GeneralInformation

Hostnames	bkb.ch chatbot.bkb.ch cm.intern.bkb.ch identity.intern.bkb.ch marke.bkb.ch www.bkb.ch
Domains	bkb.ch
Country	Switzerland
City	Zürich
Organization	Swisscom (Schweiz) AG
ISP	Swisscom (Schweiz) AG
ASN	AS3303

WebTechnologies

JavaScript libraries

jQuery3.4.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

OpenPorts

80 443

396138133 | 2024-04-24T05:49:53.572158

80 / tcp

HTTP/1.1 403 Forbidden
Date: Wed, 24 Apr 2024 05:49:53 GMT
Server: Apache
Content-Length: 199
Content-Type: text/html; charset=iso-8859-1

-2051234838 | 2024-04-23T00:38:22.698966

443 / tcp

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 00:38:21 GMT
Server: Apache
Set-Cookie: SC_ANALYTICS_GLOBAL_COOKIE=f429756a9bbf46f38b6d12d006addbf5|False; Path=/; Expires=Wed, 23-Apr-2025 00:38:21 GMT; Secure; HttpOnly; SameSite=Lax
Set-Cookie: AL_SESS-S=Ac8JxKI__enmilmtllAj3Yr!BlDw1IcVm!UJkUP_AoOiy_CrjDtEY!62rRStfCfPymVb; Path=/; Secure; HttpOnly; SameSite=Lax
Content-Length: 35858
Cache-Control: no-cache, no-store
Pragma: no-cache
Expires: -1
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: 
Referrer-Policy: no-referrer
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=2592000
Content-Type: text/html; charset=utf-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0a:fc:e6:73:0b:fb:d4:24:56:27:05:55:35:a8:7f:d6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=IE, O=DigiCert Ireland Limited, CN=DigiCert G2 TLS EU RSA4096 SHA384 2022 CA1
        Validity
            Not Before: Mar 11 00:00:00 2024 GMT
            Not After : Mar  6 23:59:59 2025 GMT
        Subject: jurisdictionC=CH/jurisdictionST=Basel-Stadt/businessCategory=Private Organization/serialNumber=CHE-108.954.493, C=CH, L=Basel, O=Basler Kantonalbank, CN=www.bkb.ch
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c4:70:a8:3b:98:04:c5:d2:2b:52:13:12:4c:71:
                    bd:98:3d:e0:58:f3:24:b9:14:17:c3:d7:61:3a:52:
                    f1:68:e5:33:d6:0a:1a:9a:a2:1d:0f:b1:8c:e6:00:
                    de:a0:b9:37:e8:7c:47:ad:cb:a4:1d:5b:6c:4e:ae:
                    1b:55:c4:70:6f:9a:e5:2d:76:69:7e:4b:70:cc:d4:
                    5a:4b:5e:e4:b0:be:82:db:8e:ea:ea:ad:9e:ae:5f:
                    20:ce:63:c9:8c:86:b6:81:e2:7b:08:d5:88:75:06:
                    08:6f:2c:2b:7e:50:63:08:80:c4:9b:34:5a:ba:ca:
                    62:8c:25:41:be:78:29:dd:fe:04:eb:87:cb:83:77:
                    32:86:65:88:80:6b:b7:a6:3c:38:35:9c:55:a1:16:
                    32:70:00:24:4f:98:86:bd:9a:da:58:e2:8d:30:89:
                    f9:4c:ad:0f:fb:73:bd:88:0c:90:ae:f7:d2:f1:d0:
                    3a:66:57:3f:32:fa:7f:b4:2f:b4:c1:a0:be:e4:98:
                    db:16:39:52:90:03:63:46:76:1a:69:39:c7:27:d8:
                    11:fc:78:7a:b6:94:23:a3:93:51:80:76:21:6e:d0:
                    eb:c2:2b:79:de:0c:e5:b0:fb:0d:bf:5c:c6:44:14:
                    ea:9f:63:6d:e0:b6:2f:0e:a9:2d:23:41:0e:58:82:
                    dd:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                18:89:E7:AF:F0:28:F6:7C:CA:68:05:52:E1:62:D8:91:D6:16:65:60
            X509v3 Subject Key Identifier: 
                A8:53:80:59:7E:4A:EE:BE:79:3B:CC:CA:58:AF:D6:A0:41:C5:D0:B5
            X509v3 Subject Alternative Name: 
                DNS:www.bkb.ch, DNS:bkb.ch, DNS:cm.intern.bkb.ch, DNS:identity.intern.bkb.ch, DNS:chatbot.bkb.ch, DNS:marke.bkb.ch
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114412.2.1
                Policy: 2.23.140.1.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.digicert.eu/DigiCertG2TLSEURSA4096SHA3842022CA1.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.eu
                CA Issuers - URI:http://cacerts.digicert.eu/DigiCertG2TLSEURSA4096SHA3842022CA1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar 11 12:43:01.760 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EB:23:75:BD:EA:C8:F7:73:55:CD:28:
                                A2:B0:63:23:17:B5:39:5A:08:BC:6A:15:C5:F3:A3:A2:
                                CC:71:2A:F2:D8:02:21:00:C3:58:39:05:B8:5C:10:81:
                                F9:41:27:23:1C:F0:B6:6D:2E:3A:F7:21:01:74:C3:07:
                                B5:0E:32:0F:D3:CC:A8:E7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Mar 11 12:43:01.940 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1A:C8:5E:84:0E:80:AB:E9:48:A6:38:22:
                                71:57:56:FF:FD:7D:6E:EB:16:8C:32:AD:0A:D0:85:89:
                                F3:F2:97:AB:02:20:57:A5:29:47:1D:9E:D7:31:F9:4D:
                                E2:8D:33:C1:42:9B:1B:98:0A:87:15:10:3A:F8:C4:BD:
                                7D:19:B3:02:ED:1A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Mar 11 12:43:01.697 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D0:85:44:3F:03:DE:14:82:79:3D:06:
                                FC:74:A7:0B:75:4D:B7:8C:ED:E8:2C:EF:B7:91:24:BB:
                                CF:7E:90:61:D4:02:21:00:A0:63:2D:A4:FE:00:52:27:
                                08:02:7F:5C:E4:00:4F:E5:7C:2C:9A:25:EF:E1:09:F8:
                                03:F1:E5:39:60:B7:03:4D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        80:c8:2a:e8:56:b9:08:87:50:3c:e3:ac:75:8f:40:b4:c2:13:
        86:94:d0:99:48:11:7b:4f:36:e4:9f:8b:76:5b:e1:1f:6b:b7:
        bb:38:d0:e3:a7:76:40:b4:43:c1:d2:19:f0:f9:ee:6b:1f:40:
        7b:63:01:2d:a7:a3:6e:17:13:da:77:1c:86:0d:fb:a4:1d:38:
        fd:2c:51:8e:60:0a:33:89:62:b5:bd:39:40:74:18:c9:80:14:
        84:08:f0:13:21:cc:5e:a6:48:c0:a2:6c:68:ca:be:9d:45:f1:
        3a:cd:54:2b:b3:49:25:3d:f2:cf:e5:21:d5:db:52:77:c3:a3:
        11:34:c7:cb:e8:b1:6c:8b:1a:0d:f4:64:7a:88:3f:fd:b1:64:
        50:bd:e5:ba:64:01:9c:a6:b9:28:c7:6f:30:b5:cf:0e:3c:6c:
        6e:f5:b5:36:b8:f0:c9:b9:ac:25:d1:9a:0e:b6:1c:a5:51:63:
        39:7d:ea:97:05:fb:a1:82:4e:a8:8f:51:b3:65:f6:80:db:51:
        a2:1c:ae:75:43:9e:59:66:eb:88:40:4b:5d:bb:4d:1b:08:52:
        ae:34:2f:2c:31:86:6b:40:df:a5:c7:bb:c5:50:24:c8:1c:c4:
        5f:44:5e:a3:be:e4:3b:53:bd:16:60:70:95:17:bb:1a:54:b6:
        ef:41:3e:49:f9:93:8d:14:c0:95:87:96:6b:b4:e9:b2:a3:27:
        94:70:c4:60:86:a3:6b:b9:69:0c:48:05:b9:6b:53:39:2f:08:
        09:92:5c:25:c2:03:06:dc:57:54:e2:44:17:91:24:45:46:50:
        45:7f:23:68:67:63:d3:88:3d:41:44:89:af:de:fb:ec:47:90:
        05:59:e4:e5:bc:16:b7:1f:57:ab:01:a0:cb:b1:01:4d:74:86:
        87:e5:14:3d:2e:9a:4f:3f:16:e0:f1:da:cd:8a:49:14:c0:31:
        c3:5a:33:dd:13:15:cc:f8:1f:ed:a5:98:d0:b4:6f:0a:92:ca:
        73:ec:a8:09:49:9d:3a:e6:6b:84:86:2e:3d:fe:75:db:56:ae:
        e4:31:28:6e:f4:94:d0:63:ec:8c:64:9b:23:87:dd:6f:66:d1:
        2b:29:62:ac:3e:5f:d9:29:19:3b:fa:ee:fd:1d:fc:04:d2:78:
        aa:06:67:c1:8e:12:0f:1d:a6:17:e2:f2:0e:db:19:c9:ab:9d:
        57:fa:f1:fe:88:a9:08:b7:95:5a:7f:e6:9c:57:7e:1d:c1:46:
        bb:17:97:e0:8a:6a:de:1a:7d:6a:0b:47:98:9f:43:cc:3e:7e:
        a1:fd:55:3e:6c:0a:ee:43:84:5e:ea:67:b8:a3:68:2c:93:e8:
        cb:0e:54:f4:9a:92:0d:64

193.222.68.75

Last Seen: 2024-04-24

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

396138133 | 2024-04-24T05:49:53.572158
80 / tcp

Apache httpd

-2051234838 | 2024-04-23T00:38:22.698966
443 / tcp

Apache httpd

Products

Pricing

Contact Us

193.222.68.75

Last Seen: 2024-04-24

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

396138133 | 2024-04-24T05:49:53.572158 80 / tcp

Apache httpd

-2051234838 | 2024-04-23T00:38:22.698966 443 / tcp

Apache httpd

Products

Pricing

Contact Us

396138133 | 2024-04-24T05:49:53.572158
80 / tcp

-2051234838 | 2024-04-23T00:38:22.698966
443 / tcp