GeneralInformation

Hostnames	devi4.com
Domains	devi4.com
Cloud Provider	DigitalOcean
Cloud Region	gb-slg
Country	United Kingdom
City	London
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 4369 5672 8080

-517416857 | 2024-04-01T18:10:53.931118

22 / tcp

SSH-2.0-OpenSSH_8.2p1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQCu+ZSEZ5z3a4XBAkb15Lk7IhqLUz2wG0Z+QM3F7eFzO+R1
Rkc7FbVeNvOAm59XZkPUj3qILn7rPpDmorjFfW9l8HVIk5hC89Dgr2fabQkQ6YM222J8HD0D0uAn
T8D7swf2ZN+FWIeFoTyw5aYRvHF3s7fS5Mshx5xqw1p3hsJqj7lqVt68iJ5TPTdJj7mzS1cnJiuX
QJ9MjuobCgrBvjnz5XQjhTvrWhfdGmn9LbfojkVs0JqUZvuPxG7INVgzePJDRxw1P8R1aNrg7Fmg
YDoqLG1az0h+2vNlSDBlVas8THN8GAVcqCYRxAOnEUfxae2TxtM1aZv+izr1vhvT7YEy8BFGit4U
7tcTnPL5WscH0iqAMG1dtnCnWg0rewI4G1DQ1tyGAqeeoM+JQsDJcbnf6boX+UEdqsizBbCf4LCu
MbuDjtymv2dYrqdFBbhu6cKe4o1j5DKIrJB51ATc429FxIMkN5b2pmzAVP4y6wnBGNi0udG31Xhq
qnZC5lmgcAqiSHTmYd1CGaow3ECr+COfaj04w5EyJ8ygvFdlKdbWkcowiKkAUHjGM+k+ITrg35T8
9ovneyhq8lp7Ax2JZ75Vzxkbvfqy4Ze9SzSWVfYYdCIZUJuwlbi70GMpgNIjwjce+MP7GZ9iAXWE
JlmMRJt6L23HVTB19krMOpmxi1uJ9Q==
Fingerprint: 3d:f5:02:23:49:ce:95:91:ff:f9:41:f3:36:dc:5d:58

Kex Algorithms:
	sntrup4591761x25519-sha512@tinyssh.org
	curve25519-sha256@libssh.org
	diffie-hellman-group-exchange-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes256-gcm@openssh.com
	aes128-gcm@openssh.com
	aes256-ctr
	aes192-ctr
	aes128-ctr

MAC Algorithms:
	hmac-sha2-512-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-512
	hmac-sha2-256

Compression Algorithms:
	none

-770651211 | 2024-04-16T00:01:33.153159

80 / tcp

HTTP/1.1 401 Unauthorized
Date: Tue, 16 Apr 2024 00:01:33 GMT
Content-Type: text/html; charset=UTF-8
WWW-Authenticate: Basic realm="Restricted"
Vary: Accept-Encoding
X-Magento-Cache-Debug: MISS
Pragma: no-cache
Expires: -1
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Content-Length: 590
Connection: keep-alive

-770651211 | 2024-04-16T22:50:30.547612

443 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 16 Apr 2024 22:50:30 GMT
Content-Type: text/html
Content-Length: 590
Connection: keep-alive
WWW-Authenticate: Basic realm="Restricted Content"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3b:1a:15:ff:d2:c2:f5:2d:cd:39:cb:1f:57:1c:f0:29
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=ES, ST=Illes Balears, L=Manacor, O=Soluciones Corporativas IP, SL, CN=Don Dominio \/ MrDomain RSA DV CA
        Validity
            Not Before: Oct 16 00:00:00 2023 GMT
            Not After : Nov 15 23:59:59 2024 GMT
        Subject: CN=*.devi4.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:b0:16:8b:ec:df:09:86:0e:02:72:61:b1:53:
                    fc:d7:81:9b:9e:8e:c4:2c:e9:73:e7:55:71:aa:e8:
                    7a:d8:c3:3f:3b:ed:ad:ae:a1:6e:d6:41:a2:e3:03:
                    91:d7:5b:cb:89:8c:bf:a0:78:c1:56:a3:9d:46:a9:
                    a2:8a:c6:25:c1:ae:d7:00:83:94:68:70:57:94:ee:
                    8c:89:6b:16:a9:8b:3e:13:e9:e8:ec:66:39:67:4f:
                    d5:80:bf:97:0a:65:d6:c6:ad:d5:53:65:cc:ef:8f:
                    ac:bf:3b:25:e4:28:7a:3b:19:c4:57:52:f6:e8:51:
                    e6:a2:58:e7:e8:90:0e:20:8e:66:a7:17:95:4b:b9:
                    a8:38:37:f2:05:c2:01:05:81:77:46:1f:b6:85:e3:
                    36:f7:41:b4:ce:22:c6:6c:99:44:93:7b:5f:84:3d:
                    91:c9:c0:77:b2:1d:6b:4e:04:a6:57:18:de:4c:bb:
                    11:4e:db:8d:2b:bb:70:26:0a:df:ab:0c:62:d3:34:
                    2b:5a:3f:b1:de:d4:26:4c:b5:2d:c1:18:4d:fc:a3:
                    81:c5:a7:af:0b:f7:b9:9b:1e:b3:d9:f3:3f:07:ff:
                    5d:e1:3d:6c:d4:17:bc:5e:57:8e:60:2b:9e:7b:5d:
                    a1:d4:2e:7d:bd:86:e4:54:69:1b:61:6b:c1:fc:5b:
                    61:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                3A:0A:8C:1C:77:59:29:EA:16:F6:99:3F:A3:17:B3:DF:29:11:93:3A
            X509v3 Subject Key Identifier: 
                35:46:C1:92:A6:81:16:16:1C:9F:A8:3E:3C:22:3C:63:65:71:FB:2E
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.59
                  CPS: https://cps.usertrust.com
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.usertrust.com/DonDominioMrDomainRSADVCA.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.usertrust.com/DonDominioMrDomainRSADVCA.crt
                OCSP - URI:http://ocsp.usertrust.com
            X509v3 Subject Alternative Name: 
                DNS:*.devi4.com, DNS:devi4.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct 16 09:04:23.942 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A5:3C:1F:44:32:5A:9E:91:8B:E6:9C:
                                B8:19:8C:73:85:CE:41:31:3E:A8:26:74:61:13:50:DF:
                                30:83:24:79:B8:02:21:00:90:27:6C:33:7A:A2:2F:92:
                                C5:B4:3B:5A:03:4E:51:DF:02:81:88:E7:77:4A:42:D2:
                                FA:F1:C8:2B:43:CB:A3:66
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 16 09:04:24.029 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A3:B4:DB:86:F2:3E:89:94:0D:E0:17:
                                55:A3:39:CF:63:26:98:64:D0:61:D0:59:00:97:63:86:
                                8A:F6:CC:1F:27:02:21:00:E3:03:0B:A5:CF:15:94:29:
                                CA:67:CF:D6:E9:46:ED:BB:0E:21:28:E7:F1:8E:C8:86:
                                06:3F:E8:08:C8:9B:75:D3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 16 09:04:23.989 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BB:E0:8E:0D:C8:0F:19:35:92:91:E1:
                                96:1A:68:DE:75:DF:7B:75:A9:D6:5F:C5:17:1D:66:39:
                                80:28:B7:1A:F3:02:21:00:A2:A9:AA:5F:7D:B6:F7:7C:
                                4B:1C:02:C8:10:40:35:69:D8:CA:44:5B:05:E2:E8:15:
                                96:A3:2C:D2:2B:E4:F9:2C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        41:10:64:3f:56:72:4c:f7:45:ad:1b:e0:9c:8d:3f:a0:b1:11:
        1b:cd:46:cf:80:07:6e:f7:a1:71:33:5c:26:70:48:d7:b6:f8:
        81:f2:6e:58:33:69:44:71:98:1d:70:35:be:21:bf:86:34:49:
        21:0a:cd:e0:1f:59:6f:02:5f:76:b7:e1:56:2a:d5:85:18:45:
        d8:75:44:59:ee:3f:65:09:92:da:fd:25:16:2c:70:80:7b:77:
        de:98:65:ad:51:a8:e6:6f:b2:74:d9:d6:60:c1:e2:9f:52:c3:
        68:3a:d0:c0:e7:37:c1:44:24:1e:b5:b1:66:51:33:48:7b:53:
        99:79:99:54:ba:66:be:09:a7:88:a3:c2:2c:b8:80:65:bd:0d:
        3b:83:1e:4c:29:22:04:50:f7:d0:60:39:64:a1:d2:f9:c3:22:
        99:00:b6:2e:20:75:ae:db:37:d8:43:82:3a:ca:6c:c8:f8:47:
        cd:42:0d:bb:90:27:2d:60:ff:a3:19:44:d4:37:d3:fd:9c:07:
        65:5b:7f:fa:42:a8:f6:d5:53:6f:96:56:9a:c4:01:12:06:d2:
        1c:48:f6:ee:00:f1:fa:fb:a6:aa:5a:74:22:1c:e9:b3:f2:50:
        e4:92:50:61:46:9b:bc:87:82:68:16:44:03:d4:24:e7:85:af:
        e1:e4:a5:17

50704379 | 2024-04-09T10:14:37.257085

4369 / tcp

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

-1188758886 | 2024-04-15T05:43:54.848332

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.9.23
  Platform: Erlang/OTP 24.2.2
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

-770651211 | 2024-04-03T12:33:28.155697

8080 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 03 Apr 2024 12:33:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 590
Connection: keep-alive
WWW-Authenticate: Basic realm="Restricted"

159.65.90.136

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-517416857 | 2024-04-01T18:10:53.931118
22 / tcp

OpenSSH8.2p1

-770651211 | 2024-04-16T00:01:33.153159
80 / tcp

-770651211 | 2024-04-16T22:50:30.547612
443 / tcp

nginx1.18.0

50704379 | 2024-04-09T10:14:37.257085
4369 / tcp

Erlang Port Mapper Daemon

-1188758886 | 2024-04-15T05:43:54.848332
5672 / tcp

RabbitMQ3.9.23

-770651211 | 2024-04-03T12:33:28.155697
8080 / tcp

nginx1.18.0

Products

Pricing

Contact Us

159.65.90.136

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-517416857 | 2024-04-01T18:10:53.931118 22 / tcp

OpenSSH8.2p1

-770651211 | 2024-04-16T00:01:33.153159 80 / tcp

-770651211 | 2024-04-16T22:50:30.547612 443 / tcp

nginx1.18.0

50704379 | 2024-04-09T10:14:37.257085 4369 / tcp

Erlang Port Mapper Daemon

-1188758886 | 2024-04-15T05:43:54.848332 5672 / tcp

RabbitMQ3.9.23

-770651211 | 2024-04-03T12:33:28.155697 8080 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-517416857 | 2024-04-01T18:10:53.931118
22 / tcp

-770651211 | 2024-04-16T00:01:33.153159
80 / tcp

-770651211 | 2024-04-16T22:50:30.547612
443 / tcp

50704379 | 2024-04-09T10:14:37.257085
4369 / tcp

-1188758886 | 2024-04-15T05:43:54.848332
5672 / tcp

-770651211 | 2024-04-03T12:33:28.155697
8080 / tcp