Hostnames |
cmdexe1.xyz vmi1650814.contaboserver.net |
Domains | cmdexe1.xyz contaboserver.net |
Country | Germany |
City | Nürnberg |
Organization | Contabo GmbH |
ISP | Contabo GmbH |
ASN | AS51167 |
Operating System | Ubuntu |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
980054753 | 2024-04-30T17:22:32.81915922 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.7 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQCvRPWqa5JKzLkWralsx+S9jJkJhSVCDkSBsBxjjgzfYgO3 o7ZQSX7E5pOceWtxgRIYMugfsNU+cYQBxF+ufkThVyChA3xqL1EyY5WB6wg9ZTpUgeKyTdvoYXVf cyPUP8v/hj99Uw+CcyFMO2xjq47eiN4LOxKx8jw5Kz34TmoiZhvi4NbB+TlASBq1XlDR9rec3MDc XhEDO1sCxR5uREiJ/2rUPuH37ZU2/sYJJjaVXtbQfTtfeAC6ZCCfp28wr2ZX6eGQXG2+zzeESoOC oxcu7TDVr9JKhvBXIpaYypFw6y7BXvaHXSHstaqqxuBdLknORHEv3SUFmYLpN3f7mX7cw3dOwras iZUQNwH/jfinURMsUO3A16tk09hAb1SqZdSg8G5MPel9rFdWNHXBc7PgF4JGSXOXe7GsBhqzga33 TQKQrr3UFCg+yh554i/RBzr511YsUdfWKNe9Ngt9O1WXutxdiVrKSq3eM0I7xmcHPKAZ5R+8tyt5 tLDjs2mV3wQ+zakbLtCK1lfD8StjN/y9HKho9kcPQWjTMegEwwNeSG4zczVipGnfSq9ZEm6q4o2G 9UX/FdZ5uT1W3DWWZgczuhLWeg8PccjzEz31hxbi1NqVor6xjr3M0CWdL3bMIBnsuVgiiIonjKEv Zazb7nCFnCSV/7aq5PnYLfT6sxolBw== Fingerprint: cb:38:bc:c5:74:91:4b:14:ce:c6:aa:48:4f:34:29:0b Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
1651973090 | 2024-05-07T11:42:52.42535280 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Tue, 07 May 2024 11:42:52 GMT Content-Type: text/html Content-Length: 612 Last-Modified: Sat, 27 Apr 2024 22:32:28 GMT Connection: keep-alive ETag: "662d7cfc-264" Access-Control-Allow-Origin: * Accept-Ranges: bytes
1651973090 | 2024-05-07T10:31:58.242976443 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Tue, 07 May 2024 10:31:58 GMT Content-Type: text/html Content-Length: 612 Last-Modified: Sat, 27 Apr 2024 22:32:28 GMT Connection: keep-alive ETag: "662d7cfc-264" Access-Control-Allow-Origin: * Accept-Ranges: bytes
Certificate: Data: Version: 3 (0x2) Serial Number: 03:c0:d1:eb:b5:d5:0e:66:82:1d:bf:59:10:1e:9e:ad:9f:eb Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 27 22:09:54 2024 GMT Not After : Jul 26 22:09:53 2024 GMT Subject: CN=cmdexe1.xyz Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a8:e5:1c:29:d8:33:4e:5f:19:84:9a:c7:fe:5f: 3f:ca:26:70:bc:f5:e4:39:2f:69:64:b9:f1:ce:27: 9e:3d:7e:3a:86:05:4f:d4:b6:ef:67:93:a4:16:2e: 4d:3e:7a:8a:f4:72:ee:74:d6:05:4e:45:d9:6c:d2: d4:1f:39:51:bb:36:20:68:a5:96:b6:52:e8:37:fd: c2:02:73:1d:84:00:b6:e1:18:53:9a:9e:e3:96:23: d9:f0:7d:e0:cb:e3:93:50:e4:96:ac:e8:83:82:93: ef:22:07:da:8c:be:d4:5d:46:29:95:cc:f6:79:1b: 8e:4b:41:79:f8:b8:d0:5c:83:b5:d6:cb:67:16:6e: 6c:76:61:04:e4:ea:83:d1:4c:e6:0a:0f:a9:a9:c1: d7:5c:ef:70:d3:64:cf:fd:77:19:e6:a0:21:a3:1f: 26:99:9d:e3:cc:14:dd:fb:58:fc:00:98:0a:bc:f2: c2:40:32:bc:37:f2:c0:e5:7b:64:ad:f4:5d:18:56: 96:ba:2c:fd:ee:09:4d:e0:a8:49:ad:97:0b:0c:de: 32:f6:5a:fe:be:d0:e3:00:90:ae:0d:1c:f8:55:19: 1f:c0:42:1d:bc:e0:57:d8:34:d2:25:37:d8:af:12: a0:30:a1:c5:cc:4e:09:a1:17:b2:85:47:d8:ed:cd: fc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 48:A2:F3:B9:1C:EE:0A:13:CD:E0:BC:D9:3C:AA:A0:33:8C:37:94:7A X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:cmdexe1.xyz X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Apr 27 23:09:54.924 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:94:DA:24:11:7B:CB:C9:69:BE:A9:46: 90:49:D7:BD:BF:EC:F5:2F:9F:45:55:DD:F9:FC:6D:D1: EA:CD:4B:C1:CC:02:21:00:C4:D1:20:CC:12:6B:8D:0F: C2:3E:8E:9C:0F:58:76:0F:06:BB:E6:94:D9:55:B2:F4: 38:97:CB:F1:68:67:5D:31 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32: 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C Timestamp : Apr 27 23:09:55.112 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:6C:32:C4:C5:48:98:2F:07:39:7B:84:0A: 5C:2A:80:69:0F:2E:2D:05:2E:8D:0B:9C:8E:B3:59:5A: EF:8D:87:8C:02:21:00:EA:07:70:DD:0C:7E:DB:64:3E: C8:B8:12:29:AA:F7:40:5E:7D:11:72:32:01:F4:E3:FB: 59:B0:68:FF:B9:A1:30 Signature Algorithm: sha256WithRSAEncryption Signature Value: 79:fe:18:0f:b9:96:45:02:04:4c:44:8d:a2:97:75:cc:64:cf: 7e:ef:a1:a1:d7:e0:5b:d9:29:14:1f:9e:fd:a3:36:39:a1:cc: 21:af:8e:9d:db:fa:4c:f8:1c:cb:3a:32:bc:ad:49:0b:48:a7: 68:09:5f:26:f2:19:d8:21:29:94:ba:c0:b1:19:39:72:79:5a: 39:29:cc:f4:4e:92:c9:1b:74:9f:b7:6f:08:aa:af:2a:81:d6: ca:e2:85:68:5d:42:26:6a:00:65:8a:4d:31:ad:8b:44:a4:8a: af:8c:cd:72:a5:c3:49:9d:9a:04:06:ca:21:a9:13:a7:b1:b2: 20:2d:14:cb:f1:81:37:36:ac:2e:cc:64:ff:69:bb:2f:23:35: 01:27:0f:77:ab:17:95:09:9c:40:db:dc:10:c4:e6:1a:f0:52: 43:9c:08:be:2f:c7:b9:a3:aa:63:db:2d:b4:56:53:74:17:50: 73:97:16:01:1c:74:c3:c5:0e:c9:fe:21:5a:06:5b:7c:bf:36: 06:40:6e:9e:75:76:fe:ec:3a:f4:df:18:93:ba:13:fc:d3:e3: bb:fa:1c:78:35:40:3f:5f:62:a3:7b:9b:3b:30:0d:10:d0:69: 92:ae:37:3c:cd:ec:69:d1:98:b2:57:45:b0:98:5f:f2:6c:95: 70:16:55:67
1651973090 | 2024-05-07T22:17:32.7129028081 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Tue, 07 May 2024 22:17:32 GMT Content-Type: text/html Content-Length: 612 Last-Modified: Sat, 27 Apr 2024 22:32:28 GMT Connection: keep-alive ETag: "662d7cfc-264" Access-Control-Allow-Origin: * Accept-Ranges: bytes
Certificate: Data: Version: 3 (0x2) Serial Number: 03:c0:d1:eb:b5:d5:0e:66:82:1d:bf:59:10:1e:9e:ad:9f:eb Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 27 22:09:54 2024 GMT Not After : Jul 26 22:09:53 2024 GMT Subject: CN=cmdexe1.xyz Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a8:e5:1c:29:d8:33:4e:5f:19:84:9a:c7:fe:5f: 3f:ca:26:70:bc:f5:e4:39:2f:69:64:b9:f1:ce:27: 9e:3d:7e:3a:86:05:4f:d4:b6:ef:67:93:a4:16:2e: 4d:3e:7a:8a:f4:72:ee:74:d6:05:4e:45:d9:6c:d2: d4:1f:39:51:bb:36:20:68:a5:96:b6:52:e8:37:fd: c2:02:73:1d:84:00:b6:e1:18:53:9a:9e:e3:96:23: d9:f0:7d:e0:cb:e3:93:50:e4:96:ac:e8:83:82:93: ef:22:07:da:8c:be:d4:5d:46:29:95:cc:f6:79:1b: 8e:4b:41:79:f8:b8:d0:5c:83:b5:d6:cb:67:16:6e: 6c:76:61:04:e4:ea:83:d1:4c:e6:0a:0f:a9:a9:c1: d7:5c:ef:70:d3:64:cf:fd:77:19:e6:a0:21:a3:1f: 26:99:9d:e3:cc:14:dd:fb:58:fc:00:98:0a:bc:f2: c2:40:32:bc:37:f2:c0:e5:7b:64:ad:f4:5d:18:56: 96:ba:2c:fd:ee:09:4d:e0:a8:49:ad:97:0b:0c:de: 32:f6:5a:fe:be:d0:e3:00:90:ae:0d:1c:f8:55:19: 1f:c0:42:1d:bc:e0:57:d8:34:d2:25:37:d8:af:12: a0:30:a1:c5:cc:4e:09:a1:17:b2:85:47:d8:ed:cd: fc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 48:A2:F3:B9:1C:EE:0A:13:CD:E0:BC:D9:3C:AA:A0:33:8C:37:94:7A X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:cmdexe1.xyz X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Apr 27 23:09:54.924 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:94:DA:24:11:7B:CB:C9:69:BE:A9:46: 90:49:D7:BD:BF:EC:F5:2F:9F:45:55:DD:F9:FC:6D:D1: EA:CD:4B:C1:CC:02:21:00:C4:D1:20:CC:12:6B:8D:0F: C2:3E:8E:9C:0F:58:76:0F:06:BB:E6:94:D9:55:B2:F4: 38:97:CB:F1:68:67:5D:31 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32: 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C Timestamp : Apr 27 23:09:55.112 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:6C:32:C4:C5:48:98:2F:07:39:7B:84:0A: 5C:2A:80:69:0F:2E:2D:05:2E:8D:0B:9C:8E:B3:59:5A: EF:8D:87:8C:02:21:00:EA:07:70:DD:0C:7E:DB:64:3E: C8:B8:12:29:AA:F7:40:5E:7D:11:72:32:01:F4:E3:FB: 59:B0:68:FF:B9:A1:30 Signature Algorithm: sha256WithRSAEncryption Signature Value: 79:fe:18:0f:b9:96:45:02:04:4c:44:8d:a2:97:75:cc:64:cf: 7e:ef:a1:a1:d7:e0:5b:d9:29:14:1f:9e:fd:a3:36:39:a1:cc: 21:af:8e:9d:db:fa:4c:f8:1c:cb:3a:32:bc:ad:49:0b:48:a7: 68:09:5f:26:f2:19:d8:21:29:94:ba:c0:b1:19:39:72:79:5a: 39:29:cc:f4:4e:92:c9:1b:74:9f:b7:6f:08:aa:af:2a:81:d6: ca:e2:85:68:5d:42:26:6a:00:65:8a:4d:31:ad:8b:44:a4:8a: af:8c:cd:72:a5:c3:49:9d:9a:04:06:ca:21:a9:13:a7:b1:b2: 20:2d:14:cb:f1:81:37:36:ac:2e:cc:64:ff:69:bb:2f:23:35: 01:27:0f:77:ab:17:95:09:9c:40:db:dc:10:c4:e6:1a:f0:52: 43:9c:08:be:2f:c7:b9:a3:aa:63:db:2d:b4:56:53:74:17:50: 73:97:16:01:1c:74:c3:c5:0e:c9:fe:21:5a:06:5b:7c:bf:36: 06:40:6e:9e:75:76:fe:ec:3a:f4:df:18:93:ba:13:fc:d3:e3: bb:fa:1c:78:35:40:3f:5f:62:a3:7b:9b:3b:30:0d:10:d0:69: 92:ae:37:3c:cd:ec:69:d1:98:b2:57:45:b0:98:5f:f2:6c:95: 70:16:55:67