GeneralInformation

Hostnames	netbox.dominic.link static.209.254.40.188.clients.your-server.de
Domains	dominic.link your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 3128 8081

-566785505 | 2024-04-19T23:42:15.343224

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDTzjTU3oCWbn28vQAyWx+3yrhFSvcjdUWcmXmfuUVbghvb
pU4zYJ5iPsMY+S6XDrZUx7R4+krw0r8c92PEKOwjkCMQhZSiHYvekTRLQ534DV+bUPkDPUTnb6ed
6S9jjTZvZpUzMl7E1uyMD5dE1pbNhkCC6oMReCtATYmnv9huYSo4KPTQBDBv6rxPbGGNexbHxDlR
LNVcw7Y023o9ixq5zvK4OzY1CU0N+tnj/KwhpJmZQmcpj1BxJG1aY6/hWZEcfoDIzb/JuBVTyvRz
HIDbGQJl690SEQkznzBcnLxO9zTbiEBKixXk9UQ9W4+2JZU3V52FSQQjwNuZHG/FTBqyOZg015VZ
c8AF1TspWVwSbmM6lA3ZwQ1fK/BMgrUNyBDQW2Yluwrou5OxFRSvqkoAbWo67aCD+1+uMnF4wcU5
cOR6WFU/5H1YPyp3MZjEu6941g5xSw3429OC1xCSm4VW9k2AXSakh1dZgtqUJHRc0CIks/DL3ggb
qr5oOP1Y7vc=
Fingerprint: 18:3d:73:21:9f:33:92:b3:27:5f:74:09:8a:c7:5c:17

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1584412971 | 2024-04-08T15:03:08.480188

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Mon, 08 Apr 2024 15:03:08 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://188.40.254.209/

1553877777 | 2024-04-17T07:13:40.426422

3128 / tcp

HTTP/1.1 501 method 'GET' not available
Cache-Control: max-age=0
Connection: close
Date: Wed, 17 Apr 2024 07:13:40 GMT
Pragma: no-cache
Server: pve-api-daemon/3.0
Expires: Wed, 17 Apr 2024 07:13:40 GMT

1534887681 | 2024-04-20T02:34:46.571073

8081 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0
Date: Sat, 20 Apr 2024 02:34:46 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:c1:e6:0a:e9:c4:b5:06:84:d0:6d:61:07:fc:37:f8:ba:d5
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  7 06:15:49 2024 GMT
            Not After : Jul  6 06:15:48 2024 GMT
        Subject: CN=netbox.dominic.link
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:37:44:c8:5a:15:c6:55:0a:9c:e3:ba:72:74:
                    96:b6:2f:f4:c1:57:43:6d:f7:eb:25:37:48:ab:3e:
                    cb:7d:87:d3:b1:71:38:6a:6b:4e:05:3e:05:0d:84:
                    52:ae:44:2d:cc:aa:0d:22:58:d0:40:6d:cf:6f:3f:
                    a9:a6:36:ff:10:e7:11:59:c1:7e:ae:0b:b4:47:2a:
                    6b:61:9d:d8:e5:62:6e:d0:fc:24:73:2a:5d:c7:b2:
                    d3:7f:22:04:86:51:90:0a:5f:56:57:a3:1e:f9:07:
                    03:51:07:d0:1d:4e:1d:0f:0d:27:f5:22:da:d1:58:
                    62:5e:eb:75:18:fd:2a:6c:23:dc:9d:c8:cf:ab:70:
                    1e:3c:e2:af:dd:79:f8:34:eb:ef:d5:44:47:3a:b3:
                    c8:e2:44:3b:f8:27:2d:cc:e5:68:f3:a4:e1:eb:6e:
                    a5:09:e2:96:48:91:e6:c1:7f:a2:61:b2:f2:70:71:
                    d8:21:4e:2d:35:fc:12:5e:1c:b3:92:bc:79:a3:3a:
                    09:17:30:60:23:b8:c3:53:ed:76:bc:a0:9f:bb:53:
                    d3:ef:30:dc:68:b4:7f:ea:05:ba:95:2c:14:b3:74:
                    34:31:05:ee:a9:ed:e8:04:84:83:87:7a:aa:1a:4f:
                    20:0b:23:ad:9d:33:39:07:48:33:90:b5:b8:4f:1c:
                    7a:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                43:46:0E:D8:EB:4F:40:8C:46:49:90:A2:00:FB:19:62:99:07:30:5C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:netbox.dominic.link
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  7 07:15:50.330 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:12:AB:34:74:50:E5:B2:E4:EC:89:7B:FA:
                                01:14:87:63:62:95:5F:E1:68:50:49:B8:05:18:E4:53:
                                74:06:0B:03:02:20:24:5E:D7:57:5C:D0:4A:FF:20:6E:
                                E3:E4:24:68:31:6A:35:74:9C:AD:F1:FB:6C:96:76:8C:
                                76:25:91:0E:BD:48
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr  7 07:15:50.438 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:52:F2:A8:6D:F0:03:CE:4B:19:02:36:25:
                                56:2F:E6:62:87:B0:1D:4B:01:22:A5:40:FE:0D:04:55:
                                A8:ED:3A:59:02:20:00:F0:F1:0D:0F:D9:B7:15:11:FC:
                                7E:00:40:6A:44:3A:C8:74:63:5D:03:2A:3C:11:04:3D:
                                D9:95:C2:9B:02:5C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        38:89:ae:99:1a:f4:a6:d7:a5:c3:f5:8c:8a:f4:a8:b1:26:d4:
        51:ce:eb:28:43:83:a3:19:f2:cc:67:34:ee:e5:bd:1e:bc:d9:
        f8:ce:a7:1b:c4:94:71:10:00:16:be:d1:90:4c:fc:f6:bc:00:
        5c:79:b9:5b:8f:e5:17:c3:49:cc:e5:79:b3:fa:d3:0e:e0:7b:
        59:38:44:87:81:9e:ea:24:a2:bc:62:b8:23:de:54:7e:da:16:
        53:e7:45:7a:81:4d:05:ea:3e:ea:7c:4f:c6:57:8d:54:eb:a3:
        47:7a:7c:c9:07:f3:4b:6d:83:dd:85:0a:b0:e7:95:c9:d8:42:
        e0:30:b0:31:0a:b4:ec:3c:88:8d:a3:bd:03:53:2b:c7:4f:27:
        00:bf:65:aa:51:a7:43:42:1b:18:d0:2d:9f:66:f4:c4:ae:2c:
        53:ad:cf:3a:3c:3a:fc:00:8b:92:e0:83:d5:8b:86:66:8a:51:
        ff:49:64:3f:30:f4:51:e3:1a:15:7f:60:5c:b0:f4:9f:e0:5a:
        28:d5:0a:d3:9c:25:9e:73:42:91:40:be:39:08:42:d1:28:ca:
        e8:6f:92:43:8b:b7:ee:39:4f:bb:36:46:fe:20:0d:bb:5b:45:
        95:db:e9:1c:38:a7:9b:eb:36:cf:d0:6a:f4:39:a5:ea:7c:a9:
        f8:fe:e7:09

188.40.254.209

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-566785505 | 2024-04-19T23:42:15.343224
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1584412971 | 2024-04-08T15:03:08.480188
80 / tcp

nginx1.18.0

1553877777 | 2024-04-17T07:13:40.426422
3128 / tcp

1534887681 | 2024-04-20T02:34:46.571073
8081 / tcp

nginx1.18.0

Products

Pricing

Contact Us

188.40.254.209

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-566785505 | 2024-04-19T23:42:15.343224 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1584412971 | 2024-04-08T15:03:08.480188 80 / tcp

nginx1.18.0

1553877777 | 2024-04-17T07:13:40.426422 3128 / tcp

1534887681 | 2024-04-20T02:34:46.571073 8081 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-566785505 | 2024-04-19T23:42:15.343224
22 / tcp

1584412971 | 2024-04-08T15:03:08.480188
80 / tcp

1553877777 | 2024-04-17T07:13:40.426422
3128 / tcp

1534887681 | 2024-04-20T02:34:46.571073
8081 / tcp