GeneralInformation

Hostnames	dev.portal.mosaic.buzz
Domains	mosaic.buzz
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	North Bergen
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

WebTechnologies

JavaScript libraries

jQuery

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 631 4000 5432

-1801250555 | 2024-05-06T18:31:44.043490

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDQ7RZ0DsVY3d9NkIuQ0aeQFI2twHu0BLsIkWACgj2bniAG
dhyYxK+X5SIF4KYtEliER7y/VZwvJRGEaDuRjF6cWnCWByfCl98KYaELK4iburbWdl/69KCP0Jrj
vQC3gW3KFfCPK8N5fL0rmtA2O3a1ZPPkOPfkQKB8okJpZWPtsG76ZjSFDGOCS3sgRy4G2fBCitV+
LwVAOBfWm47m3+wzY4RdPdbzYA89VkisZ5wfnJETETpMEAleyxbIs5Ocvs3g2uoH6TS6k0Js5upg
F8QAVHM1im6qkcfoTVGBOUSpzjZP+hi72aDlUTgaSiBZzDSjgRAxLSH7LT5t4Zdw7pA1
Fingerprint: cc:f6:37:5c:be:35:59:b3:32:08:cc:c4:dd:f9:98:8b

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-10T04:58:11.918102

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 10 May 2024 04:58:11 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 14 Jan 2019 12:29:31 GMT
Connection: keep-alive
ETag: "5c3c80ab-264"
Accept-Ranges: bytes

-76444945 | 2024-05-03T22:50:28.447914

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 03 May 2024 22:50:28 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 9524
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: 
cache-control: max-age=0, private, must-revalidate
x-request-id: F8wcQgswNhroSrEAADtx

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:32:d2:9c:d5:db:17:1a:37:ee:32:c2:4e:39:43:a6:bd:d4
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 13 08:00:55 2024 GMT
            Not After : Jul 12 08:00:54 2024 GMT
        Subject: CN=dev.portal.mosaic.buzz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:15:6c:7d:88:b8:be:e8:00:93:f1:f1:41:1c:
                    6f:af:47:7f:d8:24:77:f5:26:a1:50:6c:7a:89:1e:
                    78:3b:e1:10:6b:35:d0:19:45:53:bd:65:df:ec:c7:
                    a5:c8:d4:4a:c8:be:23:52:a9:82:22:16:6b:72:52:
                    9a:1e:6d:b8:b7:aa:6d:d1:af:37:a0:26:30:45:8c:
                    a2:9b:e4:c7:d8:89:51:7c:89:f0:90:d5:4f:be:81:
                    b2:d7:76:4a:2c:0a:c3:bb:51:2c:a4:e7:99:a0:9b:
                    73:77:2f:18:7d:49:8d:e4:25:4e:ba:1b:0d:b9:90:
                    67:8f:e1:41:ec:17:09:e7:37:e8:95:2e:a2:d7:73:
                    bd:90:3e:ec:0a:de:af:c0:b3:88:50:d6:41:04:c2:
                    5a:2e:04:21:9f:81:66:59:f7:ea:d6:d5:9a:9a:d2:
                    ed:e8:18:19:4e:fa:f0:1f:b4:e6:cb:0f:ad:70:71:
                    fd:00:49:42:b6:13:bc:d7:aa:97:c6:6d:55:c8:c1:
                    8c:d1:eb:e9:a9:56:37:75:ad:77:f0:ab:a0:5c:78:
                    95:ec:12:97:1e:8d:54:27:1e:3e:76:fb:2b:d0:1d:
                    f1:e7:c5:86:a1:cf:bb:7a:15:ac:7d:30:68:5f:ce:
                    42:36:33:38:45:a9:b2:0e:fb:26:e3:90:cf:d8:0e:
                    02:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                CB:9A:54:C0:A1:1B:B6:D6:22:FC:D9:E7:C2:EC:D0:6D:E1:0B:06:05
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dev.portal.mosaic.buzz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 13 09:00:55.070 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:10:94:A3:87:C9:6E:DF:7A:D8:4A:B4:1A:
                                74:DA:86:AD:C8:81:F6:20:FF:F5:2B:42:98:45:FF:63:
                                1C:E4:6C:6D:02:21:00:EF:4F:C7:00:5F:DF:00:D1:72:
                                B3:D4:32:50:A2:A4:C0:12:55:09:05:46:CA:CA:4C:A5:
                                42:D5:83:0B:5A:1B:79
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 13 09:00:55.075 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7C:CD:4D:03:49:97:49:6B:56:C8:27:7C:
                                A7:E1:6E:62:6E:45:18:16:99:44:D6:24:0B:4F:5D:03:
                                95:03:DF:C9:02:21:00:98:F1:EE:30:7A:3D:6C:86:12:
                                A6:7D:0A:0E:E7:20:FB:50:F6:A3:EF:BB:EE:6A:D9:32:
                                78:7A:64:95:55:08:99
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b3:51:9b:7e:04:f3:6f:3d:45:84:38:5a:0e:9c:39:37:9d:f4:
        4f:52:10:81:7a:4f:9e:b7:8d:e3:ee:b4:f8:32:6d:b9:cf:f2:
        44:99:f4:68:93:f3:5a:65:a3:5c:8a:59:b7:d9:c0:3f:fc:38:
        39:dc:41:0f:51:f0:01:d3:39:33:b9:7a:1c:b1:7e:58:31:b1:
        0d:be:7e:f0:06:d7:c1:53:bb:0d:d0:61:f1:9e:23:0d:14:77:
        b9:c7:8e:63:ea:58:bf:b8:3f:ab:e3:c5:3d:63:48:0d:4f:5e:
        d6:91:ec:4e:cf:58:0a:ad:5d:ca:eb:fc:8e:e3:53:ff:fc:de:
        de:51:09:de:c0:12:ea:1a:96:48:f9:71:bc:12:71:88:d5:fd:
        bf:a7:a3:de:6b:62:74:73:a9:7f:78:ad:f8:58:a1:3a:fb:72:
        b3:30:86:9f:0f:50:42:f0:77:b7:e8:ab:69:52:6b:e0:74:bc:
        36:ba:f0:04:6b:05:6c:22:8d:b1:65:49:1b:d9:da:98:b7:80:
        e6:8c:f8:ef:3f:25:db:8a:2f:dd:67:dc:4e:11:16:1c:a9:c5:
        8b:83:b4:5f:0b:fd:5d:8e:d8:de:a3:f1:e1:4a:0d:62:63:3a:
        54:92:c9:02:2e:95:9f:38:f1:ba:56:01:c8:34:15:3d:fc:8c:
        74:ec:7b:6a

-1617379090 | 2024-05-11T16:57:39.896337

631 / tcp

HTTP/1.1 403 Forbidden
Connection: close
Content-Language: en
Content-Length: 370
Content-Type: text/html; charset=utf-8
Date: Sat, 11 May 2024 16:57:39 GMT
Accept-Encoding: gzip, deflate, identity
Server: CUPS/2.4 IPP/2.1
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none'

334049520 | 2024-05-07T20:50:25.352361

4000 / tcp

HTTP/1.1 400 Bad Request
connection: close
content-length: 0

-802964558 | 2024-04-24T11:53:50.478810

5432 / tcp

PostgreSQL
FATAL:  no pg_hba.conf entry for host "224.56.73.168", user "postgres", database "template0", SSL on
FATAL:  no pg_hba.conf entry for host "224.56.73.168", user "postgres", database "template0", SSL off

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a4:89:ee:67:48:d6:d3:a7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=development
        Validity
            Not Before: Jan 14 11:44:17 2019 GMT
            Not After : Jan 11 11:44:17 2029 GMT
        Subject: CN=development
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:be:d7:17:ab:1e:5e:50:19:7c:8e:d2:59:90:4b:
                    25:2b:ef:b1:88:a2:37:59:c0:3b:c7:ef:1f:7b:d8:
                    a1:3c:b5:d9:19:ea:18:ba:2d:57:b9:57:4a:77:a8:
                    6b:73:19:9d:73:6f:4b:84:7d:2e:30:86:14:47:9c:
                    09:54:25:e2:c4:c6:18:d5:23:75:a5:da:cd:b8:d8:
                    a6:6a:02:81:af:fd:d1:f9:fa:82:02:1f:0a:bb:02:
                    3d:e8:5d:2d:69:8f:4b:1c:05:98:e7:cd:cb:7c:79:
                    0b:e5:0b:a5:8d:cf:f6:74:0b:54:cf:25:9f:1a:25:
                    4d:77:b5:40:9e:01:25:76:ac:35:db:bc:76:d9:24:
                    88:73:fd:bc:93:85:83:ab:96:bb:e5:69:c1:bc:10:
                    96:85:4f:f9:08:ad:b9:99:11:20:66:24:26:65:f2:
                    a3:b5:18:31:81:6b:62:8f:f6:2b:e5:a1:4b:96:07:
                    e8:07:cf:fe:5a:57:df:58:af:6c:bb:d8:ea:e9:ad:
                    f4:a5:73:79:32:9f:88:aa:e8:33:06:9e:dc:d5:be:
                    8b:1c:ea:a6:f1:da:f9:9d:75:ba:4a:de:c0:36:9e:
                    a3:10:a1:96:e5:d9:ec:b7:32:f5:e6:f2:71:57:a8:
                    3d:dd:54:cf:c8:fd:e1:d9:c7:1b:94:c8:ad:24:33:
                    6f:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:8a:c6:56:b5:34:77:6d:0a:bd:94:f5:a2:ee:26:6a:68:42:
        e5:85:e6:55:94:8e:d4:ab:95:b5:83:d2:2d:09:a8:ca:39:6e:
        cd:c1:ad:83:2c:38:37:a8:1a:1b:4d:6f:46:da:b1:30:07:9c:
        06:9f:b2:11:a3:9a:0d:3b:ac:35:f0:76:56:63:89:b4:5f:f7:
        24:d2:66:87:3b:3b:7a:e2:1a:d2:76:65:35:8c:ff:7e:42:4a:
        6c:78:ea:ca:9d:42:9e:57:2e:d1:b0:41:dd:24:f2:f1:a6:ad:
        ce:95:86:47:17:d5:98:96:67:2a:83:cb:55:d1:98:61:69:dd:
        d1:6f:cc:2c:d6:84:de:ba:3d:34:fe:cb:3c:e9:f5:80:80:5a:
        2b:3f:8a:00:ea:36:4c:5c:c1:bc:1f:cf:30:63:66:a9:2d:98:
        9f:9e:43:c5:eb:90:83:01:9b:74:4f:66:94:bb:f4:8d:80:60:
        e8:27:1f:0b:c8:77:fd:1d:52:97:35:8f:64:d4:65:7e:92:f5:
        f1:67:b3:fb:fb:66:9f:66:f9:20:03:e3:47:67:7f:b2:5e:2c:
        38:ed:a0:a5:e3:9e:95:d2:ef:83:93:0b:10:44:c3:9b:af:bc:
        1b:11:5e:a9:00:8f:fe:7e:73:c6:ab:50:67:38:54:3b:6f:a2:
        c9:86:d4:b9

104.248.237.16

Last Seen: 2024-05-11

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1801250555 | 2024-05-06T18:31:44.043490
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-05-10T04:58:11.918102
80 / tcp

nginx1.18.0

-76444945 | 2024-05-03T22:50:28.447914
443 / tcp

nginx1.18.0

-1617379090 | 2024-05-11T16:57:39.896337
631 / tcp

CUPS (IPP)2.4.8

334049520 | 2024-05-07T20:50:25.352361
4000 / tcp

-802964558 | 2024-04-24T11:53:50.478810
5432 / tcp

PostgreSQL11.10 - 11.13

Products

Pricing

Contact Us

104.248.237.16

Last Seen: 2024-05-11

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1801250555 | 2024-05-06T18:31:44.043490 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-05-10T04:58:11.918102 80 / tcp

nginx1.18.0

-76444945 | 2024-05-03T22:50:28.447914 443 / tcp

nginx1.18.0

-1617379090 | 2024-05-11T16:57:39.896337 631 / tcp

CUPS (IPP)2.4.8

334049520 | 2024-05-07T20:50:25.352361 4000 / tcp

-802964558 | 2024-04-24T11:53:50.478810 5432 / tcp

PostgreSQL11.10 - 11.13

Products

Pricing

Contact Us

-1801250555 | 2024-05-06T18:31:44.043490
22 / tcp

1651973090 | 2024-05-10T04:58:11.918102
80 / tcp

-76444945 | 2024-05-03T22:50:28.447914
443 / tcp

-1617379090 | 2024-05-11T16:57:39.896337
631 / tcp

334049520 | 2024-05-07T20:50:25.352361
4000 / tcp

-802964558 | 2024-04-24T11:53:50.478810
5432 / tcp