| Hostnames |
rivotek.com www.rivotek.com |
| Domains | rivotek.com |
| Country | China |
| City | Nanjing |
| Organization | China Mobile Communications Corporation |
| ISP | China Mobile communications corporation |
| ASN | AS56046 |
| Operating System | Windows |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
| CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
2050844535 | 2024-04-27T22:13:13.15219180 / tcp
HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Wed, 27 Mar 2024 10:46:41 GMT Accept-Ranges: bytes ETag: "d07469d3480da1:0" Server: Microsoft-IIS/10.0 Date: Sat, 27 Apr 2024 22:13:12 GMT Content-Length: 457
1489525118 | 2024-05-13T20:49:15.086321443 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Mon, 13 May 2024 20:49:14 GMT Connection: close Content-Length: 315
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:4a:df:cd:db:c2:db:61:d3:8d:9b:72:30:d0:cc:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G1
Validity
Not Before: Jun 29 00:00:00 2023 GMT
Not After : Jun 29 23:59:59 2024 GMT
Subject: CN=www.rivotek.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b8:e5:63:1b:e1:41:dc:28:fa:68:19:9d:79:9a:
62:77:ca:3e:84:fc:5d:d9:f0:41:d5:9a:fb:0d:25:
5d:48:cb:e9:ac:1c:00:b6:13:c9:97:7b:0c:50:02:
65:0f:cc:2d:38:48:c3:61:fe:9b:d1:b4:57:d6:95:
71:7e:09:3c:e2:a8:1f:10:9f:c5:20:53:a2:64:27:
d3:5d:b2:f1:a8:d5:0d:5b:18:70:85:04:39:7c:0f:
ea:3a:90:e3:d0:a6:c2:9d:f2:73:6d:b2:57:3a:d4:
e4:8a:82:07:56:fb:83:45:04:93:52:3b:f0:48:70:
06:b3:6b:58:cb:85:70:e5:33:39:6d:95:c9:f3:48:
b4:b7:ef:e6:c1:4f:52:30:ce:58:71:ec:16:0f:0b:
87:8a:0e:56:5f:ca:3b:62:7b:23:b7:db:d0:54:be:
7d:dd:d8:ac:10:90:c5:57:96:1e:f2:8c:8c:a7:a9:
13:eb:c2:93:cd:e5:a9:dd:85:96:46:18:8d:1a:91:
97:03:7c:f3:6c:84:e8:2e:02:41:c2:bf:fb:52:e1:
14:c5:11:66:57:30:9b:9f:33:e5:9b:9a:54:ca:f0:
ef:65:a6:8d:ab:07:7d:e1:30:eb:ae:64:7b:1a:88:
fb:c7:d7:72:c6:b8:ac:92:92:df:0f:fd:77:45:52:
fc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
55:74:4F:B2:72:4F:F5:60:BA:50:D1:D7:E6:51:5C:9A:01:87:1A:D7
X509v3 Subject Key Identifier:
57:12:57:72:27:E9:21:7C:2D:33:AF:97:25:37:D9:44:AE:C2:29:07
X509v3 Subject Alternative Name:
DNS:www.rivotek.com, DNS:rivotek.com
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CPS: http://www.digicert.com/CPS
Authority Information Access:
OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt
X509v3 Basic Constraints:
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Jun 29 03:12:04.034 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FA:1B:16:CB:A6:C2:8B:0E:B2:FF:FC:
CF:6F:FC:83:2E:AC:A3:EF:25:35:31:F0:6B:C0:D0:65:
CF:CC:C2:39:9C:02:20:6B:E5:F7:AD:B9:62:83:CF:71:
F3:A6:AC:90:6F:66:D1:DF:23:C5:05:79:AB:2E:3F:7E:
40:2A:EE:27:78:8F:1D
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Jun 29 03:12:04.102 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:7F:F2:56:90:A4:52:92:F4:BB:38:0E:43:
D5:C6:38:71:EE:16:F8:71:E8:C8:55:CE:34:82:0C:7A:
D4:1B:A8:51:02:20:7C:12:EF:4D:FD:83:6A:29:6A:A4:
42:44:D2:3B:FA:D5:CA:86:7B:31:A6:43:4D:B3:52:7E:
CB:40:9F:5B:C1:AB
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Jun 29 03:12:04.061 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:96:A5:B5:A3:55:C1:6C:D1:79:11:C3:
E9:AC:F4:55:D7:21:F3:3F:EC:66:AF:4B:55:7E:DA:D2:
CA:8F:1A:57:77:02:20:16:BF:92:89:0F:0D:08:24:0D:
6B:7A:6D:E6:BD:6E:36:55:6C:7F:B6:85:05:BC:AE:B2:
F9:45:B2:3F:DB:02:A8
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
1f:76:63:dd:6f:39:48:73:8d:9c:de:28:09:c2:ad:53:f9:6c:
a8:30:fb:c4:a5:60:95:2e:0c:cb:9b:57:32:63:8d:9f:99:df:
c1:69:ac:92:ce:0c:91:02:57:38:5a:f8:d8:a8:49:e9:4b:83:
df:7b:e1:c4:e8:77:b2:35:c5:68:c6:55:68:8d:01:55:b4:25:
f5:8c:0a:d7:d4:c2:c6:d8:1f:85:ea:21:d7:78:d6:d0:c2:4b:
da:f6:2c:b9:1f:62:84:d6:a4:9f:d8:74:3e:dc:dc:6a:19:ff:
fc:7f:ed:e5:5e:eb:6c:20:8c:d9:3d:12:dc:55:f4:b8:f1:32:
2f:33:2b:0e:b6:76:f0:40:c5:37:80:bb:72:91:d0:65:77:19:
ed:49:69:45:05:85:24:ad:97:11:60:66:cf:b6:ed:49:74:82:
6c:92:7c:94:ea:1d:25:2e:da:a0:64:6a:83:d5:42:2e:67:4b:
9e:aa:1e:8a:40:be:9c:12:31:fa:c3:8f:9f:c1:48:8b:5b:ec:
a4:7e:18:36:77:7b:7b:26:e5:d2:64:32:d9:a2:9f:4a:44:99:
8a:31:f8:db:ef:6c:f6:c8:82:28:37:61:57:39:04:53:44:a1:
49:55:e3:d7:b5:bf:58:05:cb:60:4d:10:6d:7c:30:14:e3:bf:
1b:8e:75:5b
-1351362334 | 2024-05-10T03:24:45.3581251883 / tcp
MQTT Connection Code: 0 Topics:
-1994766664 | 2024-04-30T19:51:20.3293446001 / tcp
HTTP/1.1 400 Bad Request Server: nginx/1.17.9 Date: Tue, 30 Apr 2024 19:51:20 GMT Content-Type: text/html Content-Length: 157 Connection: close <html> <head><title>400 Bad Request</title></head> <body> <center><h1>400 Bad Request</h1></center> <hr><center>nginx/1.17.9</center> </body> </html>
199333125 | 2024-05-09T04:08:24.3570128000 / tcp
HTTP/1.1 400 Bad Request Server: nginx Date: Thu, 09 May 2024 04:08:24 GMT Content-Type: text/html Content-Length: 650 Connection: close
-1887876981 | 2024-04-17T17:39:21.0214828443 / tcp
HTTP/1.1 200 OK Date: SUN, 18 Apr 2024 01:37:29 Connection: Server: HTTP Server 1.0 Content-Length: 7594 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1;mode=block Strict-Transport-Security: max-age=31536000 Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval';style-src 'self' 'unsafe-inline';img-src 'self' data:;frame-ancestors 'self'; X-Download-Options: noopen Content-Type: text/html; charset=utf-8 Set-Cookie: SESSIONID=5wAAALwUkazBn3LGDVTe/k/TpkZrJlWXEzY5lNbT508=&5wAAAAN7uKXKGSJX1FbGvQ==&HUAWEI &langfrombrows=©right=2014-2022;httponly; secure
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
b7:14:49:55:5d:15:87:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=CN, ST=JS, L=NJ, O=HW, OU=VPN, CN=CA-102140098143
Validity
Not Before: Apr 27 22:18:16 2021 GMT
Not After : Apr 25 22:18:16 2031 GMT
Subject: C=CN, ST=JS, L=NJ, O=HW, OU=VPN, CN=LOCAL-102140098143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ad:3d:68:44:ee:50:39:66:c1:13:48:0f:08:b1:
ed:a2:80:cc:14:7f:e6:66:d2:82:34:02:07:3a:61:
57:3e:62:98:8d:4f:9e:2b:6f:04:24:7b:f6:0d:86:
5d:49:c2:84:99:b1:5d:11:51:52:38:b6:96:00:f4:
4a:54:79:dc:9c:2a:4f:ef:a6:db:8d:8b:12:6b:0c:
dc:d1:cf:e4:f0:86:b4:c6:de:0d:f1:f2:51:5e:6f:
6e:31:fb:e4:24:5a:a8:9a:92:12:09:62:48:d9:ba:
c6:3c:8a:0f:8c:b1:20:77:6f:ad:36:0f:60:c3:e4:
c2:8f:b5:fb:8d:de:4a:2a:76:83:aa:30:20:d4:d6:
0e:14:58:53:11:72:a3:7c:30:2e:30:c0:a0:99:e2:
25:43:b3:f0:22:d2:f6:90:48:06:17:a7:36:e2:14:
2e:0d:65:1c:e4:41:9e:17:47:68:d9:4a:55:c3:91:
de:2c:73:39:61:87:53:d3:9c:e6:7f:12:34:08:28:
71:ae:ba:ae:ce:64:36:cf:3a:2c:d1:9c:ee:0b:ae:
c1:eb:69:9b:5a:78:a7:09:23:33:05:23:7b:41:c6:
92:b5:8a:40:28:a4:59:6c:bd:6a:3f:26:cb:22:d9:
82:ab:5e:be:b4:53:46:63:17:54:e5:dd:c4:5f:8f:
10:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:4F:BA:76:BC:0A:C5:21:D5:69:BB:F3:CA:60:73:18:13:47:47:C5
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
04:42:78:62:a9:08:4b:e5:0f:52:6f:40:c1:86:c1:84:87:ba:
90:32:0f:35:f0:3b:f7:88:87:5d:16:01:11:8a:20:5e:32:40:
a7:a7:d0:4f:fc:a6:89:f5:b4:8b:3f:32:e6:0f:2e:dc:f9:d3:
46:25:a8:be:aa:03:b6:dc:e1:70:20:8a:a8:27:47:96:43:2f:
90:f8:ac:2b:7d:5c:b8:39:68:b2:d2:fc:1e:72:83:b7:97:f9:
3d:14:0b:3c:74:e8:f3:1d:e9:13:44:b1:db:ec:a5:e6:7b:93:
e7:24:35:14:3f:e5:41:6a:34:5c:47:bf:ca:22:76:fa:f1:4b:
75:93:0b:f3:ce:be:13:4f:a1:aa:f5:c1:19:f8:8d:ae:02:09:
b0:55:16:3f:83:78:e2:1e:4f:49:94:5c:c7:74:4b:3f:e4:48:
9d:28:a5:da:92:16:c3:86:77:a1:2f:8c:83:87:a9:05:38:37:
ca:91:b7:ce:44:d7:57:90:7b:a0:99:a0:ce:cc:94:51:d6:46:
fd:db:a3:74:15:11:69:db:ac:c6:68:e3:6b:06:22:fe:e4:b0:
fb:61:c5:65:7f:59:a2:bd:47:32:2b:7a:72:f2:cc:17:7f:63:
49:3a:c9:14:26:86:2e:8d:e7:f0:12:d1:cd:21:48:c8:b2:e2:
69:7d:d2:e2
10:21:40:09:81:43
Unknown
-730092649 | 2024-05-12T20:16:56.5064249443 / tcp
HTTP/1.1 200 OK Date: Sun, 12 May 2024 20:16:56 GMT X-Frame-Options: DENY Set-Cookie: XSRF_TOKEN=; Path=/; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0 Expires: Thu, 01 Jan 1970 00:00:00 GMT Content-Type: text/html;charset=utf-8 Content-Length: 4883
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2017485810 (0x784063f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: O=hoperun.com, OU=Gerrit Code Review, CN=gerrit2.hoperun.com
Validity
Not Before: Apr 25 09:24:30 2021 GMT
Not After : Apr 23 09:24:30 2031 GMT
Subject: O=hoperun.com, OU=Gerrit Code Review, CN=gerrit2.hoperun.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:89:4f:e9:26:d4:61:95:8d:a4:39:33:04:49:49:
68:63:42:dd:77:1c:7c:1f:9a:7f:f9:83:73:06:64:
c5:09:16:ba:49:53:7b:95:a8:cc:1a:f5:7f:a8:43:
82:c4:3a:b8:b9:74:b5:31:84:d3:2f:6b:72:11:2b:
3d:cd:b1:97:26:26:eb:26:8d:cd:cc:d7:bd:1c:82:
47:0f:d0:35:ff:32:c3:5b:10:b3:55:e8:96:c4:3f:
fb:19:27:50:bf:dd:ca:37:99:b0:9d:06:30:30:2d:
44:93:46:d5:e8:75:a6:27:96:99:d7:36:81:29:fd:
9c:07:83:ca:dc:27:59:cd:86:dc:04:33:59:e6:6a:
b5:24:f6:e4:93:49:92:69:96:46:1d:35:e6:aa:a9:
f8:df:87:86:de:96:98:a0:7e:65:dc:b6:2d:f3:4f:
86:03:fd:c9:14:38:fe:99:72:38:7f:48:cd:03:ec:
12:35:d0:8c:7e:95:a4:84:2b:a1:f6:c8:79:3e:b2:
38:0e:e3:0c:ed:32:ff:6d:94:59:db:ce:88:44:4c:
12:47:9b:86:f5:e5:31:a7:57:6e:de:bd:fc:ba:5b:
f7:26:3c:6b:2f:1b:a7:66:55:88:6c:ca:15:98:d2:
e4:49:9f:cd:37:08:7f:62:4e:f2:2d:b5:3f:fd:fe:
3d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:CB:B7:6B:10:1C:3A:00:9D:74:6E:D6:ED:6B:8F:EE:87:76:BA:9A
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
6f:71:f1:e9:60:bd:9e:a2:96:84:0b:00:66:93:13:ed:8e:09:
78:39:c1:12:4e:ef:a2:19:6e:3c:b2:38:16:e0:56:db:90:6a:
30:13:db:9f:da:d9:12:ba:cb:b9:f6:0c:90:28:36:4d:65:2e:
bf:1b:e6:68:dd:fb:c2:33:22:4e:5f:5e:3a:c5:31:71:5e:44:
16:2b:d9:82:c6:23:d7:95:20:33:dd:2a:cd:1c:ba:0e:33:2c:
3a:f3:76:44:8d:87:a2:7a:c5:ff:f5:14:1b:10:77:98:a6:6e:
de:fc:ee:11:23:9f:9a:85:1b:66:bc:d1:92:70:63:49:96:04:
d3:c2:1c:74:ff:52:5a:b8:09:11:53:3c:e4:7b:4f:24:2e:ac:
0e:e8:f5:12:87:49:69:6b:12:dd:b4:f7:ce:99:60:ad:44:c8:
c0:35:68:50:6b:4d:30:c0:48:bb:79:61:82:dc:39:6d:df:80:
29:09:d8:fe:04:d2:4f:b8:86:27:3f:42:6b:ad:a7:2f:4f:72:
92:60:4d:1d:cd:1a:e6:52:15:7c:f3:2a:8f:70:1c:94:c3:70:
c1:45:cd:91:5b:82:dd:f7:9c:dc:63:23:51:00:dc:21:87:36:
d7:ec:d5:86:c1:5c:5d:d1:94:4f:a1:16:aa:2c:fa:1d:21:31:
03:bf:ac:40