GeneralInformation

Hostnames	dnstest.huubk.com
Domains	huubk.com
Country	Netherlands
City	Amsterdam
Organization	Garnier Projects BV
ISP	Garnier Projects BV
ASN	AS24730
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-201263602 | 2024-05-14T22:19:39.880756

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDI5fENHRwiPXBwzTRTXM//3NSlJ9nJxxAP9ei+qQdc6pe9
Qi/SUaEEHCUeokD7ypwUs44WfQrindl2h27ZuXiakDYBr1/3iJZj34G/2nz25qToa+aQsLSTiPlb
WGIrjtzTDZm514obKc+5UzXg7jdpdRpyQKtrvVIYp8KaR0RMh0AV2IE1v2+A9y/CnY/FkwwuSIiQ
FID4CfZY4+Xqqw9n0OFQpcZ1XY38QD6o0PiaFOiKp7+hHMa3cIwGlEh2uopgXbnpKBZf6uR1jrK9
xvGMzcvCjq9bksUsHycy57Y8U9k9xxfWw2dlw91YOkiXd5JrmrEIy8F0I+CajduLxKHd
Fingerprint: 26:3d:d6:f8:0d:2a:ab:50:39:81:a0:b3:b0:ac:94:87

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1017881559 | 2024-05-16T20:20:13.809331

80 / tcp

HTTP/1.1 301 Moved Permanently
Date: Thu, 16 May 2024 20:20:13 GMT
Server: Varnish
X-Varnish: 22979222
location: https://185.236.176.114/
Content-Length: 0
Connection: keep-alive

1657708344 | 2024-05-16T20:31:59.304882

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 16 May 2024 20:31:58 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 250
Connection: keep-alive
Location: https://vestacp-01.crossmediaventures.com/
Cache-Control: public, max-age=180, stale-while-revalidate=360, stale-if-error=43200
X-Varnish: 22573330 22570729
Age: 6829
Via: 1.1 varnish (Varnish/6.2)
X-Cache: HIT
X-Cache-Hits: 1
Access-Control-Allow-Origin: *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:32:5d:5a:1a:46:cc:3c:5c:ac:ab:b7:a4:f8:e2:b6:2d:5e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb  8 06:42:51 2024 GMT
            Not After : May  8 06:42:50 2024 GMT
        Subject: CN=dnstest.huubk.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e0:53:82:13:f2:37:79:7a:6c:fe:bd:91:8f:a9:
                    a0:c4:9c:d7:c9:f4:0b:19:7a:20:84:4c:72:d9:59:
                    75:36:69:f1:ad:f9:5c:a3:c6:b1:0e:58:54:30:7f:
                    3d:cf:14:a7:11:63:ac:78:3b:d1:7a:47:81:24:f1:
                    e6:14:9d:8e:a7:6a:ca:e1:29:71:da:b3:00:89:d3:
                    9a:32:76:47:89:05:50:64:df:cc:21:d3:86:f9:ee:
                    0d:25:b2:c6:79:48:9d:50:3f:f7:e2:48:a2:1d:cd:
                    53:08:48:8a:fd:d7:b6:fd:db:ad:96:bb:ee:ed:35:
                    7d:8b:f2:30:e5:27:56:3e:00:1b:4d:ca:dc:f3:a9:
                    87:b3:1f:04:c2:e2:6a:b1:9c:09:37:21:52:ca:04:
                    80:f6:c2:3c:39:c0:92:b3:2c:63:cb:c7:0b:41:78:
                    8b:0b:1b:e8:c1:1e:20:d3:26:c5:80:52:bf:57:0d:
                    b6:36:8b:38:7b:3e:01:d1:44:16:2d:04:69:ad:64:
                    41:76:0d:75:b9:0b:4a:f6:1a:73:00:8a:73:5e:fd:
                    94:98:d2:b9:0a:9d:8c:36:17:b6:c9:2a:35:cf:20:
                    1e:77:01:56:f6:a4:75:15:fd:bd:bd:49:06:4f:da:
                    4d:ae:67:5b:03:c4:ca:a1:6a:28:0a:71:ef:e1:0f:
                    fd:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B7:FF:92:EC:C2:5B:24:E2:81:7E:25:30:64:68:B9:68:7A:C3:B3:46
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dnstest.huubk.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb  8 07:42:51.988 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FA:86:F7:B7:F9:9D:7B:49:0E:B4:90:
                                7D:99:6A:D3:70:A0:A3:AB:9C:6B:40:F1:53:E8:7E:AF:
                                AA:29:0E:3B:9F:02:20:14:A9:B7:5E:F4:05:9F:F0:11:
                                BE:90:72:D6:42:EA:9F:96:32:D0:9A:79:EE:29:78:4F:
                                CA:8D:52:C7:B4:13:CC
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Feb  8 07:42:52.076 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B4:55:E8:F0:A4:92:73:53:C6:7A:B2:
                                75:E1:84:7F:AC:10:F3:68:7F:5D:54:86:B2:6B:56:79:
                                C9:13:32:52:B6:02:21:00:A5:8E:23:4F:CF:40:15:F6:
                                70:E4:3A:B5:CA:D2:DE:A5:96:7A:21:85:52:6F:F1:CE:
                                32:B3:49:04:C8:D1:3C:45
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5b:9b:8d:a8:8d:d5:f8:28:7b:40:ef:59:10:cd:e0:87:36:d8:
        15:16:46:e6:c2:2f:b7:2f:5e:e4:ad:ca:d6:a2:bd:75:6a:1e:
        f7:25:f0:3c:00:60:ae:ed:11:a2:d2:5e:59:7e:5a:6a:b3:74:
        ae:1f:ce:8c:4d:f4:c8:84:fc:b9:f7:69:4b:0c:52:d1:c4:0f:
        6c:f8:d3:9c:56:5a:fb:b2:85:a0:d4:b4:12:5d:4d:66:cc:ee:
        66:0f:fc:53:4b:3a:63:e2:f0:6a:86:09:fc:8f:2c:e9:91:8e:
        c1:86:b0:1a:96:fd:d8:72:9b:40:b3:68:4f:a2:35:3e:b1:f5:
        61:05:01:b9:dd:70:56:38:ff:d2:bf:3e:ec:60:84:dc:d7:f6:
        38:77:ce:be:7a:07:3c:c6:bf:15:79:5f:52:23:6c:3f:15:1d:
        e1:83:9a:74:d0:6c:56:5e:52:6b:ac:ee:0e:1c:e5:60:ff:91:
        ff:b9:47:4d:59:d6:2f:0e:65:16:ce:12:71:cc:59:cc:f6:80:
        60:a5:62:f5:69:1c:25:45:37:99:97:e7:ad:37:24:a5:52:58:
        ec:57:5d:d4:ee:e8:fe:4a:4b:43:b1:d6:9a:b0:94:df:9f:db:
        51:0b:71:56:e0:fd:96:66:98:f3:a2:bb:20:1a:b3:04:88:59:
        8d:59:55:a1

185.236.176.114

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-201263602 | 2024-05-14T22:19:39.880756
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.2

-1017881559 | 2024-05-16T20:20:13.809331
80 / tcp

1657708344 | 2024-05-16T20:31:59.304882
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

185.236.176.114

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-201263602 | 2024-05-14T22:19:39.880756 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.2

-1017881559 | 2024-05-16T20:20:13.809331 80 / tcp

1657708344 | 2024-05-16T20:31:59.304882 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-201263602 | 2024-05-14T22:19:39.880756
22 / tcp

-1017881559 | 2024-05-16T20:20:13.809331
80 / tcp

1657708344 | 2024-05-16T20:31:59.304882
443 / tcp