GeneralInformation

Hostnames	elastic.driva.io ns522882.ip-158-69-225.net
Domains	driva.io ip-158-69-225.net
Country	Canada
City	Châteauguay
Organization	OVH Hosting, Inc.
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8200 9200

-2006999913 | 2024-04-18T23:09:59.897546

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFIP15E/AGjXpwpzAE9V/7Oe
vBErTlib0ab1oh90mVBHkFV/syfFP3hq4bw5jrDrjlauYSZnbQeiPoCR8wMU0Vo=
Fingerprint: b0:e6:c0:18:49:cd:6b:07:b0:4d:4a:60:d9:e5:51:f3

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-19T20:38:52.901507

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 19 Apr 2024 20:38:52 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-1564951494 | 2024-04-11T06:50:25.323445

443 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 11 Apr 2024 06:50:19 GMT
Content-Type: application/json
Content-Length: 459
Connection: keep-alive
WWW-Authenticate: Basic realm="security" charset="UTF-8"
WWW-Authenticate: Bearer realm="security"
WWW-Authenticate: ApiKey

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:49:f0:03:7a:2e:ec:0c:41:55:e6:26:c9:ae:f1:d6:30:af
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  4 10:16:48 2024 GMT
            Not After : Jul  3 10:16:47 2024 GMT
        Subject: CN=elastic.driva.io
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:de:00:bc:4a:6e:d5:a6:65:5b:eb:aa:cc:15:
                    7b:5d:bc:da:c7:80:b4:8c:38:66:73:a4:17:cf:e1:
                    57:07:39:18:56:e1:3a:4a:f8:60:4d:a6:5b:25:58:
                    da:8b:08:e6:79:64:68:ec:f7:8f:ef:c7:17:5f:04:
                    ca:7f:2d:22:16:3b:91:66:20:05:43:a9:b5:92:9b:
                    4d:92:be:ab:93:cb:c2:63:d1:ce:cc:ef:89:29:5e:
                    90:de:70:1b:0c:44:0b:95:b5:e3:ba:fc:76:c5:a6:
                    fa:e5:e5:e3:9a:fa:ad:b3:e8:44:cd:c8:69:9f:18:
                    91:9d:12:ae:f9:cb:2a:8e:84:f0:59:66:72:ad:7a:
                    7f:c6:84:77:a3:8b:5d:b4:86:1b:62:8e:36:28:99:
                    55:56:00:57:61:2d:e9:de:50:e7:1d:3b:b5:14:7f:
                    ea:e3:54:82:b3:77:8c:08:d0:7e:f7:57:72:c3:a7:
                    6b:3b:8e:bc:d2:2e:11:a5:34:72:40:1e:1b:05:44:
                    5a:d8:f5:62:df:7c:1f:28:cf:2e:ac:d7:82:e3:a2:
                    16:0c:d9:96:aa:fb:6d:4c:83:dd:47:d1:60:94:95:
                    2c:02:7c:06:80:e7:ff:42:c3:66:05:66:4b:77:ef:
                    e1:42:ea:cf:1e:f8:c0:9b:0a:62:40:fd:74:34:6f:
                    2b:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                AF:95:0E:61:BE:97:01:D0:22:75:C5:38:41:A8:45:74:ED:72:BE:06
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:elastic.driva.io
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  4 11:16:48.849 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6F:13:27:EC:D9:E2:41:99:EA:43:08:96:
                                44:44:6C:54:2D:69:DC:F2:81:DD:A2:F7:B9:FF:46:4F:
                                E4:13:F2:21:02:20:1F:AE:89:64:FC:57:FC:22:B0:54:
                                32:04:C0:9D:AD:D6:36:4D:39:A5:22:10:FB:6B:47:84:
                                15:C4:88:96:84:87
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr  4 11:16:48.892 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:60:9E:59:FB:CC:E1:F8:4C:A0:0E:C4:58:
                                7B:30:97:A4:F9:B6:4B:5E:81:7F:0F:93:06:77:5B:CA:
                                4E:35:D4:E4:02:20:7C:27:AD:4F:4F:54:5A:F7:7D:75:
                                A4:49:8E:2F:07:7C:E1:60:A3:D4:B4:62:8A:C8:70:3E:
                                F5:7C:82:DB:96:99
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b3:cb:f0:e6:35:40:5f:bd:e3:5f:ca:eb:bb:6e:1b:bf:5c:22:
        5f:09:19:43:c3:2a:5d:1c:4a:6f:5f:b7:57:51:94:41:61:53:
        97:fa:3f:c1:c0:b9:e1:9f:78:11:45:cb:6f:4e:6b:b2:74:e5:
        67:c6:2c:0b:86:d1:cf:76:18:da:c6:56:90:c7:21:73:76:38:
        91:9f:29:cb:5e:a4:c6:40:f1:7e:b8:45:92:7b:4f:89:31:5e:
        ca:b9:78:d9:97:05:55:ed:75:f7:9a:c7:8a:0d:20:db:bc:2f:
        c1:ec:a1:b7:73:8b:a2:16:1e:f5:8e:f4:5f:23:42:a9:2f:41:
        40:55:b1:96:16:ae:af:5f:5b:6e:a2:ac:f7:11:9b:5b:c8:24:
        42:25:19:02:8d:87:e6:58:6a:91:21:aa:22:9c:c0:29:e5:ff:
        60:ee:af:4c:5a:88:53:7e:f5:d7:46:8a:f0:d0:55:e1:3a:03:
        db:50:94:e6:ad:2b:cf:fe:7b:97:3e:97:7e:5c:9a:60:83:71:
        1c:3c:ae:35:ef:4e:86:b5:2d:10:7e:1a:cb:c0:16:45:c1:a4:
        84:e9:64:2b:c1:8f:c3:4b:b4:69:6b:c8:40:3c:61:62:72:60:
        94:3a:cd:ff:a8:5a:2d:ab:f8:73:7c:d8:e8:56:93:f8:61:f5:
        0a:53:b3:63

-1173247748 | 2024-04-19T23:53:33.942142

8200 / tcp

HTTP/1.1 200 OK
Content-Type: application/json
X-Content-Type-Options: nosniff
Date: Fri, 19 Apr 2024 23:53:33 GMT
Content-Length: 155

158.69.225.105

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2006999913 | 2024-04-18T23:09:59.897546
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-04-19T20:38:52.901507
80 / tcp

nginx1.18.0

-1564951494 | 2024-04-11T06:50:25.323445
443 / tcp

nginx1.18.0

-1173247748 | 2024-04-19T23:53:33.942142
8200 / tcp

Products

Pricing

Contact Us

158.69.225.105

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2006999913 | 2024-04-18T23:09:59.897546 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-04-19T20:38:52.901507 80 / tcp

nginx1.18.0

-1564951494 | 2024-04-11T06:50:25.323445 443 / tcp

nginx1.18.0

-1173247748 | 2024-04-19T23:53:33.942142 8200 / tcp

Products

Pricing

Contact Us

-2006999913 | 2024-04-18T23:09:59.897546
22 / tcp

677579724 | 2024-04-19T20:38:52.901507
80 / tcp

-1564951494 | 2024-04-11T06:50:25.323445
443 / tcp

-1173247748 | 2024-04-19T23:53:33.942142
8200 / tcp