GeneralInformation

Hostnames	vmi1573421.contaboserver.net apiwpp.sharkpag.com
Domains	contaboserver.net sharkpag.com
Country	United Kingdom
City	Portsmouth
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 631 3306

-256143506 | 2024-05-25T21:44:43.876818

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQDbQlctAxkTHxM8VV4zgCToXam7dYHxlpAyToAKPntYViB9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Fingerprint: 16:7d:f5:b5:06:8e:1b:bb:65:4e:3a:a2:46:b6:52:f2

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-06-01T11:41:18.769104

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 01 Jun 2024 11:41:18 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 26 Dec 2023 11:35:43 GMT
Connection: keep-alive
ETag: "658aba8f-264"
Accept-Ranges: bytes

780672404 | 2024-05-25T09:17:40.336593

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 25 May 2024 09:17:40 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:ba:86:9d:06:a6:b4:6b:06:13:d4:88:f7:52:1e:89:0e:0e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  5 01:09:38 2024 GMT
            Not After : Aug  3 01:09:37 2024 GMT
        Subject: CN=apiwpp.sharkpag.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b2:c2:0a:fa:86:62:d7:b3:ea:92:e4:3f:b2:78:
                    d7:9f:58:88:4a:f0:fc:ca:00:72:33:c8:2c:90:52:
                    e2:d9:99:c9:d0:d8:04:d4:6f:f5:bd:43:8d:a8:01:
                    0c:32:c5:bf:f4:d3:88:cb:53:01:77:16:b2:17:5f:
                    92:e9:81:59:94:90:d8:a4:13:b2:6a:0f:fd:e3:e9:
                    5d:c5:a8:bc:22:c2:97:3f:ad:c1:48:9c:69:9d:5b:
                    4f:53:2a:9a:91:83:fd:55:29:a1:7c:fe:29:c9:39:
                    31:3d:6b:fd:b4:b5:d6:d7:70:0a:99:56:9c:40:79:
                    b4:a3:15:04:23:8b:7d:41:cc:6f:0f:de:46:56:c8:
                    4f:bd:80:5f:75:b3:72:73:16:37:44:9c:12:5d:65:
                    bc:14:d5:9f:22:14:c1:c0:81:3b:76:b9:88:5e:aa:
                    7f:db:40:cc:03:26:e1:b7:f7:d7:87:55:da:99:d6:
                    74:59:d0:e7:1b:fa:aa:84:04:cc:e8:23:07:e4:b4:
                    d8:59:bb:3f:72:35:2b:f0:7d:c2:81:73:bb:96:85:
                    e2:16:06:29:93:93:4c:ac:78:4a:67:a4:4d:a3:30:
                    97:d5:37:16:94:fc:d8:aa:ce:2d:4f:3c:77:04:db:
                    96:96:b0:8c:f2:6c:b9:c7:7f:7e:c2:ec:e6:39:ae:
                    49:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                60:43:FA:39:D0:69:D9:D1:D8:6B:87:25:B3:52:31:8D:99:7D:50:6B
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:apiwpp.sharkpag.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : May  5 02:09:38.426 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:02:E6:DE:87:48:FE:0C:54:8C:3C:4F:1E:
                                5A:3F:C8:6C:97:D8:2C:90:0D:AC:95:FF:7F:6A:7D:39:
                                07:7F:98:A4:02:21:00:E4:7A:53:C7:45:01:8C:60:99:
                                34:6C:E5:7C:CE:41:AB:F3:2B:F9:8B:17:33:D3:33:88:
                                91:7E:E2:9F:4B:66:EF
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May  5 02:09:38.464 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F2:AB:DC:0E:13:26:E8:9F:99:F5:73:
                                12:EB:11:0A:B6:00:E3:54:3B:C4:5B:6A:4B:51:9D:D0:
                                ED:B5:25:6D:17:02:21:00:9A:E9:7D:3F:F3:65:28:07:
                                72:0F:EE:3C:B0:60:DB:D2:42:76:4E:D8:FE:BB:7D:39:
                                91:25:B4:84:F7:4B:22:21
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        aa:21:86:13:a4:cc:67:69:67:39:c0:8a:e5:ff:1f:a6:cb:e6:
        a2:90:13:5d:73:98:04:8a:fb:cb:e0:e9:8f:00:fd:cf:bd:e7:
        af:82:0e:60:06:87:bd:b6:e5:fc:ae:73:95:f9:a6:a0:99:38:
        fb:a7:30:6b:74:5b:f4:a8:82:f3:18:5b:e5:10:1d:70:c3:01:
        82:c5:65:c7:a7:41:58:b0:c8:3c:4a:72:09:ba:e1:dd:7a:0c:
        b1:60:1c:03:ca:df:50:ae:db:0f:83:b5:7d:9c:e1:31:92:21:
        a7:17:61:e1:8a:cf:2d:05:75:c1:14:3a:11:65:8b:d3:c7:f5:
        24:72:82:c9:5c:07:aa:4e:08:14:cd:67:66:99:b5:8d:e6:3b:
        2e:8e:87:8d:c2:d7:a3:78:6d:07:20:fd:82:98:a6:5a:e3:d9:
        de:d1:9b:5d:ed:4a:c0:f3:a3:72:af:75:28:c8:fd:ae:a7:29:
        b4:4e:15:9e:a2:fb:36:e6:7a:4a:7f:53:07:bf:a5:de:10:c1:
        6e:7b:a3:b4:14:2e:10:ae:70:a0:c8:00:a9:eb:8f:41:1d:f1:
        ee:6a:0e:94:ae:33:32:dc:8b:3a:77:ad:3f:17:ab:d0:39:f4:
        78:71:5b:70:13:a2:2d:cd:26:60:8d:3c:10:e9:fd:e1:04:1e:
        71:bb:5f:fd

-1617379090 | 2024-05-25T15:19:19.387957

631 / tcp

HTTP/1.1 403 Forbidden
Connection: close
Content-Language: en
Content-Length: 370
Content-Type: text/html; charset=utf-8
Date: Sat, 25 May 2024 15:19:19 GMT
Accept-Encoding: gzip, deflate, identity
Server: CUPS/2.4 IPP/2.1
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none'

-1702254260 | 2024-05-19T03:57:10.485400

3306 / tcp

MariaDB:
  Protocol Version: 10
  Version: 10.3.39-MariaDB-0ubuntu0.20.04.2
  Capabilities: 63486
  Server Language: 45
  Server Status: 2
  Extended Server Capabilities: 33215
  Authentication Plugin: mysql_native_password

149.102.129.162

Last Seen: 2024-06-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-256143506 | 2024-05-25T21:44:43.876818
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-06-01T11:41:18.769104
80 / tcp

nginx1.18.0

780672404 | 2024-05-25T09:17:40.336593
443 / tcp

nginx1.18.0

-1617379090 | 2024-05-25T15:19:19.387957
631 / tcp

CUPS (IPP)2.4.8

-1702254260 | 2024-05-19T03:57:10.485400
3306 / tcp

MariaDB10.3.39-MariaDB-0ubuntu0.20.04.2

Products

Pricing

Contact Us

149.102.129.162

Last Seen: 2024-06-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-256143506 | 2024-05-25T21:44:43.876818 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-06-01T11:41:18.769104 80 / tcp

nginx1.18.0

780672404 | 2024-05-25T09:17:40.336593 443 / tcp

nginx1.18.0

-1617379090 | 2024-05-25T15:19:19.387957 631 / tcp

CUPS (IPP)2.4.8

-1702254260 | 2024-05-19T03:57:10.485400 3306 / tcp

MariaDB10.3.39-MariaDB-0ubuntu0.20.04.2

Products

Pricing

Contact Us

-256143506 | 2024-05-25T21:44:43.876818
22 / tcp

1651973090 | 2024-06-01T11:41:18.769104
80 / tcp

780672404 | 2024-05-25T09:17:40.336593
443 / tcp

-1617379090 | 2024-05-25T15:19:19.387957
631 / tcp

-1702254260 | 2024-05-19T03:57:10.485400
3306 / tcp