GeneralInformation

Hostnames	srv-021.devolta.ru transmetall.devolta.ru admin.transmetall.devolta.ru admin-api.transmetall.devolta.ru api.transmetall.devolta.ru froggo.transmetall.devolta.ru froggo-api.transmetall.devolta.ru kos.transmetall.devolta.ru mos.transmetall.devolta.ru ros.transmetall.devolta.ru rx.transmetall.devolta.ru s3.transmetall.devolta.ru console.s3.transmetall.devolta.ru spe.transmetall.devolta.ru www.transmetall.devolta.ru
Domains	devolta.ru
Country	Russian Federation
City	Moscow
Organization	JSC IOT
ISP	JSC IOT
ASN	AS29182

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

OpenPorts

80 443 9000 9001

-1783762444 | 2024-04-11T21:04:44.956592

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.21.6
Date: Thu, 11 Apr 2024 21:04:44 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-1783762444 | 2024-04-18T10:03:16.305610

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 10:03:16 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:23:1d:f8:a9:17:19:bb:27:6e:f1:67:bb:ee:ed:75:d4:a7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 20 23:23:33 2024 GMT
            Not After : Jun 18 23:23:32 2024 GMT
        Subject: CN=transmetall.devolta.ru
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:8b:3f:ff:b5:58:9a:e0:63:54:0c:ac:f9:03:06:
                    dd:f2:fe:71:08:ce:e6:89:06:e8:46:4a:11:fa:d1:
                    8a:94:7d:76:a9:c4:92:16:d5:3f:5e:26:74:7a:5e:
                    f9:f8:ac:9e:2c:83:7d:56:05:05:85:93:fd:c2:15:
                    a4:95:33:f3:d5
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B9:2B:EF:AD:F5:84:64:79:F7:69:D3:30:98:0E:E4:40:BB:82:6C:F0
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:admin-api.transmetall.devolta.ru, DNS:admin.transmetall.devolta.ru, DNS:api.transmetall.devolta.ru, DNS:console.s3.transmetall.devolta.ru, DNS:froggo-api.transmetall.devolta.ru, DNS:froggo.transmetall.devolta.ru, DNS:kos.transmetall.devolta.ru, DNS:mos.transmetall.devolta.ru, DNS:ros.transmetall.devolta.ru, DNS:rx.transmetall.devolta.ru, DNS:s3.transmetall.devolta.ru, DNS:spe.transmetall.devolta.ru, DNS:transmetall.devolta.ru, DNS:www.transmetall.devolta.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 21 00:23:34.207 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:1B:B1:49:E4:80:00:0B:D5:3D:3C:E9:19:
                                0F:3C:E2:EE:BA:57:B4:2A:D0:AA:F0:08:D0:6D:06:59:
                                6F:B8:21:40:02:21:00:C9:A1:A1:28:BA:C3:6F:CD:16:
                                87:E4:7F:9D:69:35:55:E3:8D:FF:B0:99:8C:79:36:97:
                                F6:A7:DF:3E:9D:FE:01
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 21 00:23:34.242 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CF:AA:58:8F:CA:29:11:C0:2D:61:67:
                                0C:A5:BD:CF:23:59:CB:E9:92:64:C5:3C:6D:23:7A:4E:
                                7C:45:2B:C7:2D:02:21:00:EC:D2:CC:CA:2E:11:B6:8D:
                                15:DF:E1:CE:E4:FF:54:3D:AB:F3:F4:12:82:B8:75:C4:
                                FA:A3:B1:7D:43:FB:C1:06
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        84:92:a4:f9:82:33:52:a2:08:0d:2f:90:3f:55:7f:f1:12:47:
        88:62:1c:c8:d4:05:d7:02:2a:0f:26:03:a8:ab:a2:c2:d8:61:
        23:15:7e:6a:a3:fd:13:ba:f3:c7:14:b7:af:c9:56:2e:c2:6b:
        4f:4c:46:46:08:f5:07:a2:bc:ac:41:4f:1c:36:08:b9:65:5b:
        36:dd:14:bc:16:cd:40:ab:80:8d:24:31:8c:31:69:ce:02:52:
        a5:d1:bd:b1:f1:86:3b:67:e2:b3:8f:9a:35:a6:5e:bc:2c:2e:
        7f:0e:6c:7c:fa:bf:e0:42:e5:4f:6b:21:8b:7a:09:ab:e7:3c:
        7b:3e:17:3e:7b:e5:d1:ed:03:b1:72:59:4f:f3:d1:a8:38:e3:
        45:4b:cc:fb:f6:86:3f:27:29:bf:95:00:5a:3c:37:4f:6b:d4:
        23:ef:84:63:e8:42:b9:82:eb:06:a0:12:59:82:eb:53:5d:34:
        eb:97:81:63:7d:75:8b:a1:66:c5:d7:a4:3b:69:b4:3c:36:ce:
        69:90:b6:72:3c:57:32:c4:97:bd:30:ff:d8:36:a9:d7:91:a1:
        94:42:07:4d:c5:01:27:95:5d:7b:6d:03:c2:05:49:7f:a5:94:
        2e:6b:da:0c:ad:c2:37:9b:77:4b:e2:d1:ab:34:a5:ff:8b:2e:
        bd:db:37:b1

576643403 | 2024-04-01T22:40:30.586774

9000 / tcp

HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
Content-Length: 226
Content-Security-Policy: block-all-mixed-content
Content-Type: application/xml
Server: MinIO
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
Vary: Accept-Encoding
X-Amz-Request-Id: 17C24924C11D0B91
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Date: Mon, 01 Apr 2024 22:40:30 GMT

<?xml version="1.0" encoding="UTF-8"?>
<Error><Code>AccessDenied</Code><Message>Access Denied.</Message><Resource>/</Resource><RequestId>17C24924C11D0B91</RequestId><HostId>a88a7086-a340-49c4-83db-5a520af7c5b1</HostId></Error>

-856606205 | 2024-04-13T23:31:05.818458

9001 / tcp

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 1266
Content-Type: text/html
Last-Modified: Sat, 13 Apr 2024 23:31:05 GMT
Server: MinIO Console
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Date: Sat, 13 Apr 2024 23:31:05 GMT
Connection: close

<!doctype html><html lang="en"><head><meta charset="utf-8"/><base href="/"/><meta content="width=device-width,initial-scale=1" name="viewport"/><meta content="#081C42" media="(prefers-color-scheme: light)" name="theme-color"/><meta content="#081C42" media="(prefers-color-scheme: dark)" name="theme-color"/><meta content="MinIO Console" name="description"/><link href="./styles/root-styles.css" rel="stylesheet"/><link href="./apple-icon-180x180.png" rel="apple-touch-icon" sizes="180x180"/><link href="./favicon-32x32.png" rel="icon" sizes="32x32" type="image/png"/><link href="./favicon-96x96.png" rel="icon" sizes="96x96" type="image/png"/><link href="./favicon-16x16.png" rel="icon" sizes="16x16" type="image/png"/><link href="./manifest.json" rel="manifest"/><link color="#3a4e54" href="./safari-pinned-tab.svg" rel="mask-icon"/><title>MinIO Console</title><script defer="defer" src="./static/js/main.a5ccf786.js"></script><link href="./static/css/main.90d417ae.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"><div id="preload"><img src="./images/background.svg"/> <img src="./images/background-wave-orig2.svg"/></div><div id="loader-block"><img src="./Loader.svg"/></div></div></body></html>

188.120.250.184

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1783762444 | 2024-04-11T21:04:44.956592
80 / tcp

nginx1.21.6

-1783762444 | 2024-04-18T10:03:16.305610
443 / tcp

nginx1.21.6

576643403 | 2024-04-01T22:40:30.586774
9000 / tcp

MinIO Server

-856606205 | 2024-04-13T23:31:05.818458
9001 / tcp

MinIO Server2024-04-06T05-26-02Z

Products

Pricing

Contact Us

188.120.250.184

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1783762444 | 2024-04-11T21:04:44.956592 80 / tcp

nginx1.21.6

-1783762444 | 2024-04-18T10:03:16.305610 443 / tcp

nginx1.21.6

576643403 | 2024-04-01T22:40:30.586774 9000 / tcp

MinIO Server

-856606205 | 2024-04-13T23:31:05.818458 9001 / tcp

MinIO Server2024-04-06T05-26-02Z

Products

Pricing

Contact Us

-1783762444 | 2024-04-11T21:04:44.956592
80 / tcp

-1783762444 | 2024-04-18T10:03:16.305610
443 / tcp

576643403 | 2024-04-01T22:40:30.586774
9000 / tcp

-856606205 | 2024-04-13T23:31:05.818458
9001 / tcp