GeneralInformation

Hostnames	hb.hmqga6fx.cn
Domains	hmqga6fx.cn
Country	Japan
City	Tokyo
Organization	Tian Xin Information Co., Ltd.
ISP	Skycloud Computing co., Ltd.
ASN	AS7483

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443 8080 8443

465710343 | 2024-05-19T05:33:39.852610

443 / tcp

HTTP/1.1 497 Http to Https
Server: nginx/1.20.1
Date: Sun, 19 May 2024 05:33:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 881
Connection: close

<html>
<head>
	<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
	<title>497</title>
</head>
<body>
<div id='main' style='display:none'>
<i><h2>Something error:</h2></i>
<p><h3>497</h3><h3><font color='red'>send http to https port</font></h3></p>
<p>Please check or <a href='javascript:location.reload()'>try again</a> later.</p>
<div>hostname: ty8z2-cdnb52-141</div><hr>
<div id='pb'></div>
</div>
<script language='javascript'>
	var referer = escape(document.referrer);
	var url = escape(document.URL);
	var msg = 'send%20http%20to%20https%20port';
    var hostname='ty8z2-cdnb52-141';
	var event_id='';
	document.write('<scr'+'ipt language="javascript" src="https://error.skycloud.tw/system/error?code=497"></scr' + 'ipt>');
</script>
<!-- padding for ie --><!-- padding for ie --><!-- padding for ie --><!-- padding for ie -->
<!-- 65681de2 -->
</body></html>

0 | 2024-05-25T07:27:07.365220

8443 / tcp

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:cc:4c:7f:d0:62:3c:2d:e7:f0:6d:1b:6f:97:88:75:c6:ab
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Sep 17 08:20:07 2023 GMT
            Not After : Dec 16 08:20:06 2023 GMT
        Subject: CN=hb.hmqga6fx.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d8:e6:c4:9e:e5:77:9a:6a:4e:b3:06:a4:f2:c3:
                    19:5a:2b:98:b6:20:e6:6b:fd:aa:01:39:cf:0c:8e:
                    43:fe:6c:9e:92:8a:ec:98:33:34:42:94:7b:35:70:
                    a0:8f:f2:6b:a6:91:21:74:49:e1:d6:1c:af:aa:e2:
                    ab:ce:18:a0:3e:96:ea:18:f1:f0:4f:c9:13:bd:96:
                    6b:ac:b8:7f:a8:72:20:f3:80:f3:13:43:53:9c:de:
                    a6:d4:07:75:b2:92:0e:b0:25:63:48:bf:06:2e:57:
                    ff:af:d2:36:14:54:71:1d:13:b0:83:ef:5f:5a:57:
                    a5:48:42:2d:92:3c:58:c5:13:13:dd:2e:50:ca:0a:
                    f4:73:f2:c8:2c:84:5b:a1:ac:15:e6:a2:b0:80:58:
                    bb:3d:7b:55:77:b6:f9:80:a4:b6:4c:e1:a1:52:42:
                    84:3e:1a:aa:e4:17:28:c5:18:56:b5:ee:b5:21:85:
                    33:f5:d4:f6:7a:a5:6a:1d:b7:d4:ea:55:55:06:30:
                    ed:46:57:dd:b0:78:3d:6e:de:8b:60:4f:83:5b:02:
                    cc:5a:62:dd:3f:80:eb:d0:2e:3b:4e:47:8a:42:ac:
                    c4:a6:76:04:05:02:a2:89:10:d9:b1:97:8a:f1:db:
                    be:a1:09:65:f4:e3:14:4d:d5:4f:63:84:1c:c2:99:
                    a4:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BD:2B:8D:A8:4C:B7:40:1A:9B:D3:C2:11:8F:34:18:DB:42:42:64:19
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:hb.hmqga6fx.cn
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
                                16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
                    Timestamp : Sep 17 09:20:07.621 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:DE:00:6A:52:A7:6C:E0:5C:BD:24:57:
                                A6:D1:AB:57:E4:20:E9:B3:DD:A5:07:72:26:BC:B5:1B:
                                24:C8:0B:48:95:02:21:00:D1:29:59:F5:9D:33:CF:2D:
                                BB:EA:2C:74:2F:D6:59:E9:BE:35:2E:C6:1D:23:B3:78:
                                BA:E4:1B:28:D3:34:0F:8B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
                                5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
                    Timestamp : Sep 17 09:20:07.655 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CF:14:68:0D:77:DD:84:91:0C:86:71:
                                F6:A3:0D:B3:B9:1C:E8:4A:A5:AC:3A:BC:5D:FB:F5:D9:
                                2C:69:42:E9:7F:02:21:00:D1:29:AE:12:EA:C6:D5:4E:
                                8A:7B:59:95:A3:49:93:08:A6:FF:A7:5D:17:32:44:38:
                                1A:65:BE:DA:3C:3C:7F:E8
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        35:0c:04:3f:4a:01:df:3c:4c:7c:1f:32:0b:3f:2c:a7:29:91:
        ee:a5:46:bd:45:7b:c7:1c:41:9e:9c:c2:f7:12:60:e4:8b:d7:
        7f:2e:93:e5:bc:0a:cb:48:5f:d5:a9:1d:56:ca:16:e1:50:b5:
        77:2e:49:bd:05:b3:e2:b6:75:78:b6:c9:29:22:bd:8a:40:a6:
        90:08:3c:03:a8:e6:83:de:b5:47:11:df:26:58:95:3a:78:73:
        16:71:88:85:a3:78:24:56:bc:c1:e5:c9:93:69:c9:55:5a:8e:
        dc:91:f5:cf:2e:32:75:bd:0e:c3:03:20:c1:a8:9b:0e:28:f1:
        ea:4d:ec:83:9f:01:c9:7f:8e:ec:db:7d:ed:62:b8:f0:f9:16:
        7a:ed:ca:2a:fb:37:e6:c2:07:a5:d4:fd:ed:a2:24:0b:18:27:
        fd:27:41:cc:fd:13:fe:35:0d:1f:18:d0:61:da:9c:12:4f:84:
        37:b8:25:3e:50:08:f6:7e:3f:7f:84:4b:7b:02:32:fb:33:ea:
        14:65:21:27:14:14:65:d6:50:40:c9:89:08:e4:57:63:de:b9:
        fe:de:78:43:97:b9:35:82:87:5a:52:b3:15:97:6e:93:25:16:
        ac:bd:e5:1c:84:1d:40:1d:0b:ac:c5:94:d2:29:49:5b:02:dc:
        72:49:a3:21

103.24.52.151

Last Seen: 2024-05-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

465710343 | 2024-05-19T05:33:39.852610
443 / tcp

nginx1.20.1

0 | 2024-05-25T07:27:07.365220
8443 / tcp

Products

Pricing

Contact Us

103.24.52.151

Last Seen: 2024-05-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

465710343 | 2024-05-19T05:33:39.852610 443 / tcp

nginx1.20.1

0 | 2024-05-25T07:27:07.365220 8443 / tcp

Products

Pricing

Contact Us

465710343 | 2024-05-19T05:33:39.852610
443 / tcp

0 | 2024-05-25T07:27:07.365220
8443 / tcp