GeneralInformation

Hostnames	lianmeng.360.cn api.so.lianmeng.360.cn
Domains	360.cn
Country	China
City	Shanghai
Organization	CHINA UNICOM Shanghai network
ISP	China Unicom Shanghai network
ASN	AS17621

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

1495287234 | 2024-05-02T07:01:49.047356

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.2
Date: Thu, 02 May 2024 07:01:48 GMT
Content-Type: text/html
Content-Length: 555
Connection: close

1495287234 | 2024-05-02T08:42:54.835886

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.2
Date: Thu, 02 May 2024 08:42:54 GMT
Content-Type: text/html
Content-Length: 555
Connection: close

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            22:0c:35:98:d0:78:b8:83:19:fc:25:09:cd:88:b3:e9
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CN, O=WoTrus CA Limited, CN=WoTrus DV Server CA  [Run by the Issuer]
        Validity
            Not Before: Nov  6 00:00:00 2023 GMT
            Not After : Nov  5 23:59:59 2024 GMT
        Subject: CN=lianmeng.360.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:96:e1:97:10:48:19:32:5d:a3:8f:52:63:0f:54:
                    2d:77:f2:30:b5:78:09:80:fe:fa:ee:30:8f:81:37:
                    85:80:17:73:32:bd:b6:80:e4:82:d8:8e:50:e0:e2:
                    12:a9:69:f2:b1:f2:cc:ec:10:9e:99:1d:d8:32:ce:
                    4c:e4:95:86:d2:9b:7f:de:a1:d9:50:0b:86:16:54:
                    10:91:6c:3b:89:29:29:6b:a2:d5:d2:c5:e0:d7:20:
                    03:33:09:d3:ad:b4:75:bd:29:28:c1:a3:66:8e:75:
                    38:db:21:f8:fe:03:74:19:93:6b:38:e2:d7:94:ec:
                    ad:0a:47:31:3e:b1:25:79:1e:1c:fd:54:27:15:ca:
                    89:25:ec:36:e1:5f:51:cd:e5:1d:7a:30:af:5e:d9:
                    19:2d:e6:23:0b:f3:b9:79:7f:a4:a4:33:2c:97:91:
                    4a:b7:77:11:18:2f:8e:14:bc:a6:bb:dc:d4:3e:9d:
                    ca:43:5f:80:85:e4:d4:a5:2b:ff:b7:79:31:ef:5a:
                    73:a0:e8:b6:7c:15:db:ac:a0:d5:19:76:72:ac:24:
                    23:2f:b4:61:7e:1a:2a:9b:ce:aa:af:93:d7:ad:64:
                    61:87:5b:a5:26:6d:fe:43:d5:ac:c4:b8:ad:d4:38:
                    79:4e:6c:2b:24:1d:42:82:b7:fb:28:c4:ad:09:c7:
                    de:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                99:9B:2D:F6:8B:F0:A3:DB:89:D4:9E:FB:E5:74:2F:68:D2:90:4F:E4
            X509v3 Subject Key Identifier: 
                2E:5E:0E:6A:49:85:30:F8:1A:A5:1D:51:69:09:FC:EC:56:AE:F8:B4
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.22
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.crlocsp.cn/WoTrusDVServerCA_2.crl
            Authority Information Access: 
                CA Issuers - URI:http://aia.crlocsp.cn/WoTrusDVServerCA_2.crt
                OCSP - URI:http://ocsp.crlocsp.cn
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Nov  6 03:41:04.868 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E5:E4:0B:F9:43:02:D8:A9:05:85:E2:
                                70:42:D5:35:8E:80:D8:29:BC:AB:B5:1E:CC:DC:2A:8C:
                                52:5C:1A:79:37:02:21:00:AA:98:0C:1A:71:D6:0D:1C:
                                CF:84:56:D3:90:C2:14:A1:25:35:CB:73:18:26:CF:34:
                                03:9B:1C:FD:08:5F:CB:6F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Nov  6 03:41:04.996 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D5:F2:12:19:3C:44:CA:39:5A:FA:60:
                                3A:6C:71:80:E8:0B:D6:5D:1A:76:6E:B2:AF:12:97:B0:
                                6C:8D:90:17:17:02:20:2E:2C:68:67:2C:88:3B:B0:14:
                                1A:E6:3D:E9:05:14:31:5F:2B:18:7A:5F:26:4B:DE:CB:
                                5E:C3:F6:6B:14:41:CE
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Nov  6 03:41:04.916 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:F8:32:31:93:38:A1:96:F9:B5:35:3D:
                                C2:3F:18:C9:8B:19:5D:C5:3F:A0:93:FD:97:8F:59:93:
                                E6:2D:4A:2F:0A:02:20:4F:B5:D9:C0:D5:1B:C2:AF:6A:
                                6D:B7:2F:63:A2:53:06:DF:E2:DF:8B:F8:49:22:0B:0B:
                                60:55:62:C6:CD:0F:A0
            X509v3 Subject Alternative Name: 
                DNS:lianmeng.360.cn, DNS:*.api.so.lianmeng.360.cn, DNS:*.lianmeng.360.cn, DNS:api.so.lianmeng.360.cn
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8c:ff:e7:b3:80:96:16:a9:7a:4f:e6:76:f2:d6:c3:08:d7:d8:
        7d:3a:bd:f9:03:72:34:ac:6d:86:a0:90:55:76:2f:7b:ff:9a:
        b4:02:36:8d:04:a2:1a:8d:fa:d5:ee:77:4b:3e:08:07:a4:8a:
        9a:8f:ca:45:bd:32:e6:50:ac:1f:f7:a6:33:f3:1d:38:cc:f8:
        19:d8:eb:3d:42:16:66:bd:d6:56:9f:08:f9:1c:78:40:da:cb:
        a8:eb:e3:89:07:66:0a:cd:37:31:36:2b:c1:8b:94:e4:64:ab:
        60:59:92:be:42:c4:7a:9b:e4:6d:6b:7a:b7:cd:35:44:2f:b3:
        38:8c:56:76:4e:26:85:33:c5:a4:bb:36:52:85:8d:59:3f:bb:
        f0:bd:24:9e:d1:19:49:19:6d:62:1e:e1:1f:1c:ed:f8:b0:da:
        e1:d4:51:83:68:17:86:f2:cf:84:c7:01:b5:88:2d:2c:e3:29:
        d5:01:07:70:72:d5:f5:9f:9c:63:9f:22:1a:3b:b2:f3:70:e9:
        85:9c:77:82:69:c6:80:37:1b:90:d5:2d:39:4e:77:d6:ed:2b:
        8b:23:87:a4:b5:cd:61:84:e3:c7:a0:39:41:74:11:26:88:73:
        1d:df:90:db:69:29:a2:19:a5:b2:7e:b9:9b:94:bb:5c:a5:23:
        40:0f:db:04

112.65.69.35

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1495287234 | 2024-05-02T07:01:49.047356
80 / tcp

nginx1.20.2

1495287234 | 2024-05-02T08:42:54.835886
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

112.65.69.35

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1495287234 | 2024-05-02T07:01:49.047356 80 / tcp

nginx1.20.2

1495287234 | 2024-05-02T08:42:54.835886 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

1495287234 | 2024-05-02T07:01:49.047356
80 / tcp

1495287234 | 2024-05-02T08:42:54.835886
443 / tcp