GeneralInformation

Hostnames	analytics.mycrhnet.com crhdev.med.und.edu
Domains	mycrhnet.com und.edu
Country	United States
City	Grand Forks
Organization	North Dakota State University - Computer Center
ISP	State of North Dakota, ITD
ASN	AS19530
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

589765266 | 2024-05-11T07:45:59.781286

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 07:45:58 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://crhdev.med.und.edu/

869281729 | 2024-05-11T15:16:10.574463

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 15:16:10 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive
Referrer-Policy: origin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:65:98:9c:4e:e0:48:38:a2:b0:c5:67:18:50:8c:b8:2b:e5
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 14 04:37:06 2024 GMT
            Not After : Jun 12 04:37:05 2024 GMT
        Subject: CN=analytics.mycrhnet.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c8:35:eb:50:39:c4:23:69:c2:f8:1f:81:2d:1e:
                    ef:5f:6d:f3:bb:b4:2c:1c:3a:34:47:05:c2:8f:a3:
                    f2:a2:68:ff:07:74:2c:8e:bb:03:bc:b3:04:b3:2d:
                    e4:c7:a6:7b:22:66:a4:22:9b:cb:c5:e5:02:7f:12:
                    be:7a:59:b3:29:bb:62:cd:f3:98:e0:0e:a0:62:87:
                    80:4f:c3:6c:d8:0e:fc:bd:59:26:dc:c9:3a:ac:a1:
                    1d:6d:c1:06:5f:91:50:12:d0:a0:bb:aa:72:e6:0e:
                    06:ca:05:7a:db:d1:d1:51:47:38:1f:db:ff:70:67:
                    5d:cc:9f:59:cc:f7:2b:11:da:f2:66:ec:79:42:0c:
                    6f:b9:d3:9f:b6:28:06:a0:7a:60:c0:a0:ce:4b:2d:
                    b7:f5:2a:4a:2d:a2:ef:76:64:f7:a3:10:a7:5e:d4:
                    6a:34:9f:e1:e6:71:24:50:3f:ac:50:27:9f:b6:88:
                    77:00:8c:63:d5:6b:d2:e9:2d:8e:02:44:87:c7:d0:
                    22:e5:b2:60:1d:b5:3a:00:04:f3:e0:f6:51:5c:c4:
                    8f:ea:cd:0f:57:0b:bc:45:c1:a9:d6:a8:80:cf:92:
                    78:4d:c4:13:e1:ea:30:96:73:30:7c:dd:f5:b5:5c:
                    1f:61:3e:ed:26:e6:93:44:5f:ce:70:e3:8f:2e:c3:
                    50:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                7F:61:06:86:80:8F:44:89:81:72:08:1F:DB:48:BC:B7:CC:01:86:6D
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:analytics.mycrhnet.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 14 05:37:06.840 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:88:8A:A0:40:6B:0A:29:AE:2C:8F:06:
                                E5:7B:A6:D8:2F:2E:00:26:9E:DD:36:72:BD:C4:65:68:
                                BD:75:90:98:A9:02:20:3A:E1:96:CE:3B:94:94:9E:35:
                                EB:22:F0:1C:B7:54:8E:EA:B3:C7:7F:99:BA:2C:66:CC:
                                76:E2:C1:1E:73:08:25
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 14 05:37:06.881 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7F:D4:73:E6:5F:99:05:FF:CA:DA:61:06:
                                A7:59:0D:88:6A:03:ED:A6:60:73:BA:66:B7:0E:1C:4F:
                                77:4D:70:2F:02:21:00:DF:3C:39:F7:6B:09:6F:4F:A1:
                                2E:61:8C:03:ED:F6:81:43:12:A3:70:DF:4B:3F:6F:A4:
                                77:FF:24:A8:79:12:42
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3a:f8:b1:05:df:e1:9f:4a:83:91:52:29:a1:12:bc:bd:5f:80:
        8d:35:47:0c:ff:29:21:45:09:c5:ce:ad:1a:28:ad:b1:0b:85:
        3a:ec:b4:a8:ad:53:2f:7e:8f:f1:0f:88:9c:57:53:27:22:4f:
        cc:15:23:70:4f:5f:59:1b:4b:b9:d0:74:c7:64:47:7d:7b:26:
        6a:07:ea:cc:88:fd:7f:9a:1b:63:18:39:91:be:e4:8c:4b:a4:
        26:59:16:5b:06:59:20:e6:ec:01:21:b4:1c:77:04:70:57:34:
        54:b8:f2:4a:ca:86:d4:92:3f:99:73:f9:68:d4:94:3f:7a:2e:
        c2:35:5d:7d:30:6e:de:ae:c6:6a:f2:df:55:63:13:f9:c2:d4:
        4e:e5:a0:f2:ed:a9:91:2b:e4:e3:19:8f:44:6c:5b:02:9e:25:
        b1:91:40:da:aa:51:11:a3:b0:05:3b:66:e1:06:27:5b:a2:fa:
        c7:ea:15:db:84:1c:b9:82:d7:cf:45:48:05:ad:0f:44:97:cc:
        60:ae:f8:ab:73:6d:bc:7c:4b:18:48:86:ec:37:e8:df:cb:8f:
        22:69:4f:8b:81:cb:94:27:c9:5e:4e:89:de:b3:bb:39:0d:b1:
        4d:0a:d5:23:4d:1d:7a:21:ab:5a:19:61:9b:89:d1:b6:6d:53:
        fc:0f:62:19

134.129.166.245

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

589765266 | 2024-05-11T07:45:59.781286
80 / tcp

nginx1.18.0

869281729 | 2024-05-11T15:16:10.574463
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

134.129.166.245

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

589765266 | 2024-05-11T07:45:59.781286 80 / tcp

nginx1.18.0

869281729 | 2024-05-11T15:16:10.574463 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

589765266 | 2024-05-11T07:45:59.781286
80 / tcp

869281729 | 2024-05-11T15:16:10.574463
443 / tcp