GeneralInformation

Hostnames	app.mioidp.com
Domains	mioidp.com
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	North Bergen
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

1535576924 | 2024-04-30T04:13:46.063983

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBDXEyQQChR8QRMKagdlMYFy2
an+5RHxUdhPyTN8fOQl1HYvtJCIN4Ar10tiqHoZ8DmV3uxB2bzrk2DshxzmTOvI=
Fingerprint: 88:23:44:82:6e:6d:f2:45:10:7f:a6:39:1b:91:1d:3e

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-03T16:10:53.665190

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 03 May 2024 16:10:53 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Fri, 08 Sep 2023 18:02:43 GMT
Connection: keep-alive
ETag: "64fb61c3-264"
Accept-Ranges: bytes

1563265241 | 2024-05-12T11:09:24.468962

443 / tcp

SSL Error: TLSV1_ALERT_PROTOCOL_VERSION

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:2e:d2:64:27:4d:8c:6d:aa:5b:19:25:fd:29:f4:72:b3:23
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  6 20:22:44 2024 GMT
            Not After : Aug  4 20:22:43 2024 GMT
        Subject: CN=app.mioidp.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:45:26:19:6c:fb:97:d6:02:0e:a5:d2:92:c0:c3:
                    95:33:bc:26:58:76:be:66:ae:c9:f5:b5:d6:ed:fc:
                    82:8a:66:c4:33:0c:18:35:8a:97:5b:45:aa:9c:53:
                    bc:61:c6:a5:88:14:1a:f9:ae:70:9b:66:c7:a1:40:
                    a5:74:d2:8f:64
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                CF:04:89:0D:FA:9D:88:44:AF:0D:4D:9E:15:88:62:65:41:77:73:6C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:app.mioidp.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May  6 21:22:45.057 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9E:E3:B6:C9:D8:F6:2F:55:1B:31:0F:
                                DF:50:AE:BE:5F:54:CD:F5:60:A8:45:4C:0F:C5:13:4A:
                                68:A9:57:89:C1:02:20:72:C8:57:47:07:2A:29:4B:3E:
                                F7:31:96:FC:8A:8E:AC:91:07:66:5D:1D:38:06:EC:36:
                                56:19:2E:B4:DA:87:B1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May  6 21:22:45.138 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:81:FD:39:8F:C9:A6:C8:AB:43:FE:18:
                                76:BA:4A:39:72:95:8A:A0:4C:A6:A9:25:44:42:BB:93:
                                08:F6:8B:A5:BB:02:20:73:9C:7B:7E:A8:FF:B8:82:03:
                                9C:2A:40:96:50:CC:54:9F:86:AD:D1:D0:1A:C8:70:74:
                                C2:20:A4:4F:8F:70:1F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        67:f3:a2:2e:11:40:79:c9:cc:7f:8e:2a:4a:7f:d1:52:13:c7:
        f8:dc:01:2a:78:c9:54:01:32:cf:40:eb:1c:dd:2a:06:7b:e4:
        5a:a8:4c:a4:c7:23:48:fc:44:5a:d7:81:88:d1:cd:46:68:28:
        6c:aa:3c:03:52:2a:e8:26:17:21:4c:83:05:8f:bc:7b:17:6d:
        cc:d5:d7:15:89:84:42:ef:44:0a:c0:8a:08:ff:db:95:05:27:
        c3:a0:ae:0e:cb:01:4f:74:e3:ab:fa:91:c8:a4:b8:b5:3e:d2:
        a8:33:20:69:5f:c6:f3:fe:d1:36:d9:eb:6a:e0:be:6d:dd:12:
        34:79:ae:dd:bc:8b:cf:77:76:16:cb:1e:25:85:72:ef:70:70:
        3b:dc:b4:e4:1d:a8:7b:ef:1c:89:20:16:72:f1:40:76:28:00:
        f8:8c:26:11:80:df:02:32:a0:32:29:5e:1f:f5:0d:0a:6c:c6:
        c9:76:bb:bd:2d:14:a2:84:26:d5:f7:88:dd:6e:07:4c:8a:51:
        6f:2f:f5:4f:f8:43:8d:dc:e3:54:8d:9a:d3:ea:3c:34:19:87:
        d1:f9:e3:d1:5c:57:ee:65:9b:13:78:37:39:9a:33:7e:ef:3e:
        fb:31:c4:7c:89:78:dd:9b:fa:66:dc:51:41:81:d5:70:8b:ac:
        b3:16:d4:21

167.172.144.81

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1535576924 | 2024-04-30T04:13:46.063983
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-05-03T16:10:53.665190
80 / tcp

nginx1.18.0

1563265241 | 2024-05-12T11:09:24.468962
443 / tcp

Products

Pricing

Contact Us

167.172.144.81

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1535576924 | 2024-04-30T04:13:46.063983 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-05-03T16:10:53.665190 80 / tcp

nginx1.18.0

1563265241 | 2024-05-12T11:09:24.468962 443 / tcp

Products

Pricing

Contact Us

1535576924 | 2024-04-30T04:13:46.063983
22 / tcp

1651973090 | 2024-05-03T16:10:53.665190
80 / tcp

1563265241 | 2024-05-12T11:09:24.468962
443 / tcp