GeneralInformation

Hostnames	communeapi.com www.communeapi.com
Domains	communeapi.com
Cloud Provider	DigitalOcean
Cloud Region	us-ca
Country	United States
City	Santa Clara
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

21 22 80 443 1433 3306 5432

-1062991961 | 2024-05-04T22:06:57.168870

21 / tcp

220 (vsFTPd 3.0.5)
530 Permission denied.
530 Please login with USER and PASS.
211-Features:
 EPRT
 EPSV
 MDTM
 PASV
 REST STREAM
 SIZE
 TVFS
211 End

914919813 | 2024-05-02T17:20:33.738855

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDfzwwjc7xSHIndmBNWORxQFz8bjUtuAVISHw2mx9cTcNXF
gzDVfomVK5XvxdbHQlilouPqkpMG3QE7Ac0tyZXLZmBxEtBbfVcINwjetx7BCuDlI+VnUPHZmeaH
fqtwxSTJILCfH9AtNYYHB8Y71Gz72jaHhcQ1qcgnNXjGExCZArQdApDF/sEqJcZZdU7o4qN7juFU
ZyCFRW3xdXbXyB4frUn9debDCoFaFs4OholPjFP9nq0cfz2KbPxX30apV4BqfKoFzpd/pbhF70ex
2pgb+eV/pQ5Vhjwch3Gb6mR9g45JFfYslL/T0kE4b7FOd9r8k8nNwkJrIx2ScMZK/+Q6olftJVfC
3RywG3dxyh4JeiUk2lKMdYlkwlaHORqYbyQcpghF5TqhgokU3DgnHZOZzfnFfy5WmvIysSf/9MqM
tsR4TqICwl3LECUarXng9ePSlX1GCWE4PVDqmqzPDvwZQxwQ6TtC3eGkOSS5GD7a0NW71frp0Hg5
E5kTzuxIUKE=
Fingerprint: 92:29:7b:ae:1a:80:1f:f0:6c:1c:77:94:fa:51:b9:77

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-11T07:07:14.384572

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 07:07:13 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-1979175224 | 2024-05-09T23:09:56.622757

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 09 May 2024 23:09:56 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
ETag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:b7:bf:c1:27:59:eb:6e:45:85:94:46:81:f6:00:5a:9e:3f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 29 04:45:43 2024 GMT
            Not After : Jul 28 04:45:42 2024 GMT
        Subject: CN=communeapi.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b4:66:0e:8a:6e:e1:7f:37:89:95:72:25:78:e1:
                    27:bd:02:e6:b6:be:78:95:78:f2:8c:0e:77:0e:d0:
                    8f:21:0c:64:3e:b2:18:f5:95:80:d2:d1:b4:cc:26:
                    04:0e:a1:19:6b:9a:09:c8:31:cd:5e:09:74:c1:c8:
                    f2:1f:7b:8c:00:25:d9:c7:d5:d8:d5:e9:88:6a:16:
                    b8:1d:b2:1b:5c:9e:9e:a0:8a:e3:d7:6f:7f:2a:38:
                    ce:b2:23:13:18:78:d3:d3:a6:cc:bf:64:67:c4:e5:
                    9e:f5:4a:fc:1c:4a:38:a9:25:51:21:68:41:f1:bb:
                    9c:c1:8e:c7:fb:38:59:fd:44:b1:cb:d8:b5:d4:29:
                    d9:ea:11:b5:fe:10:9b:25:59:ca:d4:d3:34:17:e4:
                    ac:bc:ec:51:ab:7f:4b:5f:c9:9e:01:f0:15:f9:14:
                    7e:87:bd:d9:2e:b0:2b:8a:d6:56:4d:83:02:10:ed:
                    68:0f:11:ba:46:89:03:37:1c:e6:7e:93:6d:a9:2d:
                    14:c3:d8:4f:f1:cb:f7:8f:c4:44:c4:41:82:1a:f9:
                    d4:5d:87:9f:83:fe:16:05:38:a9:27:40:45:d8:8f:
                    37:a0:ab:e8:fa:df:01:d7:8d:ea:b3:f9:34:ce:ac:
                    49:ec:44:5c:71:bb:87:15:9a:8d:7c:71:b5:c0:5a:
                    b7:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                71:7D:2E:61:EE:F3:C7:7F:EC:27:DB:B4:CD:1B:CF:4D:A2:D2:2B:15
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:communeapi.com, DNS:www.communeapi.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 29 05:45:43.333 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B0:41:66:CB:DB:9A:0B:FA:8B:F1:18:
                                53:EC:BE:CE:CF:94:82:CC:74:79:9B:50:CF:BF:FC:33:
                                C3:9A:D6:F0:AA:02:21:00:BD:71:2B:0D:3E:5A:EA:CA:
                                7A:D3:C7:68:96:B4:9A:F8:44:33:9C:2A:14:0F:65:6D:
                                5A:C9:C2:E4:F0:88:CA:F7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 29 05:45:43.329 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:CD:FD:A0:39:7A:0B:AE:33:FA:00:6F:
                                36:AF:8B:E3:7D:E5:75:1C:41:7C:2F:A2:E9:7F:A1:3F:
                                53:E5:00:AA:A9:02:20:2E:E5:7A:78:91:24:1A:79:BA:
                                2B:90:9A:00:DE:DE:4D:81:3A:2B:6E:15:87:72:74:86:
                                23:2B:FF:81:1C:07:31
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0f:b5:df:90:bd:1a:9a:c0:b2:a8:47:fa:73:fb:a7:56:39:ba:
        9e:13:97:cf:23:9a:f5:f7:57:c9:23:85:9f:16:07:ad:c9:f5:
        b5:0a:f6:b2:29:1c:51:8b:d9:a2:0b:6f:a7:66:5d:a3:3b:5b:
        a3:48:66:24:6d:71:15:bf:26:a3:03:b0:ca:ac:ff:0f:14:2a:
        d7:23:9c:ff:cb:e2:36:41:dd:ce:95:ab:e3:7d:98:79:4a:11:
        1e:8b:22:94:89:a5:75:37:5f:fe:bc:2e:df:c6:dc:67:0a:b9:
        be:dc:be:99:f0:bb:9e:ee:88:e3:a1:ef:af:57:aa:f6:5e:88:
        a3:5a:f7:43:7d:19:b2:1a:7b:5c:da:4c:59:6c:67:70:0c:95:
        1f:f0:48:77:64:44:75:05:f8:49:57:d3:02:c1:d1:3e:5d:b8:
        aa:60:a1:25:1b:3e:5f:69:40:85:8b:36:b1:2a:55:02:90:8c:
        f7:2e:51:eb:07:e8:99:26:32:9b:96:ea:74:f6:d9:f7:75:76:
        10:02:fb:10:44:5d:60:d4:3a:99:e9:bb:8d:b4:b4:70:4c:c1:
        94:ff:57:72:3e:20:4e:33:2d:f1:3e:3f:b9:f4:4d:f0:8e:26:
        97:f2:65:4b:05:49:23:fb:9b:95:99:59:ea:2b:57:64:6b:b6:
        73:1c:e9:f3

963613946 | 2024-05-06T08:37:37.106416

1433 / tcp

\x04\x01\x01\x00\x004\x01\x00\xaa\xec\x00\x14H\x00\x00\x01\x0ef\x00L\x00o\x00g\x00i\x00n\x00 \x00f\x00a\x00i\x00l\x00e\x00d\x00.\x00 \x00T\x00h\x00e\x00 \x00l\x00o\x00g\x00i\x00n\x00 \x00i\x00s\x00 \x00f\x00r\x00o\x00m\x00 \x00a\x00n\x00 \x00u\x00n\x00t\x00r\x00u\x00s\x00t\x00e\x00d\x00 \x00d\x00o\x00m\x00a\x00i\x00n\x00 \x00a\x00n\x00d\x00 \x00c\x00a\x00n\x00n\x00o\x00t\x00 \x00b\x00e\x00 \x00u\x00s\x00e\x00d\x00 \x00w\x00i\x00t\x00h\x00 \x00I\x00n\x00t\x00e\x00g\x00r\x00a\x00t\x00e\x00d\x00 \x00a\x00u\x00t\x00h\x00e\x00n\x00t\x00i\x00c\x00a\x00t\x00i\x00o\x00n\x00.\x00\nc\x00o\x00m\x00m\x00u\x00n\x00e\x00a\x00p\x00i\x00\x00\x01\x00\xfd\x02\x00\x00\x00\x00\x00\x00\x00

748751232 | 2024-05-09T03:47:13.960561

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.36-0ubuntu0.20.04.1
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: caching_sha2_password

-726790289 | 2024-05-08T07:15:45.013975

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:4d:18:4a:07:fb:dc:ff:5e:ed:00:bd:6f:39:6b:a0:df:c1:7e:a7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=communeapi
        Validity
            Not Before: Jun 18 00:50:01 2020 GMT
            Not After : Jun 16 00:50:01 2030 GMT
        Subject: CN=communeapi
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dd:ef:f1:db:29:86:6d:8c:bc:af:c6:5d:b6:d7:
                    1e:b1:97:a3:f8:40:82:01:64:8b:29:f9:1c:1e:01:
                    8b:e4:43:11:c4:01:f2:ef:09:88:6a:28:1f:12:82:
                    d4:31:02:56:80:04:10:b1:dc:b8:88:c4:62:3e:01:
                    d9:6a:4a:39:83:b6:6d:47:0b:ac:22:3f:89:5b:0f:
                    9c:0d:57:b9:15:11:0d:b4:e0:2d:15:75:13:72:84:
                    fd:17:13:eb:9f:12:dc:f7:6f:22:02:15:c6:ea:5b:
                    57:3c:c7:b9:5a:f9:ff:d8:a5:93:23:e2:1e:61:46:
                    cc:70:d3:b6:47:96:87:24:16:96:ec:20:b3:ed:21:
                    16:50:95:43:3b:16:9c:b6:6c:26:6e:81:55:7b:10:
                    30:f1:15:d3:56:14:30:bf:a7:ee:43:b0:54:a7:31:
                    a7:02:04:ee:c6:c6:a8:db:5b:86:0f:8f:16:fb:18:
                    f2:5b:3c:e4:af:f9:ba:33:14:3c:e4:b9:5b:fc:fc:
                    f1:9e:58:f9:68:14:d1:ca:c4:5f:5d:7d:79:dd:5f:
                    d1:1b:e4:f4:ab:bb:87:8b:5f:64:ba:c3:c2:44:22:
                    b0:1d:b5:bc:8c:11:d7:b5:a8:88:fe:15:23:37:56:
                    d1:ef:85:51:62:1d:cb:d0:70:82:a4:e1:cc:c1:1b:
                    4e:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:communeapi
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        93:ac:a1:d1:56:72:df:28:0c:59:d0:60:2d:86:c6:6c:a7:bd:
        92:0b:b1:da:4e:ba:2c:89:bf:96:f0:3b:f8:1f:20:a8:c8:6f:
        1d:4d:4f:8f:4c:22:a1:34:27:78:7f:d4:1c:49:b8:6e:b2:2c:
        10:83:91:43:eb:50:22:8a:2d:bc:2c:a5:35:7d:04:09:b5:26:
        7d:ee:7e:0b:3b:56:8f:e1:13:64:16:9c:d2:a4:0b:74:2f:33:
        bf:56:c5:2d:46:34:d1:92:97:06:bc:9e:8a:76:f3:b7:47:8d:
        a0:2f:08:70:e3:f6:bb:28:b4:a3:f7:c9:5a:79:31:74:4b:89:
        54:c4:89:ec:f1:0c:43:e6:f5:15:fe:c1:ca:d5:7d:14:01:0f:
        6a:d6:ce:4e:e3:17:f8:ed:ce:96:b3:d0:2a:77:0e:33:9f:42:
        48:0e:88:30:e5:54:60:42:8f:62:20:97:f9:bf:0e:25:e9:39:
        6d:81:9b:f2:91:78:ea:a8:10:e1:19:31:22:fe:7e:e3:b2:93:
        d0:5c:76:85:79:37:50:36:db:9f:da:43:ed:76:e8:5e:56:b8:
        5f:e0:2f:30:41:6a:80:94:78:c4:56:f1:1b:b1:31:d4:d8:ec:
        dc:fc:03:c3:eb:66:a6:37:46:d9:7f:91:84:76:46:50:2d:1c:
        c0:66:a3:1c

161.35.234.240

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1062991961 | 2024-05-04T22:06:57.168870
21 / tcp

914919813 | 2024-05-02T17:20:33.738855
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-11T07:07:14.384572
80 / tcp

nginx1.18.0

-1979175224 | 2024-05-09T23:09:56.622757
443 / tcp

nginx1.18.0

963613946 | 2024-05-06T08:37:37.106416
1433 / tcp

MS-SQL Server 2019 CU2615.0.4365.0

748751232 | 2024-05-09T03:47:13.960561
3306 / tcp

MySQL8.0.36-0ubuntu0.20.04.1

-726790289 | 2024-05-08T07:15:45.013975
5432 / tcp

PostgreSQL12.14 - 12.18

Products

Pricing

Contact Us

161.35.234.240

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1062991961 | 2024-05-04T22:06:57.168870 21 / tcp

914919813 | 2024-05-02T17:20:33.738855 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-11T07:07:14.384572 80 / tcp

nginx1.18.0

-1979175224 | 2024-05-09T23:09:56.622757 443 / tcp

nginx1.18.0

963613946 | 2024-05-06T08:37:37.106416 1433 / tcp

MS-SQL Server 2019 CU2615.0.4365.0

748751232 | 2024-05-09T03:47:13.960561 3306 / tcp

MySQL8.0.36-0ubuntu0.20.04.1

-726790289 | 2024-05-08T07:15:45.013975 5432 / tcp

PostgreSQL12.14 - 12.18

Products

Pricing

Contact Us

-1062991961 | 2024-05-04T22:06:57.168870
21 / tcp

914919813 | 2024-05-02T17:20:33.738855
22 / tcp

677579724 | 2024-05-11T07:07:14.384572
80 / tcp

-1979175224 | 2024-05-09T23:09:56.622757
443 / tcp

963613946 | 2024-05-06T08:37:37.106416
1433 / tcp

748751232 | 2024-05-09T03:47:13.960561
3306 / tcp

-726790289 | 2024-05-08T07:15:45.013975
5432 / tcp