What is CVE-2022-23779?

CVE-2022-23779 is a vulnerability in N/a. Published 2022-03-02.

Is CVE-2022-23779 known to be exploited?

19 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-23779

Zoho ManageEngine Desktop Central before 10.1.2137.8 exposes the installed server name to anyone. The internal hostname can be discovered by reading HTTP redirect responses.

EPSS: 0.792 (99.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

Vulnmachines/Zoho_CVE-2022-23779
fbusr/CVE-2022-23779
Rishi-kaul/CVE-2022-23779
ARPSyndicate/cvemon
ARPSyndicate/kenzer-templates
NaInSec/CVE-PoC-in-GitHub
SYRTI/POC_
Vulnmachines/Zoho_
WhooAmii/POC_
k0mi-tg/CVE-POC

References

www.manageengine.com/products/desktop-central/cve-2022-23779.html (x_refsource_MISC)

Frequently asked questions

What is CVE-2022-23779?: CVE-2022-23779 is a vulnerability in N/a. Published 2022-03-02.
Is CVE-2022-23779 known to be exploited?: 19 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.