GeneralInformation

Hostnames	odoo-17.ursio-tec.de static.144.49.119.168.clients.your-server.de
Domains	ursio-tec.de your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

985522613 | 2024-04-23T23:20:36.709257

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBQHvRIphflmlSR71N8ukQET
o8LVaaom8K1fjZ35EdEhZQUBG5CRGxVLJrmJGZU7cwIWaYUSt+fZr5W5ZU9p2uk=
Fingerprint: fb:99:c7:0f:e0:29:d8:01:5a:fd:02:d5:6b:9b:ad:34

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-04-27T17:31:05.196417

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 27 Apr 2024 17:31:04 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://168.119.49.144/

1563265241 | 2024-04-24T14:02:24.582816

443 / tcp

SSL Error: TLSV1_ALERT_PROTOCOL_VERSION

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:8f:82:58:05:68:37:b5:23:7d:77:c3:4a:e4:4a:8d:d3:8a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  3 21:30:22 2024 GMT
            Not After : Jun  1 21:30:21 2024 GMT
        Subject: CN=odoo-17.ursio-tec.de
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:d5:37:0d:77:b8:10:e8:7b:a8:3c:2b:85:75:fe:
                    04:a4:d0:c1:fe:51:7f:c4:8b:ca:0a:40:02:44:08:
                    40:ca:d3:ad:5c:07:5e:49:58:f6:75:ac:87:6e:a1:
                    58:b0:29:8d:87:5b:32:9a:6d:17:65:8a:95:a5:f9:
                    bf:6a:e3:20:46
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                32:0C:72:FF:DC:69:4C:4C:21:DF:28:AE:D2:90:2B:0E:CF:AC:0F:01
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:odoo-17.ursio-tec.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar  3 22:30:22.657 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:70:A2:2E:53:55:9F:17:D8:E4:27:52:13:
                                89:F5:12:96:97:24:26:2D:C8:3F:06:79:05:37:DF:8C:
                                88:52:B0:30:02:20:5E:A1:C3:52:03:93:4D:B9:D1:A4:
                                75:BA:C1:B3:2C:EE:D1:2F:84:A9:D9:4E:6C:22:62:DA:
                                1A:0D:1F:5A:87:8D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar  3 22:30:22.766 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CB:9F:C0:D2:49:45:FA:85:B3:B9:35:
                                3C:D8:6B:A2:E6:9C:71:02:5B:E4:ED:B3:A6:42:8E:74:
                                71:A6:1C:76:2B:02:21:00:B3:BE:58:4A:FD:1E:A5:D6:
                                10:0F:56:F8:F1:56:39:95:CA:71:E4:E3:EA:3F:9A:88:
                                A2:A1:B4:E4:37:19:24:87
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        92:50:4b:c1:0e:64:a2:b6:04:2d:47:a5:8c:a1:09:e3:d8:77:
        03:4d:04:c3:f0:b5:8a:3a:ad:58:b4:2d:42:53:3a:dc:0f:7f:
        4c:8f:2c:9a:0b:08:17:49:0e:d9:e0:24:b0:a0:c3:09:fb:95:
        ec:3a:8e:bf:23:2e:d4:57:54:1d:da:61:27:02:b3:e4:b2:3f:
        7c:ef:76:5b:b1:7e:ec:bf:b1:5a:a8:df:61:90:4c:8f:c7:83:
        ab:33:b8:65:0d:cb:ad:e3:b6:f9:4e:86:6f:01:a3:cc:ec:9a:
        8f:52:ed:6f:73:1a:64:11:5d:dd:92:41:d8:2a:5e:15:e2:0c:
        38:ba:9e:8a:d4:6f:8f:85:3b:b8:7e:f4:54:bd:c6:63:b3:83:
        27:e6:c5:73:34:54:ef:05:c0:cb:3f:66:52:b9:ca:da:52:f4:
        79:bd:d3:69:05:f0:11:0a:cc:34:e8:59:59:d3:e8:6c:8d:e5:
        6a:b7:81:41:ba:49:34:40:93:ac:a2:df:1b:7d:8d:6b:1e:53:
        b4:8c:c0:49:3d:47:15:65:65:a7:c7:22:21:b1:33:b7:73:f6:
        1c:ae:7f:89:3e:b8:ca:5a:c5:b0:38:f5:26:a9:62:54:49:9a:
        b9:32:d6:e4:45:d1:6c:d7:56:8e:db:cb:17:ba:5f:7e:ec:90:
        9d:a8:a9:c7

168.119.49.144

Last Seen: 2024-04-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

985522613 | 2024-04-23T23:20:36.709257
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-04-27T17:31:05.196417
80 / tcp

nginx1.18.0

1563265241 | 2024-04-24T14:02:24.582816
443 / tcp

Products

Pricing

Contact Us

168.119.49.144

Last Seen: 2024-04-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

985522613 | 2024-04-23T23:20:36.709257 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-04-27T17:31:05.196417 80 / tcp

nginx1.18.0

1563265241 | 2024-04-24T14:02:24.582816 443 / tcp

Products

Pricing

Contact Us

985522613 | 2024-04-23T23:20:36.709257
22 / tcp

589765266 | 2024-04-27T17:31:05.196417
80 / tcp

1563265241 | 2024-04-24T14:02:24.582816
443 / tcp