GeneralInformation

Hostnames	192-155-90-244.ip.linodeusercontent.com theaccelerator.studio dev.theaccelerator.studio www.theaccelerator.studio
Domains	linodeusercontent.com theaccelerator.studio
Cloud Provider	Linode
Cloud Region	us-nj
Country	United States
City	Morris Plains
Organization	Linode
ISP	Akamai Connected Cloud
ASN	AS63949

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 3001

1534457060 | 2024-04-23T17:39:15.911398

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBDymFvalX5UduvF3v0n/0sWl
IJpy4BN/9atFTYUsFvKdLUC4BNy0cFlQR47XZsjRV84eRnU0yq6c3q1gUZKTA8Q=
Fingerprint: 38:33:61:c1:99:b8:c6:d3:70:a6:99:2e:6a:69:18:32

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-15T00:56:41.570363

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 00:56:41 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

784152551 | 2024-04-20T05:04:30.467228

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 20 Apr 2024 05:04:30 GMT
Content-Type: text/html
Content-Length: 1672
Connection: keep-alive
Last-Modified: Thu, 18 Apr 2024 23:36:09 GMT
ETag: "6621ae69-688"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:57:96:f4:f7:f0:bb:f9:7b:6f:76:54:e9:69:2c:c0:83:e8
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 21 03:30:36 2024 GMT
            Not After : Jun 19 03:30:35 2024 GMT
        Subject: CN=theaccelerator.studio
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e0:2e:99:fa:3f:e9:e3:4b:f4:d4:4f:c4:ef:a5:
                    3d:8c:d6:ae:32:99:c0:fb:81:32:d7:2a:5f:20:29:
                    fc:fd:5c:73:e0:0f:16:73:0b:6d:15:d1:16:aa:45:
                    19:68:06:1c:14:97:a1:99:0d:a6:bf:1f:49:ff:4d:
                    68:47:25:79:e2:93:d9:05:41:c7:e9:d1:28:0f:1d:
                    bb:ff:8d:58:fa:06:38:34:4c:7d:39:d3:c3:71:8c:
                    b1:af:c8:6f:c5:3e:4c:c3:50:56:10:87:e2:a3:6d:
                    bc:ba:ed:46:b4:64:5c:50:64:96:5e:a0:4b:3d:31:
                    44:5b:30:fc:b1:75:9a:78:54:33:ce:35:87:40:a9:
                    0f:19:d2:2c:c6:d6:3f:89:fe:27:44:b4:27:e8:2f:
                    a2:64:09:63:10:a1:f8:9a:9b:2d:e6:70:9f:8c:40:
                    16:0a:38:07:0f:37:d6:07:50:df:c2:b8:78:eb:34:
                    5d:ca:c2:1a:4a:74:82:b1:ff:92:e2:40:c9:eb:66:
                    00:b8:e7:91:f6:85:fe:39:1c:3d:b2:2c:86:43:74:
                    ac:9a:55:93:6e:df:8c:fe:45:79:7a:31:89:7e:86:
                    f3:4e:6c:9a:72:bd:e7:c4:17:6f:4d:00:ad:41:41:
                    da:87:64:80:ff:d7:73:6a:67:ef:e5:bd:f0:a3:6e:
                    f1:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                FC:48:C5:3E:8F:13:66:B3:D1:CD:A4:64:23:74:08:86:90:46:13:D6
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dev.theaccelerator.studio, DNS:theaccelerator.studio, DNS:www.theaccelerator.studio
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 21 04:30:37.198 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:6A:1A:0B:8E:17:B4:5F:08:F9:95:46:75:
                                B2:3A:CB:C1:DA:0A:C0:8A:B2:DF:98:6B:16:FD:3D:14:
                                BE:63:45:8A:02:21:00:BB:6E:71:CF:2F:7E:E6:C8:CF:
                                80:69:F8:2C:BC:E8:AD:2A:E3:8D:EC:BA:B4:55:12:58:
                                96:08:D1:88:50:FB:D6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 21 04:30:37.263 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0E:FF:83:88:27:8F:43:A5:E5:E7:AE:E9:
                                A6:9A:52:16:00:C7:F7:58:7A:DE:37:5A:0D:B0:32:E4:
                                39:C2:A0:F6:02:21:00:AA:46:83:83:EA:A9:CA:D5:D8:
                                EB:BA:DF:56:5C:C0:40:70:3F:1D:6D:36:9A:7A:B2:BA:
                                59:83:9C:01:98:8B:99
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        91:9a:be:4a:39:65:ea:79:43:b3:02:80:36:22:83:31:c4:9a:
        6a:9f:e6:3a:08:74:37:73:52:1f:05:fd:74:85:34:31:0d:8b:
        58:90:df:0c:b3:c4:7f:fe:30:3a:0d:95:fc:f6:47:90:93:0a:
        12:71:57:fe:06:a1:0b:16:41:5c:13:03:62:10:bf:59:11:7c:
        06:59:f0:4b:b4:e3:07:25:b4:b3:a1:45:31:42:21:31:08:1d:
        73:ba:83:45:e5:37:a3:58:83:b6:27:01:d0:82:ae:6c:02:e9:
        17:b1:19:c2:4f:44:cd:88:ca:60:86:87:ec:8b:5d:f8:18:2b:
        ed:ff:34:eb:fe:fc:3d:f0:0d:f0:f9:f1:0c:66:28:46:ac:ed:
        c5:39:9b:27:4a:33:90:31:86:f8:e5:1d:c8:f6:3e:20:00:41:
        0d:5d:7f:3f:1e:aa:f9:c7:f8:f0:0c:4d:d6:56:25:bc:db:5b:
        cd:ee:56:d9:b5:e2:24:00:5c:9d:4e:ab:9e:9d:df:2f:b2:5e:
        aa:23:dc:1d:1a:58:d5:c1:8e:db:eb:44:7e:94:94:a4:57:f8:
        3c:88:28:bf:c8:38:23:2e:2f:2b:b9:fa:84:91:05:a3:34:cd:
        a2:c2:a6:90:ce:d2:0c:b7:bf:b1:6d:10:c9:c3:d7:4d:9f:7c:
        6a:3f:a9:6a

-194566904 | 2024-04-12T01:20:25.301441

3000 / tcp

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 12 Apr 2024 01:20:25 GMT
Content-Type: text/html
Content-Length: 1672
Last-Modified: Thu, 11 Apr 2024 15:14:21 GMT
Connection: keep-alive
ETag: "6617fe4d-688"
Accept-Ranges: bytes

1714921531 | 2024-04-21T12:52:31.312582

3001 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.24.0
Date: Sun, 21 Apr 2024 12:52:30 GMT
Content-Type: text/html
Content-Length: 157
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.24.0</center>
</body>
</html>

192.155.90.244

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1534457060 | 2024-04-23T17:39:15.911398
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-04-15T00:56:41.570363
80 / tcp

nginx1.18.0

784152551 | 2024-04-20T05:04:30.467228
443 / tcp

nginx1.18.0

-194566904 | 2024-04-12T01:20:25.301441
3000 / tcp

nginx1.24.0

1714921531 | 2024-04-21T12:52:31.312582
3001 / tcp

nginx1.24.0

Products

Pricing

Contact Us

192.155.90.244

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1534457060 | 2024-04-23T17:39:15.911398 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-04-15T00:56:41.570363 80 / tcp

nginx1.18.0

784152551 | 2024-04-20T05:04:30.467228 443 / tcp

nginx1.18.0

-194566904 | 2024-04-12T01:20:25.301441 3000 / tcp

nginx1.24.0

1714921531 | 2024-04-21T12:52:31.312582 3001 / tcp

nginx1.24.0

Products

Pricing

Contact Us

1534457060 | 2024-04-23T17:39:15.911398
22 / tcp

677579724 | 2024-04-15T00:56:41.570363
80 / tcp

784152551 | 2024-04-20T05:04:30.467228
443 / tcp

-194566904 | 2024-04-12T01:20:25.301441
3000 / tcp

1714921531 | 2024-04-21T12:52:31.312582
3001 / tcp