目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 20922

access:pre-auth 类型相关 20922 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2017-5574 MetalGenix GeniXCMS SQL注入漏洞 — n/a 9.8 -2017-01-23
CVE-2016-10140 ZoneMinder 安全漏洞 — n/a 7.5 -2017-01-13
CVE-2016-8398 Android Qualcomm组件安全漏洞 — Android 9.8 -2017-01-12
CVE-2016-6820 NetApp MetroCluster Tiebreaker for clustered Data ONTAP 安全漏洞 — n/a 7.5 -2017-01-11
CVE-2015-4591 EClinicalWorks Population Health Client Portal 跨站脚本漏洞 — n/a 6.1 -2017-01-10
CVE-2016-9885 Pivotal Software GemFire for PCF 安全漏洞 — GemFire for PCF 1.6.x versions prior to 1.6.5 and 1.7.x versions prior to 1.7.1 9.8 -2017-01-06
CVE-2016-10107 Western Digital MyCloud NAS 命令注入漏洞 — n/a 9.8 -2017-01-03
CVE-2016-10108 Western Digital MyCloud NAS 命令注入漏洞 — n/a 9.8 -2017-01-03
CVE-2016-9217 Cisco Intercloud Fabric for Business和Intercloud Fabric for Providers 安全漏洞 — Cisco Intercloud Fabric for Business and Cisco Intercloud Fabric for Providers 7.3(0)ZN(0.99) 8.2 -2016-12-26
CVE-2016-9223 Cisco CloudCenter Orchestrator Docker Engine 权限许可和访问控制漏洞 — Cisco CloudCenter Orchestrator 9.8 -2016-12-26
CVE-2016-9224 Cisco Jabber Guest Server 安全漏洞 — Cisco Jabber Guest Server 10.6(9) 6.5 -2016-12-26
CVE-2016-6848 Open-Xchange OX App Suite 安全漏洞 — n/a 8.4 -2016-12-15
CVE-2016-1411 Cisco AsyncOS Software 安全漏洞 — Cisco AsyncOS 5.9 -2016-12-14
CVE-2016-6464 Cisco Unified Communications Manager IM和Presence Service 信息泄露漏洞 — Cisco Unified Communications Manager 5.3 -2016-12-14
CVE-2016-6465 Cisco AsyncOS for Cisco Email Security Appliances 安全绕过漏洞 — Cisco AsyncOS--2016-12-14
CVE-2016-6467 Cisco ASR 5000 Series Aggregation Services Routers拒绝服务漏洞 — Cisco Aggregation Services Router (ASR) 5000 Series Switch 7.5 -2016-12-14
CVE-2016-6468 Cisco Emergency Responder 跨站请求伪造漏洞 — Cisco Emergency Responder 8.8 -2016-12-14
CVE-2016-6469 Cisco AsyncOS for Cisco Web Security Appliance 拒绝服务漏洞 — Cisco Web Security Appliance (WSA) 7.5 -2016-12-14
CVE-2016-6473 Cisco IOS Frame Forwarding 拒绝服务漏洞 — Cisco IOS 6.5 -2016-12-14
CVE-2016-6474 Cisco IOS和IOS XE Software 身份验证绕过漏洞 — Cisco IOS 7.7 -2016-12-14
CVE-2016-9193 Cisco Firepower Management Center和Cisco FireSIGHT System Software Malicious Software 安全漏洞 — Cisco FireSIGHT 7.5 -2016-12-14
CVE-2016-9198 Cisco Identity Services Engine Active Directory Integration Component 拒绝服务漏洞 — Cisco Identity Services Engine (ISE) 7.5 -2016-12-14
CVE-2016-9200 Cisco Prime Collaboration Assurance 跨站脚本漏洞 — Cisco Prime Collaboration Assurance 6.1 -2016-12-14
CVE-2016-9201 Cisco IOS和Cisco IOS XE Software 安全漏洞 — Cisco IOS and Cisco IOS XE 7.5 -2016-12-14
CVE-2016-9202 Cisco AsyncOS Software for Email Security Appliances 跨站脚本漏洞 — Cisco Email Security Appliance (ESA) 6.1 -2016-12-14
CVE-2016-9203 Cisco ASR 5000 Series 安全漏洞 — Cisco ASR 5000 5.9 -2016-12-14
CVE-2016-9204 Cisco Intercloud Fabric Director Static Credentials 安全漏洞 — Cisco Intercloud Fabric (ICF) Director 6.5 -2016-12-14
CVE-2016-9205 Cisco IOS XR Software 拒绝服务漏洞 — Cisco IOS XR 7.5 -2016-12-14
CVE-2016-9206 Cisco Unified Communications Manager 跨站脚本漏洞 — Cisco Unified Communications Manager (CUCM) 6.1 -2016-12-14
CVE-2016-9207 多款Cisco产品安全漏洞 — Cisco Expressway 6.5 -2016-12-14

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 20922 条 CVE 漏洞。