GeneralInformation

Cloud Provider	DigitalOcean
Cloud Region	in-ka
Country	India
City	Doddaballapura
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-46118

4.9RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API and cause target node to be terminated by an "out-of-memory killer"-like mechanism. This vulnerability has been patched in versions 3.11.24 and 3.12.7.

CVE-2022-31008

7.5RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker (link) state. The encryption key used to encrypt the URI was seeded with a predictable secret. This means that in case of certain exceptions related to Shovel and Federation plugins, reasonably easily deobfuscatable data could appear in the node log. Patched versions correctly use a cluster-wide secret for that purpose. This issue has been addressed and Patched versions: `3.10.2`, `3.9.18`, `3.8.32` are available. Users unable to upgrade should disable the Shovel and Federation plugins.

OpenPorts

22 4369 5672

1608867765 | 2024-04-13T06:04:03.615444

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBG9oBHmg1JIyIzavFE63LH8L
hFn6gpt9SDQM7a7Ib17G1yaQ6Ol8cdkMqTNv6Us9VPHbkztN5Ib+45Zdg7pjR54=
Fingerprint: a5:60:91:8c:2d:2c:df:7d:e5:4f:9a:42:10:35:5a:f2

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

50704379 | 2024-04-17T08:30:37.441116

4369 / tcp

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

-268271615 | 2024-04-17T08:30:39.724036

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.9.13
  Platform: Erlang/OTP 24.2.1
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

157.245.98.124

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1608867765 | 2024-04-13T06:04:03.615444
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

50704379 | 2024-04-17T08:30:37.441116
4369 / tcp

Erlang Port Mapper Daemon

-268271615 | 2024-04-17T08:30:39.724036
5672 / tcp

RabbitMQ3.9.13

Products

Pricing

Contact Us

157.245.98.124

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1608867765 | 2024-04-13T06:04:03.615444 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

50704379 | 2024-04-17T08:30:37.441116 4369 / tcp

Erlang Port Mapper Daemon

-268271615 | 2024-04-17T08:30:39.724036 5672 / tcp

RabbitMQ3.9.13

Products

Pricing

Contact Us

1608867765 | 2024-04-13T06:04:03.615444
22 / tcp

50704379 | 2024-04-17T08:30:37.441116
4369 / tcp

-268271615 | 2024-04-17T08:30:39.724036
5672 / tcp