GeneralInformation

Hostnames	c1.erome.com ns5008986.ip-15-235-12.net
Domains	erome.com ip-15-235-12.net
Country	Canada
City	Beauharnois
Organization	OVH Hosting, Inc.
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-2072671914 | 2024-05-14T20:36:32.064937

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC692fmi85Idm3dNrW7RAeaSlJpMTP7Rl79eC1soqkfBfMH
54fhJxU1l9RAfOk9sctdh5HnEotzHZ4DSpqS9zo0N2WmF3DvE8eusdyoAZZfnahgQGNVqU4KDRSB
bf3lQQXjKZKcqhUc8BLRVSo5Gt+YFUClxwB/I/m0U9vx28r8mEoyD2Pt6Vdzsa79EAlXf1Ift5vy
+aS6+1NPl0v+Gp12syX5hzgxrOJ9QGqXAI31n0fAzUM1qXwWriBQFPihlpyn4x+cz8OPLRr1xEKm
LC5gnhu9eHm0fFwCxrVCotFpAjSyZYGalP9rEBPZFV84s05PcFlTYg6qzbCoEc4kKBFP1cLvuA4T
a6K1Ob9PF+dQRGPNyaAwdorCJLlzRmYyidGT+EV0NyB8wxFG5pnGEXnyfAeMawiPW/73uzB3GJff
Xn5QifBpLJyLL7zczgwMvAH2TPr2Sk0vuvBmzUgWn5XWZlLNOCmll2MJefSct6MPQlsj7gt7vxzi
YHJI3AI+FOc=
Fingerprint: 6d:7f:ce:83:f3:b7:c7:4e:2e:71:c2:a1:33:12:66:13

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-22T13:23:40.309395

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 22 May 2024 13:23:12 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Thu, 31 Aug 2023 12:14:19 GMT
Connection: keep-alive
ETag: "64f0841b-264"
Accept-Ranges: bytes

-158149353 | 2024-04-29T05:38:06.659867

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Mon, 29 Apr 2024 05:38:06 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:89:d7:08:36:41:5e:ca:d5:9e:9b:fe:59:4a:9a:c8:2b:60
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 27 21:04:21 2024 GMT
            Not After : Jul 26 21:04:20 2024 GMT
        Subject: CN=c1.erome.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:d7:15:af:f6:cb:e8:f0:94:80:35:3f:90:ec:6f:
                    8a:19:36:47:6f:e7:4b:6e:dd:ad:cf:0d:d4:0c:7b:
                    db:23:81:c6:03:5e:57:27:47:78:bf:e0:8a:5a:24:
                    0a:5a:67:59:3f:5e:6e:a0:01:f1:1c:32:33:5e:09:
                    72:d0:ef:78:b9
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                EC:07:B4:67:40:76:80:04:AD:36:87:1D:5F:B9:27:99:74:EE:7F:DD
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:c1.erome.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 27 22:04:21.838 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CB:FC:2D:98:D2:9D:F4:40:38:71:A4:
                                24:24:54:16:F0:E1:BF:8B:FB:75:9C:95:E3:D9:E4:08:
                                48:9E:3B:3F:38:02:21:00:C0:C2:F4:25:B7:88:C2:29:
                                04:92:15:EA:82:1B:AD:55:4C:0A:01:5C:CE:D9:46:9D:
                                6F:9C:7C:FB:5E:52:F4:D7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 27 22:04:21.911 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C0:09:A2:D8:04:49:E0:6B:6A:0C:BD:
                                CA:2E:E8:48:04:81:2E:9D:34:C2:2E:ED:10:96:4F:47:
                                E1:95:B0:36:3D:02:21:00:FA:E1:A0:2D:78:50:99:61:
                                EC:74:1E:68:B8:DC:89:95:00:17:C2:F0:91:FF:A0:E6:
                                83:B3:19:D9:8D:66:24:51
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        58:c3:70:0b:e5:6b:9b:6e:ac:ff:21:47:18:cf:a5:83:93:37:
        2f:8e:91:68:02:ad:d1:dd:6a:6c:ba:67:ad:1b:12:6f:d4:88:
        4b:85:45:66:7e:c9:c9:1a:ab:71:f0:eb:f6:10:0e:14:c5:93:
        f7:62:1a:9d:06:65:c2:35:9f:dd:13:00:51:65:ed:85:a0:8a:
        6d:fa:fa:a1:48:50:34:9e:5d:f9:7f:56:1d:c0:f9:a9:70:cd:
        9d:ae:1d:0b:64:a5:11:1f:a2:43:2c:a6:57:bc:0e:2c:73:3c:
        62:8a:d9:42:49:0f:20:90:8f:da:11:57:59:d9:ea:0c:0d:b2:
        b6:e6:a6:d5:55:dd:16:86:da:65:34:5b:af:90:41:3d:52:f1:
        c3:b3:b9:86:f7:25:ee:b6:46:bd:36:14:0e:8c:70:aa:c8:96:
        bb:a6:b4:e2:80:af:7a:a6:92:6f:39:c5:3f:ea:97:0b:9d:67:
        6f:3e:6a:a2:4f:fb:4e:69:c3:35:ca:92:d1:e4:dd:95:2a:fa:
        a3:19:b4:da:d9:83:58:88:b1:9a:41:dd:af:1e:ea:1d:0d:92:
        71:86:72:66:e6:d0:c7:16:a9:bd:18:2b:97:56:b1:33:bd:44:
        90:50:c6:b8:d9:0f:66:0c:8c:b0:8e:b7:3d:84:18:97:84:83:
        1e:60:d0:c7

15.235.12.137

Last Seen: 2024-05-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2072671914 | 2024-05-14T20:36:32.064937
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

1651973090 | 2024-05-22T13:23:40.309395
80 / tcp

nginx1.18.0

-158149353 | 2024-04-29T05:38:06.659867
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

15.235.12.137

Last Seen: 2024-05-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2072671914 | 2024-05-14T20:36:32.064937 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

1651973090 | 2024-05-22T13:23:40.309395 80 / tcp

nginx1.18.0

-158149353 | 2024-04-29T05:38:06.659867 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-2072671914 | 2024-05-14T20:36:32.064937
22 / tcp

1651973090 | 2024-05-22T13:23:40.309395
80 / tcp

-158149353 | 2024-04-29T05:38:06.659867
443 / tcp