GeneralInformation

Hostnames	cathdb.info www.cathdb.info cath.biochem.ucl.ac.uk
Domains	cathdb.info ucl.ac.uk
Country	United Kingdom
City	London
Organization	University College London
ISP	Jisc Services Limited
ASN	AS786

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

1574502603 | 2024-05-12T13:19:04.983921

80 / tcp

HTTP/1.1 503 Backend fetch failed
Date: Sun, 12 May 2024 13:19:03 GMT
Server: Varnish
Content-Type: text/html; charset=utf-8
Retry-After: 5
X-Varnish: 783353282
Age: 0
Via: 1.1 varnish-v4
Content-Length: 286
Connection: keep-alive

-319783803 | 2024-05-12T17:00:53.731929

443 / tcp

HTTP/1.1 503 Backend fetch failed
Server: nginx/1.20.1
Date: Sun, 12 May 2024 17:00:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 286
Connection: keep-alive
Retry-After: 5
X-Varnish: 790596932
Age: 0
Via: 1.1 varnish-v4

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:41:d9:43:26:01:38:fe:dd:93:b0:71:40:22:5c:98:6b:24
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 15 22:31:01 2024 GMT
            Not After : Jul 14 22:31:00 2024 GMT
        Subject: CN=cathdb.info
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bb:49:fd:dc:c7:53:9d:df:a6:d5:c2:d0:5e:05:
                    dd:92:07:d8:df:77:73:60:1a:05:71:45:46:f7:7f:
                    d2:37:60:55:9a:42:cb:d4:38:e5:bd:d8:3f:3d:65:
                    94:2d:2a:14:e4:10:9a:75:32:ba:bf:60:03:6b:3b:
                    17:c2:71:21:f8:46:5b:d1:db:9e:97:66:aa:a1:ae:
                    31:be:77:e2:51:6f:09:a9:72:03:ba:cb:f8:13:47:
                    0f:39:e1:28:50:64:ed:f8:ea:95:28:61:41:51:89:
                    cf:c0:3d:ce:04:99:4c:12:2c:d4:87:9a:ba:97:aa:
                    28:11:1f:7b:eb:16:a1:41:74:49:ad:32:c9:bf:17:
                    1f:40:a5:34:e8:5e:db:7a:e2:6a:d4:bd:52:86:d7:
                    8c:4c:e4:77:8a:6d:b8:a5:e5:e1:eb:7a:0a:64:aa:
                    58:e6:fc:5e:81:58:2b:38:37:9d:f2:93:89:de:1f:
                    76:d7:84:66:24:e5:b0:46:0c:38:41:a1:3f:cb:99:
                    6f:98:60:12:37:66:cb:87:4d:d7:df:86:b5:30:7a:
                    d4:f8:bf:bd:ac:11:79:22:3b:74:7f:5d:2f:f0:7f:
                    3c:3b:d6:fa:0a:68:9c:9b:37:36:7a:ac:9d:20:2a:
                    2a:38:9d:99:e4:27:c9:9e:fc:a3:0c:1d:df:4b:f8:
                    c5:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                2E:FB:78:CE:40:71:4C:25:9D:C1:4D:C4:8D:F0:A4:3B:64:DE:71:18
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cathdb.info, DNS:www.cathdb.info
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 15 23:31:01.194 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:42:D9:D9:58:46:24:75:E1:1B:B1:7A:6F:
                                18:B7:4B:56:13:49:2F:F0:E6:9A:26:8D:5C:A8:96:DA:
                                E1:24:D6:38:02:20:56:50:90:94:9C:8A:92:B9:66:80:
                                9B:E2:FE:1B:D4:4D:8F:2C:E0:17:52:F3:60:63:88:77:
                                C6:C8:80:E3:B1:11
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 15 23:31:01.227 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C5:CC:6E:85:6B:16:ED:05:E8:FF:5D:
                                5D:76:DC:60:DC:C2:29:94:A6:ED:F6:C1:9B:F1:E8:F3:
                                15:D9:89:DE:53:02:21:00:D5:7D:03:2A:08:97:3C:60:
                                85:4E:01:01:64:1F:47:C6:6B:02:85:B9:41:B6:01:50:
                                EB:C9:7C:E5:98:D7:85:6D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        6e:3a:7d:d7:2a:f5:53:25:a7:f6:66:d5:68:60:34:e2:57:a5:
        dc:19:1a:eb:6d:db:f8:75:29:9b:4a:37:83:80:2d:d1:26:2d:
        87:fe:14:3d:21:70:9b:87:1e:22:13:49:13:48:8d:9f:d4:17:
        be:71:c6:ac:e9:41:08:9d:e4:73:b1:bb:f4:30:11:d7:34:c6:
        4b:8a:7e:38:86:b6:ca:5c:54:48:eb:af:08:bb:3a:df:c4:fa:
        12:92:c7:60:4d:3a:69:0b:21:b8:d6:80:bf:95:72:ae:5e:0f:
        ef:2c:93:a9:2c:1f:bf:59:97:ee:67:50:44:66:41:be:35:17:
        b2:b8:5f:b4:38:f5:c2:b2:f1:f3:8b:5c:f4:87:55:69:83:f7:
        5b:a3:2e:3d:7d:71:95:2c:36:e9:9e:c4:cf:a7:7c:ed:79:f7:
        02:08:67:94:ec:5b:2f:66:6e:1b:39:cb:c6:a0:9d:07:87:1d:
        60:fe:a1:1e:e5:16:75:ad:46:2c:3b:1f:a9:ec:7f:92:1c:d9:
        58:a4:56:7f:5e:79:b8:4a:1e:33:a4:ea:58:87:bf:00:bb:08:
        2d:99:dd:e0:27:79:af:9a:0a:b0:8f:04:22:db:d9:52:4d:08:
        51:7b:55:20:a5:e9:e8:91:2e:01:d8:3e:73:17:db:99:dd:04:
        6b:18:44:aa

128.40.46.15

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1574502603 | 2024-05-12T13:19:04.983921
80 / tcp

-319783803 | 2024-05-12T17:00:53.731929
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

128.40.46.15

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1574502603 | 2024-05-12T13:19:04.983921 80 / tcp

-319783803 | 2024-05-12T17:00:53.731929 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

1574502603 | 2024-05-12T13:19:04.983921
80 / tcp

-319783803 | 2024-05-12T17:00:53.731929
443 / tcp