GeneralInformation

Hostnames	biz-united.com.cn ecs-139-9-138-171.compute.hwclouds-dns.com
Domains	biz-united.com.cn hwclouds-dns.com
Country	China
City	Beijing
Organization	Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)
ISP	Huawei Cloud Service data center
ASN	AS55990

WebTechnologies

CDN

jsDelivr

JavaScript frameworks

JavaScript graphics

JavaScript libraries

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-37582	The RocketMQ NameServer component still has a remote command execution vulnerability as the CVE-2023-33246 issue was not completely fixed in version 5.1.1. When NameServer address are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the update configuration function on the NameServer component to execute commands as the system users that RocketMQ is running as. It is recommended for users to upgrade their NameServer version to 5.1.2 or above for RocketMQ 5.x or 4.9.7 or above for RocketMQ 4.x to prevent these attacks.
CVE-2023-33246	9.8RocketMQ versions 5.1.0 and below are vulnerable to Arbitrary Code Injection
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

21 80 443 7777 8090 8888 9876

-742713693 | 2024-04-15T22:43:59.461424

21 / tcp

220 (vsFTPd 3.0.2)
530 Permission denied.
530 Please login with USER and PASS.
211-Features:
 EPRT
 MDTM
 REST STREAM
 SIZE
 TVFS
 UTF8
211 End

545155127 | 2024-04-17T10:11:43.620313

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 17 Apr 2024 10:11:43 GMT
Content-Type: text/html
Content-Length: 34600
Last-Modified: Sun, 07 Apr 2024 09:19:07 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "6612650b-8728"
Accept-Ranges: bytes

-941968990 | 2024-04-23T18:14:09.555764

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 23 Apr 2024 18:14:08 GMT
Content-Type: text/html
Content-Length: 34756
Last-Modified: Mon, 22 Apr 2024 10:38:07 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "66263e0f-87c4"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:cb:ea:fd:f4:a3:b5:19:a8:02:d6:d8:50:79:3d:4a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G1
        Validity
            Not Before: Sep 28 00:00:00 2023 GMT
            Not After : Sep 27 23:59:59 2024 GMT
        Subject: CN=*.biz-united.com.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b5:cf:3b:47:28:91:84:53:99:c4:25:83:c2:ed:
                    64:44:ea:b6:79:a6:52:a7:fc:67:f9:cd:7a:cd:87:
                    3b:14:de:28:69:38:15:ee:65:bf:d2:35:d4:9a:bf:
                    d7:fd:fe:46:7b:41:2b:95:78:71:82:3d:b7:ba:94:
                    91:17:c1:58:78:3f:ce:be:14:9d:28:9b:e1:86:70:
                    03:3f:2b:f8:a3:83:6b:2f:77:e1:a7:e6:72:bc:e2:
                    67:f4:47:7f:9e:9b:91:55:93:43:25:d4:38:bb:95:
                    10:0d:a1:63:27:9e:a6:61:4e:4c:dd:d5:9a:f7:05:
                    e0:21:e1:bc:41:3a:6b:eb:a0:44:8f:12:4d:ab:d4:
                    e6:fc:fd:1b:f2:9f:6d:5a:7c:80:b1:4a:ae:71:49:
                    bb:ad:85:71:e9:6d:83:f4:ee:95:a4:e0:e6:45:2b:
                    c0:a4:13:1f:26:a4:a1:db:f7:f8:ae:69:12:b6:26:
                    00:e8:e6:59:c4:5e:63:19:56:a0:2d:67:ab:9e:49:
                    5d:b4:39:0d:62:56:d3:2c:e1:82:b2:2f:2e:77:48:
                    81:43:f3:ba:75:26:80:50:b8:59:8e:bb:c7:c0:14:
                    c5:9c:49:a0:bc:4c:d2:30:54:ab:b5:c3:c4:d2:61:
                    d0:12:c4:7c:22:e1:34:b3:bb:73:4b:b8:68:c2:e7:
                    5c:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:74:4F:B2:72:4F:F5:60:BA:50:D1:D7:E6:51:5C:9A:01:87:1A:D7
            X509v3 Subject Key Identifier: 
                74:1A:47:30:32:7E:51:0F:47:46:F8:30:3D:C3:AB:EB:C0:CE:03:3E
            X509v3 Subject Alternative Name: 
                DNS:*.biz-united.com.cn, DNS:biz-united.com.cn
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep 28 06:56:06.277 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:3C:58:0A:C7:C5:05:3F:90:01:B5:98:0C:
                                4E:31:62:17:B1:A9:6C:98:8B:EF:0B:DC:A5:BE:1F:57:
                                E2:4A:98:AB:02:20:5B:7A:54:39:1E:04:33:32:FE:81:
                                3C:9A:D8:7D:66:9E:85:1E:95:CF:ED:03:35:90:0A:B3:
                                18:D5:3F:62:05:05
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Sep 28 06:56:06.229 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:6F:75:AC:4C:3D:09:F1:88:27:D8:87:82:
                                7C:9C:7F:F3:B0:6C:B8:E5:09:20:01:62:33:9F:FB:81:
                                D4:ED:99:18:02:21:00:8D:14:05:1A:D8:3A:86:EB:D6:
                                5A:D6:2C:45:D6:1C:FF:9E:4A:EF:39:76:DA:41:BA:68:
                                F5:A6:CB:F6:15:01:A5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep 28 06:56:06.185 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:73:75:73:09:E6:80:C5:D4:EF:81:3B:32:
                                BB:60:D2:85:AC:48:7F:78:63:0E:DC:50:43:B3:29:4B:
                                07:28:DD:D4:02:20:26:4A:C2:F6:E5:86:48:CC:29:60:
                                DD:F8:B6:0B:4B:CF:85:0B:06:DF:77:5C:BE:FC:76:A2:
                                8D:32:25:D5:FA:28
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        76:b6:d8:3e:76:73:bf:58:3a:eb:9c:64:ff:e3:5e:8a:27:24:
        25:61:9e:1c:39:73:2d:77:d8:dc:b9:ea:0f:b9:cc:29:99:5f:
        86:74:55:3f:ca:86:0c:b2:ea:6e:66:e9:59:b0:46:25:7c:cd:
        be:7a:d6:98:af:42:ee:f3:84:56:53:7d:76:dc:c1:10:b6:06:
        d8:4a:39:8f:c8:d6:68:e4:34:6d:34:d8:61:db:31:19:03:58:
        42:5c:56:a8:d4:85:cd:f0:b9:6b:9c:3b:c2:22:b1:27:0e:f1:
        9b:9d:36:60:0e:90:1c:55:d5:66:c8:d1:7e:7e:a5:6c:53:e1:
        97:d6:86:cb:ab:84:ed:54:d1:5d:c9:53:0f:95:68:2b:b8:26:
        f1:f7:ac:4f:ad:78:b3:bc:8c:d0:42:72:96:11:36:d1:b9:41:
        44:69:f6:4b:c1:90:b1:57:29:1a:be:8b:89:2c:13:3f:7d:b9:
        3d:ac:9e:6a:81:a4:a4:89:a5:72:4e:7f:ff:d2:b1:91:b5:97:
        2f:ef:69:73:be:f9:9b:9a:f8:aa:a3:76:63:21:1f:d1:29:d2:
        6b:6f:fe:78:31:ec:06:77:c9:c2:03:4e:6d:28:66:72:37:d0:
        b5:57:b5:80:75:69:7c:7c:79:85:c9:87:1d:a1:69:9c:66:69:
        64:f8:3f:9a

-901684302 | 2024-03-31T16:41:35.088896

7777 / tcp

HTTP/1.1 200 
Content-Type: text/html;charset=UTF-8
Content-Language: zh-CN
Transfer-Encoding: chunked
Date: Sun, 31 Mar 2024 16:41:34 GMT

-1780445281 | 2024-04-12T14:35:39.889092

8090 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Sun, 07 Apr 2024 09:35:03 GMT
ETag: W/"8af-18eb7e94aa3"
Content-Type: text/html; charset=UTF-8
Content-Length: 2223
Vary: Accept-Encoding
Date: Fri, 12 Apr 2024 14:35:39 GMT
Connection: keep-alive

-2140156613 | 2024-04-09T23:17:12.161019

8888 / tcp

HTTP/1.1 200 
WWW-Authenticate: Basic realm="rocketmq"
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 06 Oct 2021 04:46:05 GMT
Accept-Ranges: bytes
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 6898
Date: Tue, 09 Apr 2024 23:17:12 GMT

609901238 | 2024-04-02T19:29:48.184405

9876 / tcp

\x00\x00\x01X\x00\x00\x00_{"code":0,"flag":1,"language":"JAVA","opaque":1,"serializeTypeCurrentRPC":"JSON","version":355}{"brokerDatas":[{"brokerAddrs":{0:"172.16.0.25:10911"},"brokerName":"ecs-ac03-0001","cluster":"DefaultCluster"}],"filterServerTable":{},"queueDatas":[{"brokerName":"ecs-ac03-0001","perm":7,"readQueueNums":8,"topicSynFlag":0,"writeQueueNums":8}]}

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3761984887287686650 (0x34354152b92ba5fa)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=example.com
        Validity
            Not Before: Oct  6 04:07:04 2020 GMT
            Not After : Dec 31 23:59:59 9999 GMT
        Subject: CN=example.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:a1:2b:c9:03:7d:2d:3a:24:84:95:d6:85:6f:3a:
                    04:c6:64:e8:a5:5a:f6:92:96:42:c9:13:e8:38:cd:
                    9c:a5:44:47:7e:97:83:92:13:87:de:89:70:1b:26:
                    8d:a7:9a:a1:2c:77:1b:3e:a7:cd:e2:d9:e4:8b:7f:
                    5b:03:48:b9:6b:0e:fc:c8:f0:e1:3b:5a:d1:4f:85:
                    9d:28:17:d4:88:75:6d:c8:89:70:a8:ff:aa:ea:92:
                    87:14:a9:a2:e0:9a:c8:2b:b3:8f:de:16:da:ec:fa:
                    05:7f:46:cf:5f:77:1f:72:83:33:ab:05:bb:67:b8:
                    27:f2:dc:0b:37:1d:78:66:23
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        60:22:84:c7:eb:19:c4:51:a1:83:b5:26:a4:50:9c:af:10:02:
        7a:0e:c3:dc:55:47:8e:2d:4c:4e:9b:a7:c6:cc:e8:12:c0:6e:
        ed:4f:66:60:23:ce:ed:6d:76:96:fb:fb:c3:18:94:79:eb:b8:
        82:70:2c:c0:5a:15:91:94:1c:eb:3c:ca:45:1b:82:df:8e:20:
        a2:12:f2:36:13:c0:5a:f3:1f:10:64:a9:5d:b8:10:a9:75:78:
        e0:3c:e9:24:51:95:e9:30:b9:e5:2f:61:29:04:25:74:64:f8:
        99:23:34:2a:fa:97:f4:60:44:49:52:68:88:40:74:bb:ae:bc:
        d2:99

139.9.138.171

Last Seen: 2024-04-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-742713693 | 2024-04-15T22:43:59.461424
21 / tcp

545155127 | 2024-04-17T10:11:43.620313
80 / tcp

nginx1.18.0

-941968990 | 2024-04-23T18:14:09.555764
443 / tcp

nginx1.18.0

-901684302 | 2024-03-31T16:41:35.088896
7777 / tcp

-1780445281 | 2024-04-12T14:35:39.889092
8090 / tcp

-2140156613 | 2024-04-09T23:17:12.161019
8888 / tcp

609901238 | 2024-04-02T19:29:48.184405
9876 / tcp

RocketMQ4.7.1

Products

Pricing

Contact Us

139.9.138.171

Last Seen: 2024-04-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-742713693 | 2024-04-15T22:43:59.461424 21 / tcp

545155127 | 2024-04-17T10:11:43.620313 80 / tcp

nginx1.18.0

-941968990 | 2024-04-23T18:14:09.555764 443 / tcp

nginx1.18.0

-901684302 | 2024-03-31T16:41:35.088896 7777 / tcp

-1780445281 | 2024-04-12T14:35:39.889092 8090 / tcp

-2140156613 | 2024-04-09T23:17:12.161019 8888 / tcp

609901238 | 2024-04-02T19:29:48.184405 9876 / tcp

RocketMQ4.7.1

Products

Pricing

Contact Us

-742713693 | 2024-04-15T22:43:59.461424
21 / tcp

545155127 | 2024-04-17T10:11:43.620313
80 / tcp

-941968990 | 2024-04-23T18:14:09.555764
443 / tcp

-901684302 | 2024-03-31T16:41:35.088896
7777 / tcp

-1780445281 | 2024-04-12T14:35:39.889092
8090 / tcp

-2140156613 | 2024-04-09T23:17:12.161019
8888 / tcp

609901238 | 2024-04-02T19:29:48.184405
9876 / tcp