| Hostnames |
ip103-54-170-150.cloudhost.web.id psurvey.pindadmedika.com |
| Domains | cloudhost.web.id pindadmedika.com |
| Country | Indonesia |
| City | Ciampea |
| Organization | PT Cloud Hosting Indonesia |
| ISP | PT Cloud Hosting Indonesia |
| ASN | AS136052 |
| Operating System | Ubuntu |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
| CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
-1986906635 | 2024-05-26T03:25:51.10397922 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBA32hXtXF6yMhsw/YVQ139x8 hviTMxI/4Qsb3k643n0nmTjCmJi0F81Z7hX6HEb15Vgiys11jlP6CdHgCeLzQdY= Fingerprint: 82:84:a4:3f:71:50:2a:06:7a:c5:da:04:c1:07:04:70 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
589765266 | 2024-06-01T10:52:14.84344880 / tcp
HTTP/1.1 301 Moved Permanently Server: nginx/1.18.0 (Ubuntu) Date: Sat, 01 Jun 2024 10:52:14 GMT Content-Type: text/html Content-Length: 178 Connection: keep-alive Location: https://103.54.170.150/
-933130642 | 2024-06-01T10:52:19.602597443 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 01 Jun 2024 10:52:18 GMT Content-Type: text/html; charset=utf-8 Content-Length: 6093 Connection: keep-alive Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding x-nextjs-cache: HIT X-Powered-By: Next.js Cache-Control: s-maxage=31536000, stale-while-revalidate ETag: "wmcpz4fmzn4p9"
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:7a:49:53:5a:cc:a3:02:26:1d:6e:ab:c5:17:5c:53:78:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: May 26 22:50:53 2024 GMT
Not After : Aug 24 22:50:52 2024 GMT
Subject: CN=psurvey.pindadmedika.com
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:42:ac:db:96:b0:53:3d:79:09:e9:84:2b:c5:95:
b9:c2:f0:33:a9:7f:7a:a9:08:79:f3:16:87:59:23:
ba:a2:b3:b2:25:e6:4e:a5:1e:9a:d5:c8:76:44:0f:
77:cf:30:a4:0b:cb:5b:3c:9b:48:51:72:9e:a1:18:
f3:8e:b1:54:ce
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
C0:C4:B0:FD:B9:F2:8B:BA:95:8D:26:E5:EF:90:33:A7:6C:E0:79:A1
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:psurvey.pindadmedika.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : May 26 23:50:53.518 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:A0:1E:2E:AA:C8:60:D3:1F:F7:84:2F:
27:2E:55:B3:D4:18:89:E9:B0:DC:9C:4D:5D:C5:FB:49:
4D:37:66:86:B9:02:20:09:48:E9:40:B5:B9:B2:5E:C0:
E1:49:F6:32:4D:D4:F5:8C:55:4C:4E:9F:4C:CD:55:6D:
AB:A7:39:6F:77:16:D8
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : May 26 23:50:53.715 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:24:E4:6D:6A:ED:65:77:FE:55:37:89:ED:
6E:50:8C:2D:20:0C:4C:48:1C:F5:64:54:E1:C5:61:50:
C5:95:11:01:02:20:14:51:78:D3:32:16:B7:60:B3:99:
EE:05:76:2C:12:87:7D:5D:62:24:36:C6:4A:40:86:72:
D9:51:B1:56:4C:73
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
35:68:98:74:76:b7:5b:9b:ce:2a:f3:e6:77:ad:2a:b7:c5:d7:
b7:b5:b0:2c:60:85:89:a4:15:8a:49:7e:f9:a6:45:0b:61:e8:
d1:3b:89:ce:aa:c3:77:da:56:90:b4:d2:8b:37:b6:76:02:59:
78:35:c3:ce:86:66:b9:b7:53:90:40:d1:47:e2:e0:ad:38:0d:
b9:42:b1:d0:4e:bf:b4:31:61:ce:5d:ad:c7:46:c7:09:e8:9b:
01:f5:ce:25:7a:92:dd:d9:0f:82:b5:97:09:2d:17:5f:c4:37:
6e:63:b5:63:9a:83:f9:35:1c:87:be:d8:30:35:72:0e:d9:34:
08:79:4f:fe:44:93:40:3c:35:e6:35:fc:6b:9b:89:c8:f6:80:
a4:37:2a:30:47:4b:74:cc:d7:c6:d9:20:ba:5e:6c:a4:21:38:
d2:7f:10:f0:ae:91:d9:a1:e9:2d:e8:c5:e0:1c:f4:72:5a:ff:
b8:f8:6b:8c:c5:8d:44:06:28:69:5f:f7:70:1e:5c:5c:51:b1:
74:68:63:60:52:e9:70:62:05:71:b4:41:5e:e0:64:e4:bd:9f:
3c:1c:40:2f:1c:73:54:43:ec:ba:1c:46:40:3c:f8:82:6f:87:
47:a6:93:d0:36:a0:f8:a1:ff:b6:2b:42:c1:c7:8e:7a:3e:d1:
d6:83:f7:f6
225015788 | 2024-05-20T21:31:12.6423703306 / tcp
MySQL: Protocol Version: 10 Version: 8.0.36-0ubuntu0.22.04.1 Capabilities: 65535 Server Language: 255 Server Status: 2 Extended Server Capabilities: 57343 Authentication Plugin: caching_sha2_password
686075851 | 2024-05-07T01:04:10.6358588081 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Tue, 07 May 2024 01:04:10 GMT Content-Type: text/html; charset=utf-8 Content-Length: 6085 Connection: keep-alive Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding x-nextjs-cache: HIT X-Powered-By: Next.js Cache-Control: s-maxage=31536000, stale-while-revalidate ETag: "74rjt43ukh4p1"
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:b8:66:98:5d:b5:6b:38:fd:0c:be:72:e2:51:04:9c:93:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Mar 27 16:51:39 2024 GMT
Not After : Jun 25 16:51:38 2024 GMT
Subject: CN=psurvey.pindadmedika.com
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:13:6f:80:5d:a8:d2:a0:8f:e8:91:43:4e:32:ac:
fc:47:d1:62:a7:ca:64:97:22:5a:5d:ce:d8:20:6f:
9b:bf:cf:28:00:8e:12:65:af:04:3f:f0:5d:09:c2:
e8:9b:83:d5:35:53:2a:32:4e:3b:41:96:9a:ee:3a:
d2:e8:0c:ff:07
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
40:8C:8F:60:0B:AA:9E:29:5A:C6:39:D3:88:36:1F:61:81:F0:C8:43
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:psurvey.pindadmedika.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Mar 27 17:51:40.151 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:DF:69:5D:1B:F4:70:11:36:08:39:65:
EA:27:6C:E0:F6:14:EE:8C:06:09:3E:06:D9:E8:5E:E1:
86:FB:54:27:B8:02:20:39:4C:79:34:4C:0C:D3:B3:8F:
6D:1F:6B:93:2D:94:4D:38:E3:DE:C0:88:2D:AA:32:00:
BF:11:E4:8D:B8:D6:18
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Mar 27 17:51:40.140 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:6B:FA:B5:D4:17:50:65:55:DC:16:A8:8C:
B9:BD:A5:19:C9:29:65:FE:E3:5A:AC:E7:89:77:45:8D:
73:A8:7F:FB:02:20:1C:A1:E6:54:0F:48:06:C0:C0:A4:
3C:AC:97:83:2A:FD:85:8B:7E:46:8D:F6:37:57:40:A3:
2C:C8:3D:0A:0A:52
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
51:29:cf:c3:ec:de:0d:89:5c:4d:b1:02:3c:b5:ce:7e:37:71:
52:fe:7c:e2:58:80:2d:1d:c5:ca:75:6f:37:db:f6:b1:d3:b3:
c9:e3:6c:d5:ff:e1:1f:dc:5a:f3:6e:5a:cd:8f:1c:26:79:26:
17:2b:d1:77:d2:e9:16:09:b6:0f:cc:55:58:c5:59:f6:e6:e9:
55:9d:79:02:67:64:b9:b2:dd:9d:25:22:08:4d:69:98:04:4f:
c6:30:d0:a3:7f:4f:48:bf:8b:7f:02:96:32:88:e6:51:3a:26:
21:b8:5b:bc:93:4c:b9:75:e2:db:c7:80:60:d7:81:85:3f:a5:
3b:c9:9c:14:f9:cf:b9:1c:ea:7f:5b:03:10:f7:76:a3:4c:a2:
ce:f7:fa:63:74:c2:46:92:3a:3a:ab:bb:6f:2b:8c:fc:47:57:
2b:bc:a5:77:8f:ef:57:27:bf:45:8a:7c:b6:6a:ef:f0:45:a8:
56:ce:e7:56:3a:14:60:80:fb:72:1a:a6:a2:18:36:ea:aa:30:
91:65:e0:80:72:47:3f:b1:de:05:83:8a:49:70:b9:ce:6d:01:
f0:1c:12:84:2a:2d:9f:dd:2a:c7:23:52:9b:76:a6:3a:8e:13:
d9:d1:aa:01:8d:f6:28:af:a7:e9:a8:eb:66:56:0d:d7:0d:93:
aa:05:3d:78
2013617963 | 2024-05-22T20:37:12.4323668082 / tcp
HTTP/1.1 400 Bad Request Server: nginx/1.18.0 (Ubuntu) Date: Wed, 22 May 2024 20:37:12 GMT Content-Type: text/html Content-Length: 666 Connection: close
547615943 | 2024-05-05T07:22:55.9135828083 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sun, 05 May 2024 07:22:55 GMT Content-Type: text/html; charset=utf-8 Content-Length: 6085 Connection: keep-alive Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding x-nextjs-cache: HIT X-Powered-By: Next.js Cache-Control: s-maxage=31536000, stale-while-revalidate ETag: "ksyv7ye65r4p1"
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:b8:66:98:5d:b5:6b:38:fd:0c:be:72:e2:51:04:9c:93:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Mar 27 16:51:39 2024 GMT
Not After : Jun 25 16:51:38 2024 GMT
Subject: CN=psurvey.pindadmedika.com
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:13:6f:80:5d:a8:d2:a0:8f:e8:91:43:4e:32:ac:
fc:47:d1:62:a7:ca:64:97:22:5a:5d:ce:d8:20:6f:
9b:bf:cf:28:00:8e:12:65:af:04:3f:f0:5d:09:c2:
e8:9b:83:d5:35:53:2a:32:4e:3b:41:96:9a:ee:3a:
d2:e8:0c:ff:07
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
40:8C:8F:60:0B:AA:9E:29:5A:C6:39:D3:88:36:1F:61:81:F0:C8:43
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:psurvey.pindadmedika.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Mar 27 17:51:40.151 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:DF:69:5D:1B:F4:70:11:36:08:39:65:
EA:27:6C:E0:F6:14:EE:8C:06:09:3E:06:D9:E8:5E:E1:
86:FB:54:27:B8:02:20:39:4C:79:34:4C:0C:D3:B3:8F:
6D:1F:6B:93:2D:94:4D:38:E3:DE:C0:88:2D:AA:32:00:
BF:11:E4:8D:B8:D6:18
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Mar 27 17:51:40.140 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:6B:FA:B5:D4:17:50:65:55:DC:16:A8:8C:
B9:BD:A5:19:C9:29:65:FE:E3:5A:AC:E7:89:77:45:8D:
73:A8:7F:FB:02:20:1C:A1:E6:54:0F:48:06:C0:C0:A4:
3C:AC:97:83:2A:FD:85:8B:7E:46:8D:F6:37:57:40:A3:
2C:C8:3D:0A:0A:52
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
51:29:cf:c3:ec:de:0d:89:5c:4d:b1:02:3c:b5:ce:7e:37:71:
52:fe:7c:e2:58:80:2d:1d:c5:ca:75:6f:37:db:f6:b1:d3:b3:
c9:e3:6c:d5:ff:e1:1f:dc:5a:f3:6e:5a:cd:8f:1c:26:79:26:
17:2b:d1:77:d2:e9:16:09:b6:0f:cc:55:58:c5:59:f6:e6:e9:
55:9d:79:02:67:64:b9:b2:dd:9d:25:22:08:4d:69:98:04:4f:
c6:30:d0:a3:7f:4f:48:bf:8b:7f:02:96:32:88:e6:51:3a:26:
21:b8:5b:bc:93:4c:b9:75:e2:db:c7:80:60:d7:81:85:3f:a5:
3b:c9:9c:14:f9:cf:b9:1c:ea:7f:5b:03:10:f7:76:a3:4c:a2:
ce:f7:fa:63:74:c2:46:92:3a:3a:ab:bb:6f:2b:8c:fc:47:57:
2b:bc:a5:77:8f:ef:57:27:bf:45:8a:7c:b6:6a:ef:f0:45:a8:
56:ce:e7:56:3a:14:60:80:fb:72:1a:a6:a2:18:36:ea:aa:30:
91:65:e0:80:72:47:3f:b1:de:05:83:8a:49:70:b9:ce:6d:01:
f0:1c:12:84:2a:2d:9f:dd:2a:c7:23:52:9b:76:a6:3a:8e:13:
d9:d1:aa:01:8d:f6:28:af:a7:e9:a8:eb:66:56:0d:d7:0d:93:
aa:05:3d:78