Hostnames | admin.upwordo.com |
Domains | upwordo.com |
Cloud Provider | DigitalOcean |
Cloud Region | us-nj |
Country | United States |
City | Clifton |
Organization | DigitalOcean, LLC |
ISP | DigitalOcean, LLC |
ASN | AS14061 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
382841535 | 2024-05-18T05:55:54.90599522 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBO2zICKre1+jucoSccxBqSc1 NnSbbC5bk6u5LSAfCdmwYsI/CJZz1cBgzDsCxZKX2w64bZqtAngkgfeeQpNNSIc= Fingerprint: da:f5:48:68:cb:38:49:37:cb:64:bb:33:d7:e4:f4:e7 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
677579724 | 2024-05-14T06:27:21.39162880 / tcp
HTTP/1.1 404 Not Found Server: nginx/1.18.0 (Ubuntu) Date: Tue, 14 May 2024 06:27:21 GMT Content-Type: text/html Content-Length: 564 Connection: keep-alive
865258009 | 2024-05-15T14:05:29.688209443 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Wed, 15 May 2024 14:05:29 GMT Content-Type: text/html; charset=utf-8 Content-Length: 6178 Connection: keep-alive Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding x-nextjs-cache: HIT X-Powered-By: Next.js Cache-Control: s-maxage=31536000, stale-while-revalidate ETag: "ywives3oxv4rm"
Certificate: Data: Version: 3 (0x2) Serial Number: 03:1a:15:0b:06:5d:3c:a0:e3:c5:1d:2c:44:19:10:f9:1e:83 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 20 11:07:40 2024 GMT Not After : Jul 19 11:07:39 2024 GMT Subject: CN=admin.upwordo.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c3:d1:30:99:29:8b:36:2b:6f:77:ae:19:6d:08: 61:76:e1:5b:55:97:a7:ac:6b:5e:33:3e:ce:d9:24: e0:9e:56:c5:7f:43:65:19:f8:fe:9c:5e:d9:32:7c: 2e:0c:49:23:dc:24:b8:9c:4a:ba:d8:3a:11:bd:03: fb:d1:89:ba:f5:92:70:3c:85:66:51:62:b0:0c:7e: b6:8d:09:d1:55:07:74:e2:ef:b7:44:56:a8:7f:f2: 07:fd:cf:23:d1:80:39:e7:3d:eb:9e:74:1a:9c:61: 0f:86:79:a2:5c:33:1c:f5:d3:2e:5f:ed:ee:0c:59: c4:d7:a3:ab:c9:38:56:35:59:3f:1a:2c:10:d2:e0: a1:10:04:e3:c0:86:da:bb:5a:70:40:c8:02:fc:fa: 7a:22:0b:cb:10:5c:97:49:83:80:49:29:7e:f7:4b: 67:ec:e6:29:38:ec:51:f4:6c:07:3b:27:50:d6:2f: 2f:c0:dc:a6:95:78:ff:f8:77:d0:47:c2:91:9e:fc: a2:d2:9e:8c:ac:25:fe:e2:f5:b7:fa:f2:e2:a7:3e: 99:d6:da:0c:87:61:06:e7:4b:23:5b:37:b2:e0:a1: 6a:9a:c3:ef:c9:2c:ab:36:ef:39:ae:fa:8d:d2:f8: bd:ce:cc:90:89:f6:a3:6b:8e:44:c5:db:93:83:38: 35:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: F7:80:74:C1:FA:CE:6C:20:3A:44:81:57:05:F4:0C:EC:5D:97:17:7D X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:admin.upwordo.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Apr 20 12:07:40.976 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:7A:76:DB:4B:80:6D:62:CC:AD:19:6C:11: 5A:21:B6:A7:39:E8:48:FD:C2:4F:EF:CA:DF:A8:B2:4C: 00:58:7D:59:02:20:4F:8C:59:8D:99:99:FA:12:FF:AA: AA:D9:B8:F3:B9:E8:D6:EA:50:43:A6:E9:D6:4A:21:23: 73:FB:C0:39:88:9E Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Apr 20 12:07:40.908 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:74:98:92:AB:2C:5E:DA:8B:E4:A4:08:77: AF:26:C4:F3:47:8A:26:D2:BE:DF:4E:7C:16:47:1F:91: 52:77:B0:55:02:21:00:E3:FC:1D:82:86:36:09:24:C0: 7A:B7:FE:BF:50:DC:1E:7E:71:0E:D7:DD:76:C5:5A:7B: B8:0E:F9:FB:F6:16:41 Signature Algorithm: sha256WithRSAEncryption Signature Value: a0:d9:93:eb:bd:6b:66:07:6b:93:d1:74:c2:47:95:07:8c:98: 18:f5:f7:ac:1f:2a:16:a2:9a:40:2b:9e:2f:21:c4:83:be:d9: f5:2b:49:51:bc:9b:78:12:2c:a7:53:9d:ed:51:7a:56:02:57: b9:bc:1a:ae:09:a9:e7:0b:cb:54:b9:38:4f:51:3d:2c:7f:d3: 99:38:35:7b:70:dd:f6:e8:aa:40:97:1b:f6:93:33:95:f3:1a: 79:bf:67:87:28:c2:90:50:34:3e:bf:63:c1:36:e9:bb:6f:c1: 80:eb:f7:2d:a3:9f:3f:c2:f8:dd:97:34:d0:1d:a5:bc:f3:42: 8f:f5:de:dc:bd:bc:0c:a8:48:d0:39:24:fd:fe:cb:3c:3d:51: 53:a1:f2:57:80:f6:cc:e3:76:e3:62:d1:fa:f9:7f:a7:63:66: 98:31:7e:f9:96:ce:5d:af:1a:47:93:65:95:ac:e9:54:83:67: ae:23:d3:4e:6a:0a:24:e3:2b:5b:fd:2f:2f:95:5e:ab:ec:33: 3b:a7:97:1f:00:56:c9:59:de:c4:46:85:ca:12:d5:f8:f2:66: a9:bd:3d:7e:e9:e5:74:7e:32:b8:f1:f0:23:9e:72:5b:f4:0d: 52:e4:56:76:c4:dc:91:64:85:28:4e:6d:02:ce:45:30:76:62: cf:20:42:70
-1826923939 | 2024-05-20T23:29:33.2968813001 / tcp
HTTP/1.1 200 OK Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding x-nextjs-cache: HIT X-Powered-By: Next.js Cache-Control: s-maxage=31536000, stale-while-revalidate ETag: "ywives3oxv4rm" Content-Type: text/html; charset=utf-8 Content-Length: 6178 Date: Mon, 20 May 2024 23:29:33 GMT Connection: keep-alive Keep-Alive: timeout=5 <!DOCTYPE html><html id="__next_error__"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-20a22980528df72c.js" crossorigin=""/><script src="/_next/static/chunks/fd9d1056-b86b763450a38092.js" async="" crossorigin=""></script><script src="/_next/static/chunks/2472-f9e6f5b87f827e5b.js" async="" crossorigin=""></script><script src="/_next/static/chunks/main-app-fb04355e43e56094.js" async="" crossorigin=""></script><meta name="next-size-adjust"/><script src="/_next/static/chunks/polyfills-c67a75d1b6f99dc8.js" crossorigin="" noModule=""></script></head><body><script src="/_next/static/chunks/webpack-20a22980528df72c.js" crossorigin="" async=""></script><script>(self.__next_f=self.__next_f||[]).push([0]);self.__next_f.push([2,null])</script><script>self.__next_f.push([1,"1:HL[\"/_next/static/media/c9a5bc6a7c948fb0-s.p.woff2\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff2\"}]\n2:HL[\"/_next/static/css/fa08ccda08708313.css\",\"style\",{\"crossOrigin\":\"\"}]\n0:\"$L3\"\n"])</script><script>self.__next_f.push([1,"4:I[3728,[],\"\"]\n6:I[9928,[],\"\"]\n7:I[4099,[\"3185\",\"static/chunks/app/layout-1b988ebfd09789c6.js\"],\"\"]\n8:I[4596,[\"3185\",\"static/chunks/app/layout-1b988ebfd09789c6.js\"],\"\"]\n9:I[6954,[],\"\"]\na:I[7264,[],\"\"]\nb:I[308,[\"2420\",\"static/chunks/9081a741-dd8e5993991f401c.js\",\"8326\",\"static/chunks/8326-a57bf5079462f8d2.js\",\"4758\",\"static/chunks/4758-ca82d137a3fb21fd.js\",\"4549\",\"static/chunks/4549-b049b959e6647630.js\",\"25\",\"static/chunks/25-489ad863b2a67f77.js\",\"7534\",\"static/chunks/app/(default)/layout-9ea6541571720435.j"])</script><script>self.__next_f.push([1,"s\"],\"\"]\nc:I[7520,[\"2420\",\"static/chunks/9081a741-dd8e5993991f401c.js\",\"8326\",\"static/chunks/8326-a57bf5079462f8d2.js\",\"4758\",\"static/chunks/4758-ca82d137a3fb21fd.js\",\"4549\",\"static/chunks/4549-b049b959e6647630.js\",\"25\",\"static/chunks/25-489ad863b2a67f77.js\",\"7534\",\"static/chunks/app/(default)/layout-9ea6541571720435.js\"],\"\"]\nd:I[413,[\"2420\",\"static/chunks/9081a741-dd8e5993991f401c.js\",\"8326\",\"static/chunks/8326-a57bf5079462f8d2.js\",\"4758\",\"static/chunks/4758-ca82d137a3fb21fd.js\",\"4549\",\"static/chunks/4549-b"])</script><script>self.__next_f.push([1,"049b959e6647630.js\",\"25\",\"static/chunks/25-489ad863b2a67f77.js\",\"9160\",\"static/chunks/app/not-found-08e2701c5d024fe0.js\"],\"Image\"]\ne:I[8326,[\"2420\",\"static/chunks/9081a741-dd8e5993991f401c.js\",\"8326\",\"static/chunks/8326-a57bf5079462f8d2.js\",\"4758\",\"static/chunks/4758-ca82d137a3fb21fd.js\",\"4549\",\"static/chunks/4549-b049b959e6647630.js\",\"25\",\"static/chunks/25-489ad863b2a67f77.js\",\"9160\",\"static/chunks/app/not-found-08e2701c5d024fe0.js\"],\"\"]\n"])</script><script>self.__next_f.push([1,"3:[[[\"$\",\"link\",\"0\",{\"rel\":\"stylesheet\",\"href\":\"/_next/static/css/fa08ccda08708313.css\",\"precedence\":\"next\",\"crossOrigin\":\"\"}]],[\"$\",\"$L4\",null,{\"buildId\":\"faEcIchuAwApXBcxtCWm_\",\"assetPrefix\":\"\",\"initialCanonicalUrl\":\"/\",\"initialTree\":[\"\",{\"children\":[\"__PAGE__\",{}]},\"$undefined\",\"$undefined\",true],\"initialHead\":[false,\"$L5\"],\"globalErrorComponent\":\"$6\",\"children\":[null,[\"$\",\"html\",null,{\"lang\":\"en\",\"suppressHydrationWarning\":true,\"children\":[\"$\",\"body\",null,{\"className\":\"__variable_aaf875 font-inter antialiased bg-slate-100 dark:bg-slate-900 text-slate-600 dark:text-slate-400\",\"children\":[\"$\",\"$L7\",null,{\"children\":[\"$\",\"$L8\",null,{\"children\":[\"$\",\"$L9\",null,{\"parallelRouterKey\":\"children\",\"segmentPath\":[\"children\"],\"loading\":\"$undefined\",\"loadingStyles\":\"$undefined\",\"hasLoading\":false,\"error\":\"$undefined\",\"errorStyles\":\"$undefined\",\"template\":[\"$\",\"$La\",null,{}],\"templateStyles\":\"$undefined\",\"notFound\":[\"$\",\"div\",null,{\"className\":\"flex h-[100dvh] overflow-hidden\",\"children\":[[\"$\",\"$Lb\",null,{}],[\"$\",\"div\",null,{\"className\":\"relative flex flex-col flex-1 overflow-y-auto overflow-x-hidden\",\"children\":[[\"$\",\"$Lc\",null,{}],[\"$\",\"main\",null,{\"className\":\"grow [\u0026\u003e*:first-child]:scroll-mt-16\",\"children\":[\"$\",\"div\",null,{\"className\":\"relative bg-white dark:bg-slate-900 h-full\",\"children\":[\"$\",\"div\",null,{\"className\":\"px-4 sm:px-6 lg:px-8 py-8 w-full max-w-[96rem] mx-auto\",\"children\":[\"$\",\"div\",null,{\"className\":\"max-w-2xl m-auto mt-16\",\"children\":[\"$\",\"div\",null,{\"className\":\"text-center px-4\",\"children\":[[\"$\",\"div\",null,{\"className\":\"inline-flex mb-8\",\"children\":[[\"$\",\"$Ld\",null,{\"className\