GeneralInformation

Hostnames	185-185-48-77.hosted-by-worldstream.net webserver-hv-payment-production.apps.k8s.salberts.nl
Domains	hosted-by-worldstream.net salberts.nl
Country	Netherlands
City	Naaldwijk
Organization	WorldStream B.V.
ISP	WorldStream B.V.
ASN	AS49981
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

677579724 | 2024-05-29T18:28:38.102624

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 29 May 2024 18:28:38 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

1150284091 | 2024-06-02T08:21:09.690411

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Sun, 02 Jun 2024 08:21:09 GMT

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:69:2a:d0:54:2a:f3:19:75:8d:a2:26:d3:d3:92:71:71:46
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 20 01:23:32 2024 GMT
            Not After : Jul 19 01:23:31 2024 GMT
        Subject: CN=webserver-hv-payment-production.apps.k8s.salberts.nl
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e4:3b:cc:5f:9e:7b:9d:d8:92:f2:b0:b8:8f:9b:
                    25:d2:b0:bd:77:d9:43:d4:50:b4:69:ca:1e:8e:b0:
                    39:ae:20:74:3c:41:90:96:7c:8e:b3:3a:cc:79:59:
                    9f:e1:17:34:22:e0:a2:03:f2:81:5f:5a:14:48:c9:
                    07:0f:73:bd:16:ea:60:8d:4f:ef:66:70:37:cb:63:
                    48:c4:ff:29:5e:26:5f:da:07:22:55:61:4f:48:fa:
                    12:48:2c:a2:7a:f5:b1:d5:bd:53:72:19:15:6e:c3:
                    a8:f8:de:af:9c:be:cc:9d:27:b9:eb:8b:27:0c:ae:
                    c1:64:2a:e9:16:24:7b:cf:53:6e:23:cb:6c:c8:d2:
                    e5:52:69:ee:6a:a5:53:eb:e0:09:a1:de:38:3f:27:
                    52:38:75:12:93:2d:e2:0e:87:4e:e7:27:51:23:d6:
                    75:03:58:f3:92:30:96:6a:c5:68:3f:50:85:88:88:
                    14:78:81:ab:94:03:23:75:37:b0:ac:be:f8:0d:98:
                    11:02:95:95:78:7e:63:11:2a:51:d1:61:01:77:03:
                    9e:43:96:53:25:ad:be:8c:00:60:f8:0e:64:24:0a:
                    cf:c6:23:3f:5a:a6:0f:bf:d5:b6:29:22:a2:99:3d:
                    a8:f7:97:49:d0:e7:6a:74:5e:10:2a:d2:92:80:a7:
                    7f:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                CA:60:6B:2E:59:CD:89:3A:F7:51:05:2B:54:FC:35:2E:C0:AE:6D:AC
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:webserver-hv-payment-production.apps.k8s.salberts.nl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 20 02:23:32.295 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:BA:87:B5:D4:A0:E9:39:97:2E:3B:75:
                                AB:7D:28:36:E7:D6:1D:65:3B:3F:CA:BB:65:5A:A9:A7:
                                D3:4E:39:E1:AA:02:20:65:F7:B5:32:E8:E5:DE:D5:12:
                                79:8D:F6:6E:26:A6:0E:D8:94:46:E1:C7:07:F5:43:A3:
                                03:1D:E1:BF:85:AD:A2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 20 02:23:32.303 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BD:64:EF:52:B7:87:DF:29:5E:5C:2B:
                                12:DB:1A:DF:95:25:27:92:D0:9D:1C:94:46:76:07:F4:
                                D4:EF:60:5F:AF:02:21:00:CD:AE:C6:7A:B5:27:8A:6E:
                                4B:BA:C9:70:5A:F2:DE:E0:6F:80:9F:66:08:C7:02:FE:
                                92:E0:E3:C9:3E:4F:B2:65
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:95:5a:fd:2b:2b:4f:6d:b2:82:2a:04:7d:b1:5c:96:06:ee:
        d8:d8:82:a2:0e:ed:f8:8e:cb:fd:95:cd:80:6f:65:b2:f1:78:
        a5:ae:92:9f:3c:7d:b0:7f:af:49:7b:37:4f:8d:c7:af:f0:3c:
        ff:a5:fd:ba:c0:0b:e5:33:82:28:a9:0b:b5:b6:94:c3:17:88:
        c2:c2:a6:13:9f:e6:e9:90:0b:54:99:66:13:6c:48:16:5b:c3:
        da:21:12:0a:b1:be:ef:e7:df:fd:31:d7:eb:71:39:62:db:04:
        69:fc:93:c5:c9:41:21:44:a3:01:2f:3e:69:08:27:a5:0a:13:
        91:ca:82:05:47:d1:52:92:95:ff:9f:fb:b9:29:cc:64:4e:98:
        d6:d5:fe:c0:76:31:df:33:01:4a:68:10:99:c0:fe:39:c2:0e:
        a8:7e:22:bc:f3:47:1f:5e:47:a4:f1:b4:e8:02:0a:e7:56:9d:
        26:0e:cc:45:06:6c:28:25:96:3b:20:09:1a:24:5d:85:4e:36:
        ef:55:97:e5:09:52:f7:3c:91:41:d9:ae:f0:5a:d2:e7:bb:08:
        65:95:60:78:ad:f9:77:65:34:62:e3:27:99:87:d1:b0:34:71:
        28:43:a3:30:60:9e:26:0b:46:4e:87:66:ee:b6:a7:91:4b:1c:
        a2:0d:47:dc

185.185.48.77

Last Seen: 2024-06-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-05-29T18:28:38.102624
80 / tcp

nginx1.18.0

1150284091 | 2024-06-02T08:21:09.690411
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

185.185.48.77

Last Seen: 2024-06-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-05-29T18:28:38.102624 80 / tcp

nginx1.18.0

1150284091 | 2024-06-02T08:21:09.690411 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

677579724 | 2024-05-29T18:28:38.102624
80 / tcp

1150284091 | 2024-06-02T08:21:09.690411
443 / tcp