GeneralInformation

Hostnames	vps-8dd2e15c.vps.ovh.net
Domains	ovh.net
Country	Germany
City	Frankfurt am Main
Organization	OVH GmbH
ISP	OVH SAS
ASN	AS16276
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

-1394341094 | 2024-04-17T00:17:34.014531

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 17 Apr 2024 00:17:33 GMT
Content-Type: text/html
Content-Length: 2289
Last-Modified: Tue, 13 Jun 2023 14:02:06 GMT
Connection: keep-alive
ETag: "648876de-8f1"
Accept-Ranges: bytes

780672404 | 2024-04-18T23:06:28.822749

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 18 Apr 2024 23:06:28 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:27:ef:f6:4c:9f:c6:66:04:9c:ea:49:44:2b:92:10:34:fa
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jun 14 19:08:34 2023 GMT
            Not After : Sep 12 19:08:33 2023 GMT
        Subject: CN=*.dig.w-ays.net
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:f4:f6:ff:6b:82:de:6c:22:88:64:64:59:e4:35:
                    e2:d9:b0:f8:d3:d4:91:ee:d1:e2:77:ec:ae:54:d0:
                    be:3f:ad:f5:5e:aa:5a:08:45:55:25:81:07:c4:c3:
                    a2:9f:9d:b4:16:b8:0b:65:fd:54:e4:9c:b1:b0:ab:
                    e2:d8:b7:3b:9b
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                AF:EF:72:6E:30:77:F1:56:6A:85:4B:EF:5C:7F:89:E7:94:30:61:B3
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.dig.w-ays.net
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
                                5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
                    Timestamp : Jun 14 20:08:34.877 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:37:28:67:42:BD:34:E0:E4:74:72:1C:F5:
                                1A:88:3B:F6:E5:20:96:E0:9A:CE:E9:9B:73:22:06:40:
                                0C:5E:C0:6A:02:20:35:31:FF:EF:46:F9:D6:FB:56:78:
                                DB:6A:80:F9:69:4D:EB:0E:B5:E8:59:E8:9B:A7:F7:03:
                                76:A7:E1:85:3A:D2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
                                03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
                    Timestamp : Jun 14 20:08:34.867 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6E:85:8D:90:1B:11:A2:3E:CC:29:40:BC:
                                9A:55:D0:D3:90:A9:5A:F8:58:AB:CA:5E:51:A1:CB:2D:
                                BD:52:A2:9A:02:20:25:96:26:9D:9E:FC:3E:F8:72:D6:
                                F4:E3:25:C8:A3:ED:D4:A2:30:AD:A0:BD:EC:28:C6:10:
                                9D:9C:98:6E:CB:98
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9c:b8:f4:0f:c0:80:2c:a2:09:f4:52:ec:5a:1e:d9:6a:19:1c:
        29:fe:3c:73:0f:9c:1c:51:c2:ef:3c:e2:49:5f:e5:4b:51:03:
        15:42:6d:44:19:b1:f1:24:5b:15:39:17:6d:76:39:9c:15:31:
        5e:4e:f1:de:55:bc:6a:1a:b7:a4:7e:3b:78:ee:ed:86:c0:ba:
        9b:bb:61:96:57:39:96:39:65:a0:b3:a7:e6:d3:24:91:71:e5:
        b5:c5:2e:a7:16:d6:b5:05:65:76:37:ac:48:c6:b8:76:f2:ca:
        a9:c7:dd:0b:ab:90:89:59:39:f6:d3:67:13:7d:d4:43:70:66:
        77:17:65:07:6f:87:48:71:28:c5:61:5d:f2:33:e2:f8:1b:f3:
        e0:36:f3:43:bf:9a:04:74:3b:98:e8:5d:66:f2:31:05:e7:23:
        bd:e5:f9:91:d3:46:d1:31:64:1e:4d:03:93:df:2f:d7:dc:fc:
        e9:45:44:1b:1b:1a:78:87:2c:10:63:db:70:50:4a:fd:75:d9:
        db:83:66:cd:df:c4:30:43:4b:1d:d9:06:71:0d:e6:da:64:b8:
        bf:6c:57:20:d8:14:b3:97:04:16:0a:d2:84:85:70:1a:9b:ce:
        21:40:73:c6:c0:43:4f:a2:74:fb:de:f6:3e:89:d1:c7:a1:f7:
        ee:24:21:34

141.95.86.195

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1394341094 | 2024-04-17T00:17:34.014531
80 / tcp

nginx1.18.0

780672404 | 2024-04-18T23:06:28.822749
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

141.95.86.195

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1394341094 | 2024-04-17T00:17:34.014531 80 / tcp

nginx1.18.0

780672404 | 2024-04-18T23:06:28.822749 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1394341094 | 2024-04-17T00:17:34.014531
80 / tcp

780672404 | 2024-04-18T23:06:28.822749
443 / tcp