GeneralInformation

Country	China
City	Beijing
Organization	Shanghai UCloud Information Technology Company Limited
ISP	China Unicom Beijing Province Network
ASN	AS4808
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 2345

-1045189059 | 2024-05-14T21:30:25.697702

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDrFkofSSxiMj2G+AL8v7sjvR+ovyWr2qeMaYW47xu8RHFN
HGKqapu//Bo5dj1QA4siWSUB2WfLFraVHxM1dTgW/2STj/iVmqTjblj4vhWreg8MtsFBPwvPa8rn
xYEJ7gWBDZ2KpPqiiPycpSgTHb8K0bwl/CTEjyNfJOochWaJZKd2u6UeHVIgEw0d0WE3Fk9yB6Wk
NCn6otX996VVVH7KcHBw/Hlz82pjm6kxzVzo8ne1fd7/MhNiHnLlJ8mNgBZ5dJDk6ffL2kvazRrp
PVWUKsjWO1/AFbD+YkZHungzWv74kgoRJ99eCa9AqCrTNX8yHFAkwQl10Tgmm5rGIU4Ila6oW3tS
Ykqvc+7As2rvMOS/r86kE4m58KJgArmfOL4ml6fk1k1KjY06rqxc31zIBkTEpLk6ddXcbDkL27Ak
dN7TibKeWXxFmiKt4XydN5FYLrSN08pLjdq2BJc0oOTKE1rVRIFdZ7CnJm5579H1Fee7+IA6i6wX
TLyWhkFTWUU=
Fingerprint: 79:a9:fb:0d:58:d0:18:ff:66:6f:ab:89:dc:65:f7:c5

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-11T08:20:42.902190

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 08:20:42 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sat, 27 Jan 2024 06:02:10 GMT
Connection: keep-alive
ETag: "65b49c62-264"
Accept-Ranges: bytes

-84750270 | 2024-04-25T00:10:35.034908

2345 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 25 Apr 2024 00:10:34 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

106.75.27.108

Last Seen: 2024-05-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1045189059 | 2024-05-14T21:30:25.697702
22 / tcp

OpenSSH8.9p1 Ubuntu-3

1651973090 | 2024-05-11T08:20:42.902190
80 / tcp

nginx1.18.0

-84750270 | 2024-04-25T00:10:35.034908
2345 / tcp

nginx

Products

Pricing

Contact Us

106.75.27.108

Last Seen: 2024-05-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1045189059 | 2024-05-14T21:30:25.697702 22 / tcp

OpenSSH8.9p1 Ubuntu-3

1651973090 | 2024-05-11T08:20:42.902190 80 / tcp

nginx1.18.0

-84750270 | 2024-04-25T00:10:35.034908 2345 / tcp

nginx

Products

Pricing

Contact Us

-1045189059 | 2024-05-14T21:30:25.697702
22 / tcp

1651973090 | 2024-05-11T08:20:42.902190
80 / tcp

-84750270 | 2024-04-25T00:10:35.034908
2345 / tcp