software 安全漏洞 — Cisco Firepower Detection EngineCWE-20 7.5 -2017-10-05
CVE-2017-12245 多款Cisco产品Firepower Threat Defense Software 安全漏洞 — Cisco Firepower Detection EngineCWE-399 8.6 -2017-10-05
CVE-2017-12246 多款Cisco产品Adaptive Security Appliances Software 资源管理错误漏洞 — Cisco Adaptive Security Appliance SoftwareCWE-399 7.5 -2017-10-05
CVE-2017-12256 Cisco Wide Area Application Services Appliances 安全漏洞 — Cisco Wide Area Application ServicesCWE-399 7.5 -2017-10-05
CVE-2017-12257 Cisco WebEx Meetings Server 跨站脚本漏洞 — Cisco WebEx Meetings ServerCWE-79 6.1 -2017-10-05
CVE-2017-12258 Cisco Unified Communications Manager 安全漏洞 — Cisco Unified Communications ManagerCWE-59 6.1 -2017-10-05
CVE-2017-12263 Cisco License Manager software 路径遍历漏洞 — Cisco License ManagerCWE-22 7.5 -2017-10-05
CVE-2017-12264 Cisco Meeting Server Web Admin Interface 安全漏洞 — Cisco Meeting ServerCWE-20 5.3 -2017-10-05
CVE-2017-12265 Cisco Adaptive Security Appliances Software 安全漏洞 — Cisco Adaptive Security Appliance SoftwareCWE-79 6.1 -2017-10-05
CVE-2017-12267 Cisco Wide Area Application Services 安全漏洞 — Cisco Wide Area Application ServicesCWE-119 5.3 -2017-10-05
CVE-2017-12270 Cisco Network Convergence System 5500 Series Routers IOS XR Software 安全漏洞 — Cisco IOS XRCWE-119 7.5 -2017-10-05
CVE-2017-14772 Skybox Manager Client Application 信息泄露漏洞 — n/a 3.3 -2017-10-02
CVE-2017-14759 OpenText Document Sciences xPression 安全漏洞 — n/a 9.8 -2017-10-02
CVE-2017-9797 Apache Geode cluster 安全漏洞 — Apache Geode 6.5 -2017-10-02
CVE-2017-14957 BlogoText 跨站脚本漏洞 — n/a 6.1 -2017-10-01
CVE-2017-14920 Stylite EGroupware 跨站脚本漏洞 — n/a 6.1 -2017-09-29
CVE-2017-14925 Tiki 跨站请求伪造漏洞 — n/a 8.8 -2017-09-29
CVE-2017-12222 Cisco Catalyst 3650和3850交换机IOS XE Software 资源管理错误漏洞 — Cisco IOS XECWE-399 6.5 -2017-09-28
CVE-2017-12228 Cisco IOS和IOS XE Network Plug and Play应用程序信息泄露漏洞 — Cisco IOS and IOS XECWE-20 7.4 -2017-09-28
CVE-2017-12229 Cisco IOS XE 授权问题漏洞 — Cisco IOS XECWE-287 9.8 -2017-09-28
CVE-2017-12231 Cisco IOS 资源管理错误漏洞 — Cisco IOSCWE-399 7.5 -2017-09-28
CVE-2017-12232 Cisco Integrated Services Routers Generation 2 (ISR G2) Routers IOS 资源管理错误漏洞 — Cisco IOSCWE-399 7.4 -2017-09-28
CVE-2017-12233 Cisco IOS 输入验证漏洞 — Cisco IOSCWE-20 7.5 -2017-09-28
CVE-2017-12234 Cisco IOS 输入验证漏洞 — Cisco IOSCWE-20 7.5 -2017-09-28
CVE-2017-12235 Cisco IOS 输入验证漏洞 — Cisco IOSCWE-20 7.5 -2017-09-28
CVE-2017-12236 Cisco IOS XE 授权问题漏洞 — Cisco IOS XECWE-287 9.8 -2017-09-28

Vulnerabilities classified as access:pre-auth represent 20697 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.