GeneralInformation

Hostnames	server.make.nz rdns.120.138.22.36.sth.nz
Domains	make.nz sth.nz
Country	New Zealand
City	Auckland
Organization	SiteHost New Zealand
ISP	SiteHost New Zealand
ASN	AS45179
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

770677517 | 2024-05-29T19:41:52.122383

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQCn4u36d7IvUjedxOQm7UBi61YFaof8DKDhqCzMIq28XKXj
bfEQZ6849jCcIRb/ABwgcSIKpn5VacGq7lzo1Z6mxkekZ3wOEN3CErCGPKKyqCA76ifEAZZBPa1W
08Vwt8HyfdIeDuxa0U0hodGZntq1DiagmOPwelGJnVsYifz4jLoc2MSBwxebItTgVODonG5POj3b
THla721/zqEuMOkmHpJseGIK80uw7xemyuvy/X+JPrdUXqlcpooUgDfsTWwBtV7IA7o/ePvca76f
XOSYWVg5jJmo2/4UfFff0SynFO30nPUIZswE/kt7OGQjxGhejiq/+MmA3r5dvw0Qjciv
Fingerprint: d0:49:77:8b:b9:1d:ff:f1:15:9f:95:e5:31:38:45:1a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-06-01T23:24:01.307739

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 01 Jun 2024 23:24:01 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

1651973090 | 2024-06-01T20:32:47.982235

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 01 Jun 2024 20:32:47 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:5a:66:98:d7:65:1a:93:f6:2b:b8:6d:8b:cc:96:07:63:b7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jan 26 23:58:22 2022 GMT
            Not After : Apr 26 23:58:21 2022 GMT
        Subject: CN=server.make.nz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b4:59:7e:19:09:cd:75:42:7e:75:1d:70:4b:f2:
                    62:7f:d5:94:54:47:9f:80:34:19:d6:29:18:dd:14:
                    8f:34:30:12:04:37:70:10:af:58:72:68:f8:48:03:
                    64:c7:d5:41:02:2c:70:9f:4a:47:ea:44:18:26:65:
                    7d:e8:34:fa:0a:0d:90:19:85:f4:b4:42:b0:0a:61:
                    5d:d0:f3:fe:90:b0:b7:1e:97:6b:50:88:a6:e8:15:
                    99:9a:c9:e0:00:63:1c:ae:43:a8:8d:f4:a7:e5:09:
                    fe:c0:b4:03:dd:ef:f6:8e:dd:59:e9:4d:5c:20:9e:
                    7d:a6:9f:dd:d3:cf:01:db:41:ca:e0:9a:bd:10:f1:
                    3b:b5:52:1a:f4:c8:e1:20:8f:43:b3:27:dd:f6:8f:
                    3e:af:94:3f:e5:4d:96:59:42:93:af:b8:44:5b:73:
                    20:1c:bc:bc:a8:73:ee:8b:dd:f9:5f:35:ba:46:23:
                    29:13:85:09:42:cb:24:d8:b9:af:d3:7f:6a:ca:7f:
                    a5:85:c4:fd:ef:9d:25:36:39:19:3c:db:69:21:43:
                    a7:5c:2d:1d:2a:f1:14:c3:54:9c:ec:0c:9f:f2:00:
                    a1:90:01:f5:ff:f2:ec:5d:dc:4a:f1:e7:db:c5:ef:
                    cb:10:cb:1f:16:f7:37:e1:ad:48:6b:fd:71:41:3a:
                    3a:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                1D:BF:98:52:53:51:99:1C:B9:3C:C0:8E:CB:93:10:E8:EE:70:99:CB
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:server.make.nz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 41:C8:CA:B1:DF:22:46:4A:10:C6:A1:3A:09:42:87:5E:
                                4E:31:8B:1B:03:EB:EB:4B:C7:68:F0:90:62:96:06:F6
                    Timestamp : Jan 27 00:58:23.100 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:60:39:DF:91:3D:8D:C3:6C:C3:D2:51:39:
                                21:91:BC:16:11:D3:6C:CA:92:0A:B9:3A:46:79:F1:15:
                                64:82:57:00:02:20:44:02:94:11:95:97:89:06:7F:26:
                                E4:93:52:70:B6:1B:08:1A:EF:C6:FD:F4:D2:71:EE:E9:
                                46:DB:F3:9F:6C:63
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
                                BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
                    Timestamp : Jan 27 00:58:23.075 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:DC:7D:83:8D:56:87:EB:2A:06:91:61:
                                09:B1:C5:78:89:31:F4:69:E3:11:77:47:07:AD:48:3C:
                                F9:CE:E2:6A:41:02:20:79:A6:D2:A9:03:9C:F2:EC:89:
                                1A:42:19:F5:FE:F1:BE:8E:CD:6A:37:D1:C5:27:91:88:
                                01:F6:6A:9A:53:5E:48
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        6e:45:0c:11:61:1d:b1:32:be:60:b1:a3:1c:28:ed:d7:2e:8f:
        1b:98:7c:de:b2:2b:7d:53:e5:f7:1f:27:e8:3e:d9:a5:09:39:
        81:6f:48:72:29:62:27:ae:af:09:10:f6:3c:25:1d:80:84:1e:
        46:1f:2d:a1:c9:25:f7:36:94:42:2d:b0:80:70:e8:b5:90:67:
        74:c1:c8:32:b4:0d:1a:f8:5d:91:f5:03:e5:aa:93:02:b4:15:
        06:07:38:73:eb:d5:13:8c:8a:2d:be:83:33:d0:29:c3:2c:c2:
        6b:10:00:4f:e1:41:04:83:c2:36:e8:34:93:b2:9d:7d:17:9d:
        0f:43:7c:c6:ba:3f:5b:cf:ae:07:86:97:a8:88:fe:d4:28:42:
        b5:ad:af:4a:06:77:8e:90:cb:5d:ef:57:f5:3d:7d:7f:f7:b8:
        36:be:48:bb:a5:78:98:c9:e4:86:46:94:96:71:03:e7:42:4c:
        c9:aa:87:9f:37:7e:a2:35:6b:b2:3b:30:17:b7:b1:d3:83:64:
        d9:26:2f:80:75:5b:72:19:d3:52:20:2f:3f:72:1a:48:d2:02:
        4a:8e:53:23:b2:6b:d9:47:7d:f6:f9:55:f5:f4:60:a4:e6:3a:
        8a:7f:f0:d9:b6:6e:9f:45:6a:82:a0:22:8b:26:da:22:3f:65:
        60:cf:83:55

120.138.22.36

Last Seen: 2024-06-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

770677517 | 2024-05-29T19:41:52.122383
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.4

1651973090 | 2024-06-01T23:24:01.307739
80 / tcp

nginx1.18.0

1651973090 | 2024-06-01T20:32:47.982235
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

120.138.22.36

Last Seen: 2024-06-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

770677517 | 2024-05-29T19:41:52.122383 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.4

1651973090 | 2024-06-01T23:24:01.307739 80 / tcp

nginx1.18.0

1651973090 | 2024-06-01T20:32:47.982235 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

770677517 | 2024-05-29T19:41:52.122383
22 / tcp

1651973090 | 2024-06-01T23:24:01.307739
80 / tcp

1651973090 | 2024-06-01T20:32:47.982235
443 / tcp