GeneralInformation

Hostnames	vmd59153.contaboserver.net
Domains	contaboserver.net
Country	Germany
City	Frankfurt am Main
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-46118

RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API and cause target node to be terminated by an "out-of-memory killer"-like mechanism. This vulnerability has been patched in versions 3.11.24 and 3.12.7.

CVE-2022-31008

RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker (link) state. The encryption key used to encrypt the URI was seeded with a predictable secret. This means that in case of certain exceptions related to Shovel and Federation plugins, reasonably easily deobfuscatable data could appear in the node log. Patched versions correctly use a cluster-wide secret for that purpose. This issue has been addressed and Patched versions: `3.10.2`, `3.9.18`, `3.8.32` are available. Users unable to upgrade should disable the Shovel and Federation plugins.

OpenPorts

22 4369 5672

1546818390 | 2024-04-19T17:35:23.697675

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQDlBAONcaOhxTvXqNf0HJVV/AqqMMGf3VX6gmhtjW7hGe9G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Fingerprint: 7d:c3:28:d9:df:ef:a6:00:7e:4f:fd:5a:a2:7a:42:48

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

50704379 | 2024-04-20T02:27:42.000220

4369 / tcp

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

-268271615 | 2024-04-20T05:00:34.135591

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.9.13
  Platform: Erlang/OTP 24.2.1
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

173.249.60.4

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1546818390 | 2024-04-19T17:35:23.697675
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

50704379 | 2024-04-20T02:27:42.000220
4369 / tcp

Erlang Port Mapper Daemon

-268271615 | 2024-04-20T05:00:34.135591
5672 / tcp

RabbitMQ3.9.13

Products

Pricing

Contact Us

173.249.60.4

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1546818390 | 2024-04-19T17:35:23.697675 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

50704379 | 2024-04-20T02:27:42.000220 4369 / tcp

Erlang Port Mapper Daemon

-268271615 | 2024-04-20T05:00:34.135591 5672 / tcp

RabbitMQ3.9.13

Products

Pricing

Contact Us

1546818390 | 2024-04-19T17:35:23.697675
22 / tcp

50704379 | 2024-04-20T02:27:42.000220
4369 / tcp

-268271615 | 2024-04-20T05:00:34.135591
5672 / tcp