GeneralInformation

Hostnames	o20.default-host.net
Domains	default-host.net
Country	France
City	Paris
Organization	Scaleway Dedibox - Paris, France
ISP	SCALEWAY S.A.S.
ASN	AS12876
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80

-374571450 | 2024-04-10T16:01:46.442391

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBEx0oq4iBiQKdhEXLktbv0Ok
NiuRU8NkOsk3f0LvtEwre+OaOseZww/r/I45HgdVk79+2+sMqWidm23fp/KVwg4=
Fingerprint: e5:a7:0e:e2:1f:2a:80:59:a1:9f:59:c2:64:11:08:06

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-402753599 | 2024-04-13T22:26:58.120358

80 / tcp

HTTP/1.1 503 Service Temporarily Unavailable
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 13 Apr 2024 22:26:55 GMT
Content-Type: text/html
Content-Length: 933
Connection: close
ETag: "4cefac17-3a5"

163.172.52.228

Last Seen: 2024-04-13

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-374571450 | 2024-04-10T16:01:46.442391
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-402753599 | 2024-04-13T22:26:58.120358
80 / tcp

nginx1.18.0

Products

Pricing

Contact Us