Hostnames |
msk-f766.rudc.cloud digital.xcom.ru |
Domains | rudc.cloud xcom.ru |
Country | Russian Federation |
City | Moscow |
Organization | Okay-Telecom Ltd. |
ISP | Okay-Telecom Ltd. |
ASN | AS199669 |
Operating System | Ubuntu |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
458875031 | 2024-04-28T08:36:54.94585822 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBNP6pQjmEIcua5Rm/s7tvYoj 3fKEFbs8b/nnprb2To5UEFqwCR8AkAa0wvtFlDDgMRosHN2Ne+piRmAm8hloLgM= Fingerprint: 60:ef:b5:9d:26:59:82:fc:ed:fa:f0:44:4f:55:85:94 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
589765266 | 2024-05-11T11:09:33.01199380 / tcp
HTTP/1.1 301 Moved Permanently Server: nginx/1.18.0 (Ubuntu) Date: Sat, 11 May 2024 11:09:32 GMT Content-Type: text/html Content-Length: 178 Connection: keep-alive Location: https://digital.xcom.ru/
-696663992 | 2024-05-09T10:21:38.388909443 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Thu, 09 May 2024 10:21:38 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive X-Frame-Options: DENY X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Content-Security-Policy: default-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' http://www.google.com https://www.gstatic.com;style-src 'self' 'unsafe-inline' *.googleapis.com *.fontawesome.com;img-src 'self' https://img.xcomdb.ru data: blob:;object-src 'self' data: blob:;connect-src 'self' https://cdn.rawgit.com;frame-src 'self' https://www.google.com;font-src 'self' data: *.fontawesome.com https://fonts.gstatic.com http://fonts.gstatic.com Set-Cookie: _csrf_backend=ea679826a9d033dabd3725c5af28bfb3494a863cda3f6cac28b65735d5ea218aa%3A2%3A%7Bi%3A0%3Bs%3A13%3A%22_csrf_backend%22%3Bi%3A1%3Bs%3A32%3A%22g3kzXhQn0UFdIdiyKJGCjNVpAzjzXzwj%22%3B%7D; path=/; secure; HttpOnly; SameSite=Lax
Certificate: Data: Version: 3 (0x2) Serial Number: 03:ba:95:bb:b1:ce:3e:ad:6b:d0:08:d5:eb:d7:3e:b1:e0:63 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 5 18:50:58 2024 GMT Not After : Jul 4 18:50:57 2024 GMT Subject: CN=digital.xcom.ru Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:9e:2c:24:08:08:99:93:68:cb:5d:da:cc:15:e9: 1d:ae:ae:00:91:bb:d2:56:d0:95:ad:81:cb:01:ef: 13:9e:a2:6c:07:98:26:e2:f7:87:67:1a:5d:0a:63: 1e:68:cc:16:4f:da:3b:23:c4:f1:47:25:52:12:20: a3:57:75:50:7b:9e:e5:25:dc:6b:17:24:06:14:24: f5:5a:c1:9d:da:f1:59:0f:e1:90:85:01:5f:66:d1: 9a:5e:34:29:24:94:52:ce:18:d8:10:cc:d6:3f:75: c2:80:79:12:fd:db:f0:40:a8:68:39:8b:46:a8:5a: b3:31:6b:94:ae:65:38:a0:ae:30:e4:86:d2:51:e4: bb:15:e5:81:d2:ae:3a:a3:f8:09:17:29:36:75:d2: 87:30:66:b9:36:df:29:53:50:6c:9e:7d:10:73:c9: 8d:d6:bb:53:2f:93:31:bd:d7:6d:53:68:7c:f4:01: 12:29:15:7e:71:ec:d1:d1:cc:f0:51:7a:cb:5d:6d: 80:17:30:3b:30:e1:a8:ee:c3:c3:6a:95:f0:7a:c3: 22:60:5e:ce:8f:99:4c:e8:fd:15:92:9b:d8:89:c2: 6f:8a:eb:b8:33:54:f2:cf:4a:e1:a6:f9:ce:41:54: 62:a1:54:26:f0:0e:2f:41:d1:d6:fc:f3:ea:4e:e9: 05:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: F6:40:8E:90:B4:E9:A9:55:86:48:3A:5D:31:1F:AF:34:F3:FB:B4:55 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:digital.xcom.ru X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Apr 5 19:50:58.145 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:56:AC:EA:EE:83:92:CD:1F:DC:1D:D7:C2: A5:A0:39:61:EF:32:F1:DD:DF:F2:D8:D6:D6:2F:BF:1D: 4C:8D:8F:0D:02:21:00:9A:1F:30:35:B1:8E:8C:0F:EC: 81:0F:FF:B1:F5:45:AC:52:D7:38:E0:C4:08:C2:BF:F9: F2:2C:55:55:51:33:E7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Apr 5 19:50:58.112 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:6D:DE:01:57:F4:BD:60:5D:86:DC:A0:69: 4F:08:50:89:9C:08:EC:C7:CA:D8:E0:F5:54:4A:C0:A3: 27:F9:EB:D2:02:20:12:03:E8:FE:2E:C5:E3:C3:17:E5: CB:6B:95:EA:46:57:A1:3D:89:E1:72:69:D0:DA:C8:FE: 6F:9B:50:25:0D:25 Signature Algorithm: sha256WithRSAEncryption Signature Value: 45:89:52:6b:c3:48:5e:a6:1a:c4:91:38:16:d8:91:f4:1e:58: a4:13:ff:37:89:c9:40:f1:21:91:97:73:9a:ff:c8:0a:1e:24: d5:fd:ba:c7:5a:86:f5:a6:88:0a:b7:13:34:e1:6c:f1:9d:20: 00:f4:da:01:1e:86:d8:29:aa:a6:73:3b:3b:76:36:88:56:64: 65:e1:ee:69:bc:a6:1e:03:7f:0a:3f:d2:f5:c4:d3:14:81:af: f6:0f:86:3b:cb:1c:bd:3d:1e:92:d0:83:a1:6d:7e:d7:21:5a: 37:46:c2:79:aa:19:5d:a6:7f:b9:4d:47:1d:d9:de:b0:0e:56: 9d:43:e6:a0:45:9c:ea:6f:20:3d:5d:33:4e:12:58:9c:33:ed: 7b:22:5d:89:bd:0a:32:c6:d0:43:1c:89:1e:43:46:cc:88:bb: cd:cf:15:3c:68:3f:b4:48:77:82:71:a9:61:f7:68:76:f0:9e: df:31:a6:b2:6b:1b:3c:e4:f5:29:04:dc:c3:4b:8d:78:a8:31: 4a:70:4a:ac:fb:09:a0:49:9d:eb:01:15:80:66:e2:50:74:09: 3c:b0:33:8c:bf:19:63:f2:c4:b6:98:21:e9:40:9d:48:30:3d: bb:03:6d:3b:67:4c:9b:17:e6:81:53:d7:02:cb:85:aa:88:c3: be:e1:55:91
1417988107 | 2024-05-06T22:46:29.7363628080 / tcp
HTTP/1.1 200 OK Date: Mon, 06 May 2024 22:46:29 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked
-920706195 | 2024-04-24T05:50:21.9261619100 / tcp
HTTP/1.1 400 Bad Request Content-Type: text/plain; charset=utf-8 Connection: close 400 Bad Request Prometheus Node Exporter: node_exporter_build_info: branch: HEAD goarch: amd64 goos: linux goversion: go1.20.6 revision: 4a1b77600c1873a8233f3ffb55afcedbb63b8d84 tags: netgo osusergo static_build version: 1.6.1 node_os_info: id: ubuntu id_like: debian name: Ubuntu pretty_name: Ubuntu 22.04.3 LTS version: 22.04.3 LTS (Jammy Jellyfish) version_codename: jammy version_id: 22.04 node_uname_info: domainname: (none) machine: x86_64 nodename: msk-f766 release: 5.15.0-94-generic sysname: Linux version: #104-Ubuntu SMP Tue Jan 9 15:25:40 UTC 2024 node_dmi_info: bios_date: 05/29/2018 bios_release: 4.6 bios_vendor: American Megatrends Inc. bios_version: 3.3 board_asset_tag: To be filled by O.E.M. board_name: X9SRE/X9SRE-3F/X9SRi/X9SRi-3F board_vendor: Supermicro board_version: 0123456789 chassis_asset_tag: To Be Filled By O.E.M. chassis_vendor: Supermicro chassis_version: 0123456789 product_family: To be filled by O.E.M. product_name: X9SRE/X9SRE-3F/X9SRi/X9SRi-3F product_sku: To be filled by O.E.M. product_version: 0123456789 system_vendor: Supermicro node_network_info: veth5b20adf: address: 46:43:31:7f:7a:33 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth5b20adf duplex: full operstate: up veth94dd995: address: 96:18:c0:6d:5a:7a adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth94dd995 duplex: full operstate: up vethb45c043: address: 12:cc:ad:6b:9b:1e adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethb45c043 duplex: full operstate: up vetha853fff: address: e6:12:6b:63:78:b3 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vetha853fff duplex: full operstate: up vethab8a0d6: address: fe:33:6e:48:a9:54 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethab8a0d6 duplex: full operstate: up veth11c98d0: address: ca:1d:3d:b6:9c:34 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth11c98d0 duplex: full operstate: up veth26bb003: address: c2:1f:15:a3:91:9d adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth26bb003 duplex: full operstate: up veth5872918: address: 4a:9f:17:96:64:a9 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth5872918 duplex: full operstate: up veth3acd42b: address: 6e:23:e1:92:f2:dc adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth3acd42b duplex: full operstate: up br-46277229bfbc: address: 02:42:2d:3a:26:9a adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: br-46277229bfbc duplex: unknown operstate: up veth2f4466c: address: 06:bb:ea:4a:a8:13 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth2f4466c duplex: full operstate: up veth4627743: address: 16:e1:83:b4:9c:94 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth4627743 duplex: full operstate: up vethd603caa: address: da:fa:58:5e:f9:db adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethd603caa duplex: full operstate: up vethf017bfa: address: a6:79:4c:e5:76:ff adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethf017bfa duplex: full operstate: up lo: address: 00:00:00:00:00:00 adminstate: up broadcast: 00:00:00:00:00:00 device: lo operstate: unknown vethce70ec3: address: ea:a7:04:82:52:ae adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethce70ec3 duplex: full operstate: up eno1: address: 00:25:90:d5:fe:74 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: eno1 duplex: full operstate: up eno2: address: 00:25:90:d5:fe:75 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: eno2 duplex: full operstate: up vethe7c7b8a: address: 5e:59:3b:05:62:d6 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethe7c7b8a duplex: full operstate: up vethac22bd8: address: 3e:93:0c:59:b9:0e adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethac22bd8 duplex: full operstate: up veth2b6f0d6: address: ba:99:23:e6:e0:91 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth2b6f0d6 duplex: full operstate: up veth84e53e1: address: 7e:99:98:68:ce:fe adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth84e53e1 duplex: full operstate: up docker0: address: 02:42:01:0d:ab:3f adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: docker0 duplex: unknown operstate: down vethce97b79: address: d2:9b:d4:86:fd:91 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethce97b79 duplex: full operstate: up veth623104c: address: 0a:26:da:64:4a:41 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth623104c duplex: full operstate: up veth0e059e8: address: 12:d0:2d:bf:9f:9c adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth0e059e8 duplex: full operstate: up veth6a80ef5: address: 56:01:79:3a:a4:fa adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth6a80ef5 duplex: full operstate: up veth5a3044d: address: 52:b8:77:37:da:6e adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth5a3044d duplex: full operstate: up veth2d674b3: address: a2:c6:7b:59:ee:ff adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth2d674b3 duplex: full operstate: up veth7187caf: address: 62:a0:a9:1a:99:d8 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth7187caf duplex: full operstate: up vethb411038: address: 62:f6:b1:30:ba:ba adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethb411038 duplex: full operstate: up veth4015b54: address: 26:06:ba:c4:58:db adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth4015b54 duplex: full operstate: up vetha042880: address: 46:89:3e:60:66:77 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vetha042880 duplex: full operstate: up vethdd9ae9d: address: 46:58:ec:b3:82:0a adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethdd9ae9d duplex: full operstate: up vethbfbc77b: address: 82:b5:47:5f:4f:7c adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethbfbc77b duplex: full operstate: up vethd551260: address: a2:f4:f9:83:bd:92 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: vethd551260 duplex: full operstate: up veth8a34178: address: 3e:ad:33:4c:bd:44 adminstate: up broadcast: ff:ff:ff:ff:ff:ff device: veth8a34178 duplex: full operstate: up
00:25:90:D5:FE:74 OUI: 00:25:90 Organization: Super Micro Computer, Inc. Assignment: MA-L Registration Date: 2009-03-22 00:25:90:D5:FE:75 OUI: 00:25:90 Organization: Super Micro Computer, Inc. Assignment: MA-L Registration Date: 2009-03-22