GeneralInformation

Hostnames	ws-mkpus-test.wisere.com
Domains	wisere.com
Cloud Provider	DigitalOcean
Cloud Region	us-ca
Country	United States
City	Santa Clara
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 9000 9001 9002 9009 9010

1534254181 | 2024-04-18T19:44:37.753881

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLYB5huRCAwbBClh3JcUTzzY
Y/2daEjG9b4/qs3ySlbdS8DnN88y8KVNX+ZwsXPhqwdBpAglgToJ6f7t1VvL3Mo=
Fingerprint: 7f:5f:8c:85:88:76:c1:6b:22:95:74:ee:37:47:4f:30

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

780672404 | 2024-04-22T22:12:55.595252

80 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 22:12:54 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

-267084129 | 2024-04-13T05:03:03.724486

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 13 Apr 2024 05:03:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:1c:1c:2a:58:2c:b7:44:6a:21:2d:27:cb:2a:9f:b3:c2:f0
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 22 07:20:53 2024 GMT
            Not After : May 22 07:20:52 2024 GMT
        Subject: CN=ws-mkpus-test.wisere.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ad:23:99:b7:6c:e5:3b:ea:4f:25:da:0f:00:01:
                    d6:df:83:4d:ac:c0:e8:82:e2:b3:f8:c2:53:d3:f3:
                    1f:71:1e:ab:c6:e0:2d:2b:a9:d8:98:96:2c:62:81:
                    68:ee:51:9b:ac:19:58:00:45:eb:8e:2b:6f:e3:11:
                    fe:e4:94:39:5a:e9:2e:71:02:25:85:3a:bb:cc:92:
                    23:ee:e4:16:16:ac:b2:6b:5b:13:99:11:a1:e6:cf:
                    eb:8a:28:cf:73:5b:3a:7a:18:3c:44:de:26:fc:a2:
                    ce:c8:22:36:ef:63:8e:59:a5:df:ec:fa:3c:3f:15:
                    e0:83:7a:a1:ec:52:25:56:dd:02:df:3a:58:34:fb:
                    6e:18:85:81:1c:81:ef:48:5a:98:3b:64:4a:45:26:
                    6e:68:0d:04:4d:24:1e:2a:92:7b:d1:7c:b7:4f:61:
                    7b:a7:cc:ac:17:a3:b9:f8:ba:b8:c1:fb:80:5c:0f:
                    60:27:ff:58:0e:8f:cb:48:dd:c0:08:e2:a0:21:df:
                    d5:6d:32:5a:e7:54:5c:21:45:83:1b:ba:d3:2a:ec:
                    c1:5a:d6:ca:36:56:f6:a4:9b:bc:27:06:30:fa:ac:
                    d8:03:f5:95:d6:98:17:b3:76:a4:26:9f:c9:dc:ec:
                    9d:e1:d1:fe:fd:49:00:a1:8a:e9:ab:fd:0b:b9:ef:
                    8f:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D0:56:D2:43:B4:21:D7:0E:20:65:0B:28:C5:3A:93:D1:52:C7:F1:D8
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ws-mkpus-test.wisere.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Feb 22 08:20:53.128 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F5:20:7B:14:41:D4:A5:13:DD:96:AB:
                                52:53:2B:1D:92:D1:DA:99:AA:88:FC:EF:32:CE:D1:08:
                                C3:FE:B5:D9:9E:02:21:00:A0:AC:06:0B:77:2A:51:9B:
                                C3:4E:58:48:87:D8:3B:43:B2:17:80:9D:2F:78:EE:38:
                                2E:31:65:88:A5:8A:D6:DB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 22 08:20:53.187 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:38:CA:A8:1C:2D:85:D4:5D:2B:A3:D8:28:
                                8A:35:D8:C8:90:6A:2E:A7:2E:14:D8:C8:47:FF:C4:E9:
                                68:02:10:E3:02:20:35:F2:7F:CE:DA:5C:2A:55:9A:9B:
                                05:1E:AC:28:DB:F4:6E:53:58:5E:54:D8:66:DB:0D:C9:
                                9B:06:EC:02:A5:06
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        77:3d:e5:19:03:bf:28:6d:7d:10:56:85:7c:ca:e9:e1:bc:8b:
        5e:2e:ff:bd:a2:7f:ae:25:d3:3a:ca:4c:41:e3:1c:dc:99:67:
        42:0e:96:4a:0e:dd:5c:c5:70:02:ed:85:96:14:60:1d:6d:04:
        16:b4:a8:30:ff:c5:11:6a:67:76:14:77:a8:8a:2a:88:36:6c:
        22:20:f1:ce:21:90:2f:de:c5:86:9f:16:15:15:42:39:88:7e:
        f9:ba:a3:b1:53:85:8c:e2:43:48:07:a5:5f:ac:4f:31:6d:e6:
        12:cd:a2:ed:4d:f2:0b:fe:2a:e5:4e:49:ca:07:c2:b5:85:67:
        56:59:2c:a6:7c:cb:f9:8d:7a:3d:a3:66:3e:e1:ec:1a:88:e1:
        4a:81:54:55:48:01:e1:f1:41:32:7e:b3:39:95:d1:04:86:5f:
        f0:c2:bc:11:d7:79:07:2e:3a:5c:24:8c:0c:ba:83:6f:23:4f:
        3a:18:a5:64:0e:32:e7:2e:a1:e1:7d:15:7c:f2:2d:1a:2b:58:
        09:13:a9:9c:00:31:1c:4d:94:be:8f:66:45:96:96:47:ff:ca:
        e6:9a:bc:eb:a7:1d:f2:0f:25:1f:32:18:48:a4:58:c0:bd:c7:
        6c:a8:6c:e3:ff:6a:48:50:db:47:37:53:a2:c6:6a:dc:fc:40:
        87:cf:43:c1

2071116717 | 2024-04-22T06:23:38.191388

9000 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Mon, 22 Apr 2024 06:23:38 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

-1502378408 | 2024-04-19T10:01:40.908716

9001 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Fri, 19 Apr 2024 10:01:40 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

323441053 | 2024-04-10T17:17:30.543286

9002 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Wed, 10 Apr 2024 17:17:30 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

-1060095501 | 2024-04-02T17:53:22.256282

9009 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Tue, 02 Apr 2024 17:53:22 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-1060095501 | 2024-04-22T08:01:13.094917

9010 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Mon, 22 Apr 2024 08:01:13 GMT
Connection: keep-alive
Keep-Alive: timeout=5

161.35.229.112

Last Seen: 2024-04-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1534254181 | 2024-04-18T19:44:37.753881
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

780672404 | 2024-04-22T22:12:55.595252
80 / tcp

nginx1.18.0

-267084129 | 2024-04-13T05:03:03.724486
443 / tcp

nginx1.18.0

2071116717 | 2024-04-22T06:23:38.191388
9000 / tcp

-1502378408 | 2024-04-19T10:01:40.908716
9001 / tcp

323441053 | 2024-04-10T17:17:30.543286
9002 / tcp

-1060095501 | 2024-04-02T17:53:22.256282
9009 / tcp

-1060095501 | 2024-04-22T08:01:13.094917
9010 / tcp

Products

Pricing

Contact Us

161.35.229.112

Last Seen: 2024-04-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1534254181 | 2024-04-18T19:44:37.753881 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

780672404 | 2024-04-22T22:12:55.595252 80 / tcp

nginx1.18.0

-267084129 | 2024-04-13T05:03:03.724486 443 / tcp

nginx1.18.0

2071116717 | 2024-04-22T06:23:38.191388 9000 / tcp

-1502378408 | 2024-04-19T10:01:40.908716 9001 / tcp

323441053 | 2024-04-10T17:17:30.543286 9002 / tcp

-1060095501 | 2024-04-02T17:53:22.256282 9009 / tcp

-1060095501 | 2024-04-22T08:01:13.094917 9010 / tcp

Products

Pricing

Contact Us

1534254181 | 2024-04-18T19:44:37.753881
22 / tcp

780672404 | 2024-04-22T22:12:55.595252
80 / tcp

-267084129 | 2024-04-13T05:03:03.724486
443 / tcp

2071116717 | 2024-04-22T06:23:38.191388
9000 / tcp

-1502378408 | 2024-04-19T10:01:40.908716
9001 / tcp

323441053 | 2024-04-10T17:17:30.543286
9002 / tcp

-1060095501 | 2024-04-02T17:53:22.256282
9009 / tcp

-1060095501 | 2024-04-22T08:01:13.094917
9010 / tcp