GeneralInformation

Hostnames	localpoint-web.ch fusion.localpoint.ch mars.localpoint.ch
Domains	localpoint-web.ch localpoint.ch
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-46118	RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API and cause target node to be terminated by an "out-of-memory killer"-like mechanism. This vulnerability has been patched in versions 3.11.24 and 3.12.7.
CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2022-31008	RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker (link) state. The encryption key used to encrypt the URI was seeded with a predictable secret. This means that in case of certain exceptions related to Shovel and Federation plugins, reasonably easily deobfuscatable data could appear in the node log. Patched versions correctly use a cluster-wide secret for that purpose. This issue has been addressed and Patched versions: `3.10.2`, `3.9.18`, `3.8.32` are available. Users unable to upgrade should disable the Shovel and Federation plugins.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-32719	3.5RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI via the `rabbitmq_federation_management` plugin, its consumer tag was rendered without proper <script> tag sanitization. This potentially allows for JavaScript code execution in the context of the page. The user must be signed in and have elevated permissions (manage federation upstreams and policies) for this to occur. The vulnerability is patched in RabbitMQ 3.8.18. As a workaround, disable the `rabbitmq_federation_management` plugin and use [CLI tools](https://www.rabbitmq.com/cli.html) instead.
CVE-2021-32718	3.5RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.17, a new user being added via management UI could lead to the user's bane being rendered in a confirmation message without proper `<script>` tag sanitization, potentially allowing for JavaScript code execution in the context of the page. In order for this to occur, the user must be signed in and have elevated permissions (other user management). The vulnerability is patched in RabbitMQ 3.8.17. As a workaround, disable `rabbitmq_management` plugin and use CLI tools for management operations and Prometheus and Grafana for metrics and monitoring.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2021-22116	4.3RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugin enabled.
CVE-2019-9516	6.8Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.
CVE-2019-9513	7.8Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
CVE-2019-9511	7.8Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.
CVE-2019-11291	3.5Pivotal RabbitMQ, 3.7 versions prior to v3.7.20 and 3.8 version prior to v3.8.1, and RabbitMQ for PCF, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain two endpoints, federation and shovel, which do not properly sanitize user input. A remote authenticated malicious user with administrative access could craft a cross site scripting attack via the vhost or node name fields that could grant access to virtual hosts and policy management information.
CVE-2018-16845	5.8nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.

OpenPorts

21 22 25 80 443 4369 5672 9000 9001 9002

-2008787074 | 2024-04-05T19:37:03.855368

21 / tcp

220 ProFTPD Server (Debian) [::ffff:159.69.141.21]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
214-CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
214-EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
214-XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
214-NOOP    FEAT    OPTS    HOST    CLNT    AUTH*   CCC*    CONF*   
214-ENC*    MIC*    PBSZ*   PROT*   TYPE    STRU    MODE    RETR    
214-STOR    STOU    APPE    REST    ABOR    USER    PASS    ACCT*   
214-REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@mars.localpoint.ch
211-Features:
211-CLNT
211-EPRT
211-EPSV
211-HOST
211-LANG ru-RU;zh-TW;ko-KR;fr-FR;zh-CN;it-IT;bg-BG;es-ES;en-US;ja-JP
211-MDTM
211-MFF modify;UNIX.group;UNIX.mode;
211-MFMT
211-MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
211-REST STREAM
211-SITE COPY
211-SITE MKDIR
211-SITE RMDIR
211-SITE SYMLINK
211-SITE UTIME
211-SIZE
211-TVFS
211-UTF8
211 End

973958275 | 2024-04-23T06:31:40.754115

22 / tcp

SSH-2.0-OpenSSH_7.9p1 Debian-10
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDPFB1Dvt3g/Ztww3lf7hP7YDHVTGikccT0sp5k53QJF0wW
KOx1wj8zaoZcDgS1ugNBZCmqp+GE2DDBVUGzpH2c8wAzWU2VOqHCiJ9GQBgSr0O2INlz/5vedm2/
dEMLR4+o60UConGwam8H5O897p2Wz8Y8IA3vIBVmiH9vsEhLNt9BOF3HZKSrWvkWqPRXEAHOx02B
sBDTxRlpEloMjDovKHr235MGtTCDd2yWisXl73lIRJgo5DRT4S97PDGpSPwJdmzGMcNAzzIbvdNp
+qEiTeanUCjfZSVWtQLG/G/HUNXLUWaUnTM3+wAturGrrQmDfd2m/9ZBqXA63bPqTif5
Fingerprint: 7b:a2:b7:64:bd:89:53:27:eb:ab:8c:fe:40:3e:da:a2

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1431687405 | 2024-04-25T01:12:55.240717

25 / tcp

220 mars.localpoint.ch ESMTP Postfix (Debian/GNU)
250-mars.localpoint.ch
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250-SMTPUTF8
250 CHUNKING

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            57:42:f0:15:c2:d6:5d:4f:30:dc:ce:81:98:9c:3b:4e:48:18:a6:05
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=mars.localpoint.ch
        Validity
            Not Before: Sep 11 13:47:40 2019 GMT
            Not After : Sep  8 13:47:40 2029 GMT
        Subject: CN=mars.localpoint.ch
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9d:9e:17:28:ba:0a:87:26:ae:5c:10:b0:7c:29:
                    b6:04:f3:70:c6:ee:b5:46:4e:7c:70:98:64:d8:5a:
                    af:36:41:dd:b9:aa:58:0b:e9:d5:f9:de:72:a2:cf:
                    27:a5:1d:d4:7b:ca:2a:aa:2e:b7:34:8c:6e:06:13:
                    2e:d1:d8:04:97:de:b7:44:f5:f5:81:31:a4:27:19:
                    fb:e2:c6:05:34:84:d4:29:85:ad:f7:e9:57:ea:83:
                    4f:14:4e:e6:0f:35:67:0e:d8:1b:bb:79:90:55:be:
                    89:15:db:30:ee:71:32:a8:30:32:17:dd:82:b5:a5:
                    3b:d5:c5:df:f9:97:fc:62:f6:bf:bd:48:5f:e9:b4:
                    51:bd:c3:95:7c:29:b2:c3:8c:aa:9c:b1:e0:5f:9a:
                    f5:a9:e9:54:a6:c9:3a:44:96:d9:df:08:91:df:1e:
                    e6:40:26:e7:19:dd:cc:1e:40:57:aa:0b:ff:67:b0:
                    91:d0:20:a0:7e:14:bc:07:b8:6f:ff:dd:be:f7:ec:
                    5a:f0:45:39:cd:d7:ea:1c:69:f7:ba:5c:f4:c7:8d:
                    3d:d4:43:a2:ae:00:47:9c:f6:6b:54:ef:b4:f7:5a:
                    23:64:5e:f3:0b:3a:78:17:27:a6:38:c0:2a:57:3e:
                    dc:7c:26:49:53:bc:73:f3:d0:c5:7e:0c:58:05:c3:
                    13:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:mars.localpoint.ch
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3f:1e:1e:5c:57:4f:72:14:15:2d:50:3d:e9:60:1c:9c:8e:5f:
        ee:df:dd:d9:8c:15:af:81:2b:70:72:bd:4c:53:be:5f:c9:86:
        4e:5a:be:f9:ae:d0:aa:b1:8a:67:da:29:10:d0:e6:21:57:91:
        6c:68:b7:7f:92:69:eb:b3:98:12:6a:2b:73:c2:df:78:ed:57:
        6f:ed:f9:40:05:1c:06:d5:36:6d:e3:14:c7:81:60:b4:06:62:
        4a:79:80:ed:10:0f:ac:06:ef:b0:2c:58:84:04:07:fd:fa:1f:
        da:d9:d9:17:a9:de:e3:7f:fe:cd:d0:e7:c0:26:45:52:67:53:
        13:5c:6a:22:7e:6e:22:77:2d:95:9c:fa:2c:80:f7:53:a6:77:
        75:b3:2b:79:ba:ba:a2:28:e8:3e:ec:02:a3:27:7a:37:31:cd:
        24:0d:61:2f:6c:20:34:f8:bf:a9:7a:bc:f3:a3:c1:7e:76:0c:
        7c:55:f5:a3:70:b7:db:10:30:20:9d:e8:52:c0:f1:70:92:38:
        4e:6e:57:6e:38:e7:25:bc:d0:a0:e9:5f:0e:1a:8e:1e:ac:7b:
        f2:c0:d4:85:76:00:4b:dc:9e:17:f2:74:b7:62:ae:1c:8b:e4:
        2d:ea:39:10:80:ea:a0:e4:69:99:f0:bd:a5:83:be:73:87:54:
        09:03:f7:08

-1426104546 | 2024-04-20T03:22:29.438426

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Sat, 20 Apr 2024 03:22:28 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://159.69.141.21/

1534887681 | 2024-04-22T07:10:14.484722

443 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.14.2
Date: Mon, 22 Apr 2024 07:10:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Vary: Origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:c5:b6:c2:04:9f:45:15:9d:4b:5c:52:e5:f9:8c:11:b2:fb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 10 06:57:12 2024 GMT
            Not After : Jun  8 06:57:11 2024 GMT
        Subject: CN=fusion.localpoint.ch
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9e:bb:a6:38:ed:e9:53:89:4a:54:4d:3f:d3:90:
                    67:ef:61:9b:d6:70:1e:04:16:87:2a:00:39:79:09:
                    9a:b5:13:cf:d7:e6:77:5e:8d:0c:e9:c4:25:c8:88:
                    7b:c9:d2:ff:48:2f:9b:d1:21:6a:5d:8a:86:72:b0:
                    91:35:a4:25:37:68:94:50:a1:ba:e4:48:fc:c5:23:
                    a2:06:aa:c9:06:59:4b:7c:f6:2e:22:46:74:f7:7f:
                    24:1a:65:0a:3d:b6:6b:e2:23:08:bc:e9:f0:dc:33:
                    f6:07:22:b4:5b:1a:d4:3f:95:ec:13:7d:20:7a:cc:
                    2c:a8:4e:dc:22:e4:28:c3:4e:83:18:52:04:79:ee:
                    3c:61:44:5f:4e:63:bb:3f:fa:7b:c2:11:f4:de:0e:
                    e0:9e:2e:77:83:96:2e:6d:70:84:62:27:93:2b:bb:
                    da:70:3b:62:83:b2:8e:ba:01:4d:35:0f:e9:c9:ed:
                    52:0c:ac:dc:a0:ca:cd:d5:1f:11:f4:3a:4a:42:6b:
                    30:f9:a6:2a:33:b8:cf:b1:62:59:12:8c:a8:44:c2:
                    00:f7:d9:d2:96:b0:aa:72:84:de:c5:66:1d:4c:aa:
                    2b:45:78:b4:d7:e3:bb:b6:63:6c:ab:07:3e:d6:ff:
                    48:f7:49:50:80:6c:47:b1:92:7e:09:74:7f:b2:6b:
                    7d:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                60:09:43:9C:86:B6:7B:0A:49:00:7A:1E:01:2C:FD:54:F2:3B:67:55
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:fusion.localpoint.ch
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 10 07:57:12.723 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:33:60:4C:AA:5C:60:85:51:3B:4F:5B:A5:
                                01:E3:62:D5:3A:CC:43:5B:A9:F0:76:D1:99:B0:41:56:
                                99:16:42:B3:02:21:00:E3:AF:14:03:F9:59:F8:A3:C5:
                                4F:7E:47:4C:19:BB:71:04:57:0C:82:5D:4E:89:07:8F:
                                DB:DC:97:77:BC:11:1A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 10 07:57:12.796 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:0F:E8:AE:21:51:24:B0:A8:7F:15:E7:7B:
                                22:EE:5A:45:36:79:0E:91:FC:1C:CC:7C:12:B9:32:ED:
                                2F:2F:E2:61:02:20:65:F9:12:28:AB:30:44:F8:B8:E4:
                                25:BE:82:95:4B:A8:D3:F9:A7:46:9F:43:E6:10:53:08:
                                8E:6E:D1:53:84:9C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5a:32:b7:c2:9f:bf:cb:35:a7:ad:9a:4a:1a:27:45:94:6e:aa:
        5d:94:41:8c:96:3c:29:2a:ad:0e:8c:e4:52:bf:e7:0d:14:44:
        ea:46:d2:b7:95:9a:70:f7:64:78:b1:03:9a:15:ed:c3:e1:dc:
        87:7b:37:fe:ce:44:2d:12:66:58:e4:f8:06:c4:96:f3:27:f8:
        41:43:1f:7b:72:c1:5b:5a:f7:3e:e6:75:59:2b:be:c5:50:5d:
        1c:69:fe:91:67:b1:03:d1:6e:1c:95:b1:a2:62:20:10:a4:ba:
        4c:ec:57:de:d6:be:07:2d:74:1c:73:da:ad:92:d0:c8:b1:7d:
        01:10:d2:d5:27:cf:29:bc:d9:a6:e2:d0:ed:9a:e4:96:6b:4a:
        4d:2d:3e:25:de:a8:70:f2:f9:cf:0d:e0:aa:4f:67:e1:f9:94:
        4e:63:7c:d9:e7:7e:a4:30:da:8c:5b:d0:d1:29:db:9a:5b:d8:
        f0:d4:ef:d7:da:b5:3c:fa:91:a5:f8:1d:9f:b7:35:a6:0f:b6:
        be:95:9e:67:30:13:b2:f9:9a:4e:9e:7f:69:4e:77:68:cc:c6:
        90:d7:cd:a2:27:8b:31:26:89:fd:cf:b6:72:ae:fd:ef:2b:cc:
        b2:7e:98:6b:23:eb:f1:af:bc:54:e1:00:8d:8a:db:69:3b:55:
        c6:79:1f:15

50704379 | 2024-04-01T16:14:33.026400

4369 / tcp

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

1838203841 | 2024-04-22T20:05:25.067677

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.7.8
  Platform: Erlang/OTP 21.2.6
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

-832077691 | 2024-04-17T20:15:57.626355

9000 / tcp

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-store
Content-Length: 2281
Content-Security-Policy: block-all-mixed-content
Content-Type: text/html; charset=utf-8
Last-Modified: Tue, 01 Oct 2019 01:39:29 GMT
Vary: Origin
X-Amz-Request-Id: 17C72A8A78A17B1A
X-Xss-Protection: 1; mode=block
Date: Wed, 17 Apr 2024 20:15:57 GMT

2026907841 | 2024-04-26T16:28:00.758412

9001 / tcp

HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
Content-Length: 226
Content-Security-Policy: block-all-mixed-content
Content-Type: application/xml
Server: MinIO/RELEASE.2019-10-02T21-19-38Z
Vary: Origin
X-Amz-Request-Id: 17C9E15334FFC356
X-Xss-Protection: 1; mode=block
Date: Fri, 26 Apr 2024 16:28:00 GMT

<?xml version="1.0" encoding="UTF-8"?>
<Error><Code>AccessDenied</Code><Message>Access Denied.</Message><Resource>/</Resource><RequestId>17C9E15334FFC356</RequestId><HostId>4245cf8f-79ea-47c8-9402-644c2f85c63b</HostId></Error>

-468496174 | 2024-04-24T09:45:16.835381

9002 / tcp

HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
Content-Length: 226
Content-Security-Policy: block-all-mixed-content
Content-Type: application/xml
Server: MinIO/RELEASE.2019-10-02T21-19-38Z
Vary: Origin
X-Amz-Request-Id: 17C92E2FAAA83A71
X-Xss-Protection: 1; mode=block
Date: Wed, 24 Apr 2024 09:45:15 GMT

<?xml version="1.0" encoding="UTF-8"?>
<Error><Code>AccessDenied</Code><Message>Access Denied.</Message><Resource>/</Resource><RequestId>17C92E2FAAA83A71</RequestId><HostId>a5091f9b-479e-44cf-8380-c4ec3133a2e3</HostId></Error>

159.69.141.21

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2008787074 | 2024-04-05T19:37:03.855368
21 / tcp

973958275 | 2024-04-23T06:31:40.754115
22 / tcp

OpenSSH7.9p1 Debian 10

1431687405 | 2024-04-25T01:12:55.240717
25 / tcp

Postfix smtpd

-1426104546 | 2024-04-20T03:22:29.438426
80 / tcp

nginx1.14.2

1534887681 | 2024-04-22T07:10:14.484722
443 / tcp

nginx1.14.2

50704379 | 2024-04-01T16:14:33.026400
4369 / tcp

Erlang Port Mapper Daemon

1838203841 | 2024-04-22T20:05:25.067677
5672 / tcp

RabbitMQ3.7.8

-832077691 | 2024-04-17T20:15:57.626355
9000 / tcp

MinIO Server

2026907841 | 2024-04-26T16:28:00.758412
9001 / tcp

-468496174 | 2024-04-24T09:45:16.835381
9002 / tcp

Products

Pricing

Contact Us

159.69.141.21

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2008787074 | 2024-04-05T19:37:03.855368 21 / tcp

973958275 | 2024-04-23T06:31:40.754115 22 / tcp

OpenSSH7.9p1 Debian 10

1431687405 | 2024-04-25T01:12:55.240717 25 / tcp

Postfix smtpd

-1426104546 | 2024-04-20T03:22:29.438426 80 / tcp

nginx1.14.2

1534887681 | 2024-04-22T07:10:14.484722 443 / tcp

nginx1.14.2

50704379 | 2024-04-01T16:14:33.026400 4369 / tcp

Erlang Port Mapper Daemon

1838203841 | 2024-04-22T20:05:25.067677 5672 / tcp

RabbitMQ3.7.8

-832077691 | 2024-04-17T20:15:57.626355 9000 / tcp

MinIO Server

2026907841 | 2024-04-26T16:28:00.758412 9001 / tcp

-468496174 | 2024-04-24T09:45:16.835381 9002 / tcp

Products

Pricing

Contact Us

-2008787074 | 2024-04-05T19:37:03.855368
21 / tcp

973958275 | 2024-04-23T06:31:40.754115
22 / tcp

1431687405 | 2024-04-25T01:12:55.240717
25 / tcp

-1426104546 | 2024-04-20T03:22:29.438426
80 / tcp

1534887681 | 2024-04-22T07:10:14.484722
443 / tcp

50704379 | 2024-04-01T16:14:33.026400
4369 / tcp

1838203841 | 2024-04-22T20:05:25.067677
5672 / tcp

-832077691 | 2024-04-17T20:15:57.626355
9000 / tcp

2026907841 | 2024-04-26T16:28:00.758412
9001 / tcp

-468496174 | 2024-04-24T09:45:16.835381
9002 / tcp