GeneralInformation

Hostnames	s579910.srvape.com
Domains	srvape.com
Country	Russian Federation
City	Moscow
Organization	SmartApe OU
ISP	LLC Smart Ape
ASN	AS56694

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 873 3000 3001 8080

1085714839 | 2024-04-08T04:29:59.099891

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHL7jDO3/T/ZOzTQRptvW6aB
Jmyr+lb9jB+8DJiy+DDhRuq50cY+xcnxgGLeh4zXvTMwdiusDkmfPJ7+lGxNWC4=
Fingerprint: e0:77:2d:df:01:21:c8:24:cd:af:d6:2b:5f:98:35:5f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1941344967 | 2024-04-19T14:42:13.475395

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 19 Apr 2024 14:42:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1694
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Allow-Headers: *
Accept-Ranges: bytes
ETag: W/"69e-V0VhQ8YJkLELH6dBcXTHYPsZlrk"
Vary: Accept-Encoding

952565150 | 2024-04-08T23:00:17.995796

873 / tcp

@RSYNCD: 31.0 sha512 sha256 sha1 md5 md4\nshare          	
@RSYNCD: EXIT

-1060095501 | 2024-04-24T07:52:03.340663

3000 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Wed, 24 Apr 2024 07:52:03 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-1246004407 | 2024-04-20T17:05:23.970014

3001 / tcp

HTTP/1.1 400 Bad Request
Connection: close

768145792 | 2024-04-14T17:13:47.512252

8080 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 14 Apr 2024 17:13:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1731
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Allow-Headers: *
Accept-Ranges: bytes
ETag: W/"6c3-mBPZV1p9hGt3OCzWAGEonUVjYJE"
Vary: Accept-Encoding

188.127.230.102

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1085714839 | 2024-04-08T04:29:59.099891
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-1941344967 | 2024-04-19T14:42:13.475395
80 / tcp

nginx1.18.0

952565150 | 2024-04-08T23:00:17.995796
873 / tcp

rsyncd31.0 sha512 sha256 sha1 md5 md4

-1060095501 | 2024-04-24T07:52:03.340663
3000 / tcp

-1246004407 | 2024-04-20T17:05:23.970014
3001 / tcp

768145792 | 2024-04-14T17:13:47.512252
8080 / tcp

nginx1.18.0

Products

Pricing

Contact Us

188.127.230.102

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1085714839 | 2024-04-08T04:29:59.099891 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-1941344967 | 2024-04-19T14:42:13.475395 80 / tcp

nginx1.18.0

952565150 | 2024-04-08T23:00:17.995796 873 / tcp

rsyncd31.0 sha512 sha256 sha1 md5 md4

-1060095501 | 2024-04-24T07:52:03.340663 3000 / tcp

-1246004407 | 2024-04-20T17:05:23.970014 3001 / tcp

768145792 | 2024-04-14T17:13:47.512252 8080 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1085714839 | 2024-04-08T04:29:59.099891
22 / tcp

-1941344967 | 2024-04-19T14:42:13.475395
80 / tcp

952565150 | 2024-04-08T23:00:17.995796
873 / tcp

-1060095501 | 2024-04-24T07:52:03.340663
3000 / tcp

-1246004407 | 2024-04-20T17:05:23.970014
3001 / tcp

768145792 | 2024-04-14T17:13:47.512252
8080 / tcp