| Hostnames |
msk-f766.rudc.cloud digital.xcom.ru |
| Domains | rudc.cloud xcom.ru |
| Country | Russian Federation |
| City | Moscow |
| Organization | Okay-Telecom Ltd. |
| ISP | Okay-Telecom Ltd. |
| ASN | AS199669 |
| Operating System | Ubuntu |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
| CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
458875031 | 2024-04-28T08:36:54.94585822 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBNP6pQjmEIcua5Rm/s7tvYoj 3fKEFbs8b/nnprb2To5UEFqwCR8AkAa0wvtFlDDgMRosHN2Ne+piRmAm8hloLgM= Fingerprint: 60:ef:b5:9d:26:59:82:fc:ed:fa:f0:44:4f:55:85:94 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
589765266 | 2024-05-11T11:09:33.01199380 / tcp
HTTP/1.1 301 Moved Permanently Server: nginx/1.18.0 (Ubuntu) Date: Sat, 11 May 2024 11:09:32 GMT Content-Type: text/html Content-Length: 178 Connection: keep-alive Location: https://digital.xcom.ru/
-696663992 | 2024-05-09T10:21:38.388909443 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Thu, 09 May 2024 10:21:38 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive X-Frame-Options: DENY X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Content-Security-Policy: default-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' http://www.google.com https://www.gstatic.com;style-src 'self' 'unsafe-inline' *.googleapis.com *.fontawesome.com;img-src 'self' https://img.xcomdb.ru data: blob:;object-src 'self' data: blob:;connect-src 'self' https://cdn.rawgit.com;frame-src 'self' https://www.google.com;font-src 'self' data: *.fontawesome.com https://fonts.gstatic.com http://fonts.gstatic.com Set-Cookie: _csrf_backend=ea679826a9d033dabd3725c5af28bfb3494a863cda3f6cac28b65735d5ea218aa%3A2%3A%7Bi%3A0%3Bs%3A13%3A%22_csrf_backend%22%3Bi%3A1%3Bs%3A32%3A%22g3kzXhQn0UFdIdiyKJGCjNVpAzjzXzwj%22%3B%7D; path=/; secure; HttpOnly; SameSite=Lax
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ba:95:bb:b1:ce:3e:ad:6b:d0:08:d5:eb:d7:3e:b1:e0:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 5 18:50:58 2024 GMT
Not After : Jul 4 18:50:57 2024 GMT
Subject: CN=digital.xcom.ru
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:9e:2c:24:08:08:99:93:68:cb:5d:da:cc:15:e9:
1d:ae:ae:00:91:bb:d2:56:d0:95:ad:81:cb:01:ef:
13:9e:a2:6c:07:98:26:e2:f7:87:67:1a:5d:0a:63:
1e:68:cc:16:4f:da:3b:23:c4:f1:47:25:52:12:20:
a3:57:75:50:7b:9e:e5:25:dc:6b:17:24:06:14:24:
f5:5a:c1:9d:da:f1:59:0f:e1:90:85:01:5f:66:d1:
9a:5e:34:29:24:94:52:ce:18:d8:10:cc:d6:3f:75:
c2:80:79:12:fd:db:f0:40:a8:68:39:8b:46:a8:5a:
b3:31:6b:94:ae:65:38:a0:ae:30:e4:86:d2:51:e4:
bb:15:e5:81:d2:ae:3a:a3:f8:09:17:29:36:75:d2:
87:30:66:b9:36:df:29:53:50:6c:9e:7d:10:73:c9:
8d:d6:bb:53:2f:93:31:bd:d7:6d:53:68:7c:f4:01:
12:29:15:7e:71:ec:d1:d1:cc:f0:51:7a:cb:5d:6d:
80:17:30:3b:30:e1:a8:ee:c3:c3:6a:95:f0:7a:c3:
22:60:5e:ce:8f:99:4c:e8:fd:15:92:9b:d8:89:c2:
6f:8a:eb:b8:33:54:f2:cf:4a:e1:a6:f9:ce:41:54:
62:a1:54:26:f0:0e:2f:41:d1:d6:fc:f3:ea:4e:e9:
05:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
F6:40:8E:90:B4:E9:A9:55:86:48:3A:5D:31:1F:AF:34:F3:FB:B4:55
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:digital.xcom.ru
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 5 19:50:58.145 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:56:AC:EA:EE:83:92:CD:1F:DC:1D:D7:C2:
A5:A0:39:61:EF:32:F1:DD:DF:F2:D8:D6:D6:2F:BF:1D:
4C:8D:8F:0D:02:21:00:9A:1F:30:35:B1:8E:8C:0F:EC:
81:0F:FF:B1:F5:45:AC:52:D7:38:E0:C4:08:C2:BF:F9:
F2:2C:55:55:51:33:E7
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Apr 5 19:50:58.112 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:6D:DE:01:57:F4:BD:60:5D:86:DC:A0:69:
4F:08:50:89:9C:08:EC:C7:CA:D8:E0:F5:54:4A:C0:A3:
27:F9:EB:D2:02:20:12:03:E8:FE:2E:C5:E3:C3:17:E5:
CB:6B:95:EA:46:57:A1:3D:89:E1:72:69:D0:DA:C8:FE:
6F:9B:50:25:0D:25
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
45:89:52:6b:c3:48:5e:a6:1a:c4:91:38:16:d8:91:f4:1e:58:
a4:13:ff:37:89:c9:40:f1:21:91:97:73:9a:ff:c8:0a:1e:24:
d5:fd:ba:c7:5a:86:f5:a6:88:0a:b7:13:34:e1:6c:f1:9d:20:
00:f4:da:01:1e:86:d8:29:aa:a6:73:3b:3b:76:36:88:56:64:
65:e1:ee:69:bc:a6:1e:03:7f:0a:3f:d2:f5:c4:d3:14:81:af:
f6:0f:86:3b:cb:1c:bd:3d:1e:92:d0:83:a1:6d:7e:d7:21:5a:
37:46:c2:79:aa:19:5d:a6:7f:b9:4d:47:1d:d9:de:b0:0e:56:
9d:43:e6:a0:45:9c:ea:6f:20:3d:5d:33:4e:12:58:9c:33:ed:
7b:22:5d:89:bd:0a:32:c6:d0:43:1c:89:1e:43:46:cc:88:bb:
cd:cf:15:3c:68:3f:b4:48:77:82:71:a9:61:f7:68:76:f0:9e:
df:31:a6:b2:6b:1b:3c:e4:f5:29:04:dc:c3:4b:8d:78:a8:31:
4a:70:4a:ac:fb:09:a0:49:9d:eb:01:15:80:66:e2:50:74:09:
3c:b0:33:8c:bf:19:63:f2:c4:b6:98:21:e9:40:9d:48:30:3d:
bb:03:6d:3b:67:4c:9b:17:e6:81:53:d7:02:cb:85:aa:88:c3:
be:e1:55:91
1417988107 | 2024-05-06T22:46:29.7363628080 / tcp
HTTP/1.1 200 OK Date: Mon, 06 May 2024 22:46:29 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked
-920706195 | 2024-04-24T05:50:21.9261619100 / tcp
HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close
400 Bad Request
Prometheus Node Exporter:
node_exporter_build_info:
branch: HEAD
goarch: amd64
goos: linux
goversion: go1.20.6
revision: 4a1b77600c1873a8233f3ffb55afcedbb63b8d84
tags: netgo osusergo static_build
version: 1.6.1
node_os_info:
id: ubuntu
id_like: debian
name: Ubuntu
pretty_name: Ubuntu 22.04.3 LTS
version: 22.04.3 LTS (Jammy Jellyfish)
version_codename: jammy
version_id: 22.04
node_uname_info:
domainname: (none)
machine: x86_64
nodename: msk-f766
release: 5.15.0-94-generic
sysname: Linux
version: #104-Ubuntu SMP Tue Jan 9 15:25:40 UTC 2024
node_dmi_info:
bios_date: 05/29/2018
bios_release: 4.6
bios_vendor: American Megatrends Inc.
bios_version: 3.3
board_asset_tag: To be filled by O.E.M.
board_name: X9SRE/X9SRE-3F/X9SRi/X9SRi-3F
board_vendor: Supermicro
board_version: 0123456789
chassis_asset_tag: To Be Filled By O.E.M.
chassis_vendor: Supermicro
chassis_version: 0123456789
product_family: To be filled by O.E.M.
product_name: X9SRE/X9SRE-3F/X9SRi/X9SRi-3F
product_sku: To be filled by O.E.M.
product_version: 0123456789
system_vendor: Supermicro
node_network_info:
veth5b20adf:
address: 46:43:31:7f:7a:33
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth5b20adf
duplex: full
operstate: up
veth94dd995:
address: 96:18:c0:6d:5a:7a
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth94dd995
duplex: full
operstate: up
vethb45c043:
address: 12:cc:ad:6b:9b:1e
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethb45c043
duplex: full
operstate: up
vetha853fff:
address: e6:12:6b:63:78:b3
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vetha853fff
duplex: full
operstate: up
vethab8a0d6:
address: fe:33:6e:48:a9:54
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethab8a0d6
duplex: full
operstate: up
veth11c98d0:
address: ca:1d:3d:b6:9c:34
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth11c98d0
duplex: full
operstate: up
veth26bb003:
address: c2:1f:15:a3:91:9d
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth26bb003
duplex: full
operstate: up
veth5872918:
address: 4a:9f:17:96:64:a9
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth5872918
duplex: full
operstate: up
veth3acd42b:
address: 6e:23:e1:92:f2:dc
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth3acd42b
duplex: full
operstate: up
br-46277229bfbc:
address: 02:42:2d:3a:26:9a
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: br-46277229bfbc
duplex: unknown
operstate: up
veth2f4466c:
address: 06:bb:ea:4a:a8:13
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth2f4466c
duplex: full
operstate: up
veth4627743:
address: 16:e1:83:b4:9c:94
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth4627743
duplex: full
operstate: up
vethd603caa:
address: da:fa:58:5e:f9:db
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethd603caa
duplex: full
operstate: up
vethf017bfa:
address: a6:79:4c:e5:76:ff
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethf017bfa
duplex: full
operstate: up
lo:
address: 00:00:00:00:00:00
adminstate: up
broadcast: 00:00:00:00:00:00
device: lo
operstate: unknown
vethce70ec3:
address: ea:a7:04:82:52:ae
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethce70ec3
duplex: full
operstate: up
eno1:
address: 00:25:90:d5:fe:74
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: eno1
duplex: full
operstate: up
eno2:
address: 00:25:90:d5:fe:75
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: eno2
duplex: full
operstate: up
vethe7c7b8a:
address: 5e:59:3b:05:62:d6
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethe7c7b8a
duplex: full
operstate: up
vethac22bd8:
address: 3e:93:0c:59:b9:0e
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethac22bd8
duplex: full
operstate: up
veth2b6f0d6:
address: ba:99:23:e6:e0:91
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth2b6f0d6
duplex: full
operstate: up
veth84e53e1:
address: 7e:99:98:68:ce:fe
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth84e53e1
duplex: full
operstate: up
docker0:
address: 02:42:01:0d:ab:3f
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: docker0
duplex: unknown
operstate: down
vethce97b79:
address: d2:9b:d4:86:fd:91
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethce97b79
duplex: full
operstate: up
veth623104c:
address: 0a:26:da:64:4a:41
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth623104c
duplex: full
operstate: up
veth0e059e8:
address: 12:d0:2d:bf:9f:9c
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth0e059e8
duplex: full
operstate: up
veth6a80ef5:
address: 56:01:79:3a:a4:fa
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth6a80ef5
duplex: full
operstate: up
veth5a3044d:
address: 52:b8:77:37:da:6e
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth5a3044d
duplex: full
operstate: up
veth2d674b3:
address: a2:c6:7b:59:ee:ff
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth2d674b3
duplex: full
operstate: up
veth7187caf:
address: 62:a0:a9:1a:99:d8
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth7187caf
duplex: full
operstate: up
vethb411038:
address: 62:f6:b1:30:ba:ba
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethb411038
duplex: full
operstate: up
veth4015b54:
address: 26:06:ba:c4:58:db
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth4015b54
duplex: full
operstate: up
vetha042880:
address: 46:89:3e:60:66:77
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vetha042880
duplex: full
operstate: up
vethdd9ae9d:
address: 46:58:ec:b3:82:0a
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethdd9ae9d
duplex: full
operstate: up
vethbfbc77b:
address: 82:b5:47:5f:4f:7c
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethbfbc77b
duplex: full
operstate: up
vethd551260:
address: a2:f4:f9:83:bd:92
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: vethd551260
duplex: full
operstate: up
veth8a34178:
address: 3e:ad:33:4c:bd:44
adminstate: up
broadcast: ff:ff:ff:ff:ff:ff
device: veth8a34178
duplex: full
operstate: up
00:25:90:D5:FE:74
OUI: 00:25:90
Organization: Super Micro Computer, Inc.
Assignment: MA-L
Registration Date: 2009-03-22
00:25:90:D5:FE:75
OUI: 00:25:90
Organization: Super Micro Computer, Inc.
Assignment: MA-L
Registration Date: 2009-03-22