GeneralInformation

Hostnames	wallpaper-api.bgnetmobile.com
Domains	bgnetmobile.com
Cloud Provider	DigitalOcean
Cloud Region	de-he
Country	Germany
City	Frankfurt am Main
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 5432

-822710316 | 2024-05-09T13:21:05.461487

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDgON4yUObuCOrBdOSSRPs3mXLqbbxbMCicq6IexCkposlk
YiiiwDYknBPFefNjGfDwj/S5thoYawdeUUIkt4sFz4uM+txJ51JiWOIvqS+9/VawS7YT8eJBQbSx
Cnohq2zFOuKDM85alOO3KFSaSwhtL96M9MqTkvkHNoY7X0xFEcaQ64ONypDhWx1olm2jcYvGiZJs
KoH8KGIuGvkNbOKWLBoQLQwrlpKPxosnvAJ1UVx7dAYzrVbi0Xc3lhuAKtNBDnSj/9f7GxTE0Cih
kX/pWad9VpK6U34H/EbFOa/o1gLBJ+b4nCJoq2fek+uH4HClbWRglTnfBXrsqTtrkfU9olLDurzi
9m+JA1DuTvmSXbCLsMJP48VLB2BB75jQhpBJul7rKPOA5oP8zlSvRPstcyDfiF+WNyTxKbL9NLmo
mv3xsG2dv5aBQDsgcWpOTYoZuU9VLJKL2cNmAAgxnA0JdaEB5zOualnmExGGjp/XXDh0kLEen765
yHr9GB31gKc=
Fingerprint: 73:a2:96:b4:5b:9b:47:4c:0b:84:f3:c3:66:93:77:29

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-12T03:24:01.179476

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 12 May 2024 03:23:54 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

2145131302 | 2024-05-11T14:04:23.807607

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 14:04:18 GMT
Content-Length: 0
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:07:d8:dc:4c:fd:31:d7:9f:b8:c5:34:e9:01:81:0d:4b:8f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 25 08:44:41 2024 GMT
            Not After : Jun 23 08:44:40 2024 GMT
        Subject: CN=wallpaper-api.bgnetmobile.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cc:ed:51:99:d6:d8:83:94:07:58:0f:84:e1:e9:
                    c6:22:46:17:bf:4f:bd:ed:b9:0b:15:f8:3d:47:55:
                    97:f9:06:17:6f:63:c5:86:85:1e:96:bb:fb:c7:9b:
                    e6:9b:4f:f9:f3:33:90:07:a1:13:a9:1b:98:09:8b:
                    38:08:4c:e7:30:58:14:67:98:90:60:e6:dc:cb:a7:
                    40:af:3e:a9:1b:db:61:f8:f7:4f:45:02:85:95:3d:
                    24:cf:7d:f0:a8:1e:93:ca:a2:3e:de:0e:66:c6:9d:
                    d5:8d:22:85:6e:ef:a8:da:f0:fa:d1:5a:17:33:3e:
                    04:8d:79:e8:2e:a4:17:42:71:31:aa:11:87:0a:48:
                    d3:49:7c:4f:e1:0b:91:d9:79:0d:b9:b0:34:d1:bb:
                    56:36:03:01:c1:78:de:79:24:77:f5:cb:7a:36:fd:
                    09:09:88:8c:11:6f:1a:f9:9a:f1:a7:ac:c2:8a:db:
                    ce:ae:32:61:cc:8d:77:a3:42:36:7b:b5:e6:0d:ec:
                    41:41:9b:23:ac:7f:7a:08:c5:f8:e4:69:be:87:c9:
                    5d:f3:63:30:38:e8:1d:b5:7f:a9:94:b8:25:b6:b9:
                    1f:5a:ed:da:8a:3a:64:1c:20:99:22:24:b9:1b:99:
                    46:f6:b8:cd:35:00:c4:c5:90:9c:68:fa:79:fa:fd:
                    8d:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                6D:E5:EF:F3:7C:BE:E7:88:41:F2:0E:D4:60:C3:8B:EF:9F:0D:F1:B5
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:wallpaper-api.bgnetmobile.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 25 09:44:41.841 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D2:97:DE:7B:EB:C0:FD:6D:D7:E6:A5:
                                99:1A:AD:17:92:53:C5:E6:8F:C1:06:99:14:4A:B4:1F:
                                91:54:D9:86:1D:02:20:44:91:D1:89:58:0D:58:07:32:
                                FF:F0:B9:07:A2:DC:E4:A4:C7:8A:9A:B0:28:0D:01:E0:
                                FF:4F:8C:87:56:E7:98
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 25 09:44:43.827 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:2A:51:02:9B:38:7E:5C:A7:DB:11:19:8B:
                                89:63:9E:E8:6D:D3:D5:FA:87:EA:0D:1F:DE:A2:02:40:
                                61:34:CE:A8:02:20:1B:7B:4F:AD:28:9F:B9:40:C7:15:
                                E8:70:30:68:0E:CE:10:FF:91:2E:89:D1:58:7E:79:DC:
                                37:D8:CC:A8:DC:C8
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        96:c6:79:70:5c:1e:97:da:fd:64:29:9d:1b:f3:67:4d:2c:62:
        db:bf:6a:1d:ec:87:46:fa:39:a3:4a:30:c3:00:b8:47:b8:03:
        a7:e6:0e:a5:15:96:87:37:05:e5:e5:ac:74:c1:d4:5e:24:be:
        75:8f:1f:e6:14:53:b2:07:28:ae:2a:f1:11:1e:0f:ac:b9:8d:
        1b:9f:5e:85:75:00:19:6e:26:96:c5:8c:4c:5e:0d:d6:a8:51:
        56:78:f2:9d:15:ba:87:b9:05:a0:da:b5:ad:f2:1c:55:24:21:
        f7:7b:c1:5d:9e:5e:ce:a9:16:89:ba:fb:29:42:3f:8e:bb:6c:
        b1:b6:c4:a6:35:e0:c8:3e:5f:d7:0d:d9:35:dc:01:63:e1:48:
        3b:72:d6:7b:ab:25:00:9f:ec:bf:69:7f:de:80:a6:0a:69:c1:
        ca:8a:3b:5d:b2:dd:d4:ad:07:0f:b0:65:2b:42:8d:ed:e1:be:
        b4:2a:48:d2:0e:07:c0:6c:5a:84:1a:0c:33:e0:7c:ac:d7:aa:
        7b:12:7a:65:9b:99:b6:81:ff:09:9b:fc:a7:b7:dc:dc:e8:8c:
        c7:dc:6a:13:1d:fa:0a:f3:8e:74:58:5d:46:78:52:b6:9a:6d:
        c5:4b:6a:96:e1:a3:6a:f8:f3:e5:13:e9:b2:7b:42:3d:1d:69:
        ee:12:ac:23

-726790289 | 2024-05-06T06:06:28.973413

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

165.232.112.245

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-822710316 | 2024-05-09T13:21:05.461487
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-12T03:24:01.179476
80 / tcp

nginx1.18.0

2145131302 | 2024-05-11T14:04:23.807607
443 / tcp

nginx1.18.0

-726790289 | 2024-05-06T06:06:28.973413
5432 / tcp

PostgreSQL12.14 - 12.18

Products

Pricing

Contact Us

165.232.112.245

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-822710316 | 2024-05-09T13:21:05.461487 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-12T03:24:01.179476 80 / tcp

nginx1.18.0

2145131302 | 2024-05-11T14:04:23.807607 443 / tcp

nginx1.18.0

-726790289 | 2024-05-06T06:06:28.973413 5432 / tcp

PostgreSQL12.14 - 12.18

Products

Pricing

Contact Us

-822710316 | 2024-05-09T13:21:05.461487
22 / tcp

677579724 | 2024-05-12T03:24:01.179476
80 / tcp

2145131302 | 2024-05-11T14:04:23.807607
443 / tcp

-726790289 | 2024-05-06T06:06:28.973413
5432 / tcp