GeneralInformation

Hostnames	vmi1870807.contaboserver.net shaghaf-ch.com
Domains	contaboserver.net shaghaf-ch.com
Country	Germany
City	Düsseldorf
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167
Operating System	Ubuntu

WebTechnologies

Databases

MariaDB

Programming languages

Python

Web frameworks

Frappe

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 9000

-269668387 | 2024-05-29T13:38:13.160913

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.7
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQCsI6cbgqDBrFZdHKu7o8/L1x4XJtR6bkredfjswqB0+7wK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Fingerprint: fe:29:bc:6e:0c:a2:50:03:b6:c2:65:72:42:e5:da:ab

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-24T22:20:20.397387

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 24 May 2024 22:20:20 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

635891594 | 2024-06-02T05:13:30.580158

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 02 Jun 2024 05:12:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 140334
Connection: keep-alive
Vary: Accept-Encoding
X-Page-Name: login
X-From-Cache: False
Link: </assets/frappe/dist/css-rtl/website.bundle.J64BLKR2.css>; rel=preload; as=style,</assets/erpnext/dist/css-rtl/erpnext-web.bundle.CFIVGVTX.css>; rel=preload; as=style,</assets/frappe/dist/css-rtl/login.bundle.BINHUFT4.css>; rel=preload; as=style,</assets/frappe/dist/js/frappe-web.bundle.YQJ72MPI.js>; rel=preload; as=script,</website_script.js>; rel=preload; as=script,</assets/erpnext/dist/js/erpnext-web.bundle.NNLGOEZ7.js>; rel=preload; as=script
Set-Cookie: sid=Guest; Expires=Tue, 04 Jun 2024 17:12:56 GMT; Max-Age=216000; Secure; HttpOnly; Path=/; SameSite=Lax
Set-Cookie: system_user=no; Secure; Path=/; SameSite=Lax
Set-Cookie: full_name=Guest; Secure; Path=/; SameSite=Lax
Set-Cookie: user_id=Guest; Secure; Path=/; SameSite=Lax
Set-Cookie: user_image=; Secure; Path=/; SameSite=Lax
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin, strict-origin-when-cross-origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:e8:06:e3:99:39:21:27:c1:11:59:12:be:89:b7:45:fd:e3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May 21 17:03:25 2024 GMT
            Not After : Aug 19 17:03:24 2024 GMT
        Subject: CN=shaghaf-ch.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:73:39:af:c5:1b:20:92:20:56:f1:4e:29:ba:86:
                    8c:5d:a6:0d:c8:c0:15:0a:a4:a4:45:f0:4b:d2:12:
                    8c:47:af:35:c4:f7:4e:5f:f3:4e:fe:a1:97:50:a0:
                    59:ee:5e:64:dd:be:9c:53:a0:c9:ad:b9:f5:e3:87:
                    56:33:2d:bb:81
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C4:C0:94:7F:01:30:90:7A:DD:6C:82:1F:31:B5:F3:BA:84:8C:0B:87
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:shaghaf-ch.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May 21 18:03:25.994 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:CC:39:59:04:95:95:67:7D:C3:2D:80:
                                F2:1F:F6:0F:EB:54:CF:D2:7D:8E:B8:7A:F1:BC:26:E9:
                                41:2B:68:1D:E3:02:20:61:5B:C7:95:9F:61:CD:65:60:
                                FF:F4:A9:AC:68:B4:7F:CE:A4:33:4A:A3:A7:C0:85:A9:
                                F8:10:4E:5C:C5:5D:D9
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May 21 18:03:26.084 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E9:DD:98:AF:4D:DF:99:E8:64:DD:92:
                                70:FA:40:F9:C3:8A:D6:7B:0B:CB:BF:86:BC:0D:AB:D6:
                                12:D3:32:7B:AA:02:20:24:0A:82:65:E2:80:36:FC:9A:
                                58:66:3B:D5:14:73:83:FE:40:54:EA:FD:B5:48:19:58:
                                1D:5C:D8:C4:49:4C:E6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        11:0c:60:08:61:07:17:54:42:15:0e:12:7c:ea:45:a6:cf:84:
        89:a7:8d:36:26:8e:a0:8e:70:7e:ec:28:b3:d7:5e:5b:a1:67:
        0a:87:9c:d5:0d:c4:dc:cf:61:84:b9:d5:0e:86:92:f3:10:70:
        9b:70:f0:2b:ca:57:22:7f:f3:b1:6a:1f:9e:23:b5:2b:ce:ff:
        75:fd:47:31:be:79:80:2f:00:77:b2:92:c9:a1:50:06:a4:29:
        b3:a4:7f:61:0a:d1:17:d8:dd:ac:1e:29:d9:d6:38:74:d7:8f:
        86:5d:bb:57:f4:a8:9f:69:91:99:d8:34:0b:27:68:3c:c7:78:
        ed:a4:53:29:95:56:b2:a0:4b:aa:a6:3e:97:da:54:3a:e3:22:
        2b:07:54:8a:14:cb:62:ee:28:7c:08:a6:dd:bf:fb:e2:fe:4f:
        64:e2:17:1d:7a:5e:bc:25:40:44:c1:a4:08:09:29:db:64:91:
        91:ce:9c:49:38:7c:59:37:93:36:8d:f3:9c:2d:7f:21:e1:cd:
        e6:8a:46:2f:7f:35:ae:c7:26:69:2f:a6:86:5a:db:59:9d:46:
        5b:c9:5b:15:09:47:06:42:53:05:6f:e8:cd:27:85:12:fa:8d:
        33:20:aa:9e:7c:7e:53:38:21:18:ad:85:61:d1:df:da:93:e9:
        4a:fb:7b:d5

-1219781335 | 2024-06-01T22:28:25.664991

9000 / tcp

HTTP/1.1 404 Not Found
Date: Sat, 01 Jun 2024 22:28:25 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked

0

178.18.251.57

Last Seen: 2024-06-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-269668387 | 2024-05-29T13:38:13.160913
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

677579724 | 2024-05-24T22:20:20.397387
80 / tcp

nginx1.18.0

635891594 | 2024-06-02T05:13:30.580158
443 / tcp

nginx1.18.0

-1219781335 | 2024-06-01T22:28:25.664991
9000 / tcp

Products

Pricing

Contact Us

178.18.251.57

Last Seen: 2024-06-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-269668387 | 2024-05-29T13:38:13.160913 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

677579724 | 2024-05-24T22:20:20.397387 80 / tcp

nginx1.18.0

635891594 | 2024-06-02T05:13:30.580158 443 / tcp

nginx1.18.0

-1219781335 | 2024-06-01T22:28:25.664991 9000 / tcp

Products

Pricing

Contact Us

-269668387 | 2024-05-29T13:38:13.160913
22 / tcp

677579724 | 2024-05-24T22:20:20.397387
80 / tcp

635891594 | 2024-06-02T05:13:30.580158
443 / tcp

-1219781335 | 2024-06-01T22:28:25.664991
9000 / tcp