GeneralInformation

Hostnames	p.otm-r.com static.28.57.201.195.clients.your-server.de
Domains	otm-r.com your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-9516	6.8Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.
CVE-2019-9513	7.8Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
CVE-2019-9511	7.8Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

22 80 443

-757622256 | 2024-04-16T06:23:06.006118

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC4pujpVag6NQUtYGjeYw6OLSgI9AzHXIzH1c2VrGz/JzrA
f+QbrS20D4ZTHA5tvEuIrISa1XAksFaHDQXPruSg8tMLTluNvXty2+nq66UAvXBW2cxLeAZ8l1IR
YTJv3WYMjhABFrmS23UHJJgbFLwJi9hJHqLqNsra5BJztuY/uALwBaWT/NNEHV5hHMgHf+AwIQmk
rPSaa0/yWsYX+cb65GFn2vfTeGOFtYwcfAtEdOoJ2BRTlSUcQZnbNnvNpwMCsnd2PnwUtWQvA9R6
sg8k2htPmCM3F5hSH6oyEbx14jALiQ2M/cf2GtbBg6O+31pphnqvRwKaj8fKkgWfHmlh
Fingerprint: 36:e1:f1:ec:14:83:e8:77:68:93:01:52:64:dd:16:96

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1255326477 | 2024-04-18T13:50:26.399585

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.17.0
Date: Thu, 18 Apr 2024 13:50:26 GMT
Content-Type: text/plain
Content-Length: 18
Connection: keep-alive
Access-Control-Allow-Origin: *

-1255326477 | 2024-04-05T21:35:17.039331

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.17.0
Date: Fri, 05 Apr 2024 21:35:16 GMT
Content-Type: text/plain
Content-Length: 18
Connection: keep-alive
Access-Control-Allow-Origin: *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            34:41:0f:a8:47:18:13:c4:ce:eb:3e:c8
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R6 AlphaSSL CA 2023
        Validity
            Not Before: Mar  7 12:26:23 2024 GMT
            Not After : Apr  8 12:26:22 2025 GMT
        Subject: CN=*.p.otm-r.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:e7:08:66:81:34:18:96:3c:36:ef:30:3b:72:b5:
                    2e:6a:a1:33:c2:e9:03:e1:d1:09:6b:84:67:b1:12:
                    c1:e1:d2:4c:eb:44:fe:15:22:bf:97:45:71:e5:7b:
                    6f:ad:29:70:96:5d:f6:74:92:8d:b8:a1:be:26:e4:
                    42:66:c2:71:b2:2a:ce:01:49:cf:04:9f:af:d1:8d:
                    75:9e:00:90:28:3c:7d:66:b7:6b:31:e4:e6:5e:b8:
                    ff:18:f6:98:05:40:c6:08:83:71:ac:fd:45:76:c1:
                    45:84:bd:34:90:c6:12:ac:46:b7:29:7f:07:29:78:
                    c6:c0:5e:15:57:f0:98:f6:62:f7:0f:29:1d:3a:f4:
                    f6:a3:84:75:79:01:68:4c:2a:20:7c:e0:7d:10:f3:
                    f8:06:26:86:17:30:d1:33:dd:9e:05:6e:c8:cd:a9:
                    42:8a:b4:24:65:8c:15:8c:3b:fd:9a:69:ce:2a:47:
                    b8:59:a4:bc:22:6b:59:24:b8:3e:b5:c3:ef:48:98:
                    40:01:ef:2d:5c:c5:6a:6d:97:69:ce:cb:94:ae:e1:
                    06:f3:8e:5f:4f:5b:05:e7:f5:13:b3:19:6f:6f:82:
                    bc:ca:5b:14:66:ed:61:8c:82:a4:cb:a6:d3:c1:f5:
                    db:83:ca:f6:59:c2:5d:a0:e2:51:17:26:86:c5:74:
                    2b:f3:e2:c2:e0:d6:b8:83:cb:56:e8:ec:c2:c3:3a:
                    ed:a0:ec:48:31:9b:cf:1e:7f:45:29:a8:d4:9c:a5:
                    01:ba:cf:35:29:e1:93:47:ec:c1:e9:92:9a:9e:3f:
                    dd:e1:a2:9a:66:da:bd:ba:94:05:9f:93:45:15:2b:
                    81:02:a9:34:38:f3:74:ab:8d:41:76:69:15:a8:8c:
                    c5:8f:61:5e:ee:9d:98:0f:af:19:69:f7:ab:ac:be:
                    ba:60:22:27:f8:0d:6d:f6:7f:e4:68:85:24:99:00:
                    60:da:d0:a0:63:f1:39:6b:03:5f:81:b6:86:5a:5d:
                    d8:3b:2f:d0:bf:89:67:d9:f1:49:c6:c0:1c:d8:19:
                    88:51:de:3f:3a:8f:af:13:72:07:ca:b6:48:18:9a:
                    98:9f:cc:3d:2b:3e:da:9a:7a:ca:fd:37:5b:97:0f:
                    4b:9c:b1:f7:16:bb:0d:16:b3:ae:c6:cf:91:00:73:
                    49:87:2e:01:c0:c0:3e:3b:38:eb:19:c9:7c:13:ac:
                    0d:5f:7e:ca:76:35:b3:6a:4a:5d:eb:d7:ef:36:b7:
                    11:25:88:7a:4b:ef:19:95:55:0e:32:c1:65:f4:b1:
                    9f:66:c2:38:79:99:85:d6:53:c3:ff:39:ff:e0:57:
                    8b:36:63:11:fe:cd:37:57:19:f8:2e:2c:ac:fc:a2:
                    2c:31:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr6alphasslca2023.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr6alphasslca2023
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.4146.10.1.3
                  CPS: https://www.globalsign.com/repository/
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr6alphasslca2023.crl
            X509v3 Subject Alternative Name: 
                DNS:*.p.otm-r.com, DNS:p.otm-r.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                BD:05:B7:F3:8A:93:3C:73:CB:79:FA:0F:85:12:A1:77:96:18:91:74
            X509v3 Subject Key Identifier: 
                4D:A4:DB:7F:E7:3E:18:DA:3F:DE:00:EE:57:99:9E:64:90:6F:5F:B5
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Mar  7 12:26:25.193 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D8:A3:70:90:E6:67:0F:D6:6B:82:21:
                                DB:FF:06:AC:8C:C3:DF:26:77:DD:E5:E4:51:58:FB:AF:
                                24:C4:89:29:B6:02:20:16:83:BE:D4:39:F9:19:83:A4:
                                CA:C2:20:58:30:4F:F1:76:84:CA:98:D3:31:F2:D0:37:
                                16:8C:26:36:09:82:4D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Mar  7 12:26:25.187 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:5C:1E:8F:86:72:3E:A7:1B:DD:24:E9:6E:
                                68:D6:30:4B:8D:35:B0:F4:10:51:EE:CD:44:B5:79:3E:
                                C8:95:27:50:02:21:00:ED:BE:32:A0:E8:45:97:8E:B9:
                                90:FE:85:61:9E:CF:AC:7D:D9:A6:46:15:59:C8:AC:3E:
                                6D:D6:D5:25:4A:04:28
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar  7 12:26:25.152 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EA:E1:99:3A:20:BC:44:96:9F:38:7C:
                                A8:86:C9:9E:B6:CC:79:11:93:A8:2D:D9:AF:21:A6:89:
                                E2:4A:2B:C0:16:02:21:00:8A:89:91:07:13:AD:8D:6F:
                                30:8E:4D:1E:DE:DC:1E:13:E1:7F:EB:32:4C:0A:AB:77:
                                93:60:37:B5:BC:94:D2:47
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        28:6d:32:9e:e1:35:05:23:98:ff:6b:80:02:de:ed:4c:ad:42:
        e2:5e:ff:b9:1c:be:76:3f:ab:23:80:a2:7e:aa:ba:02:71:d9:
        fd:3b:7b:d0:28:df:9e:c8:3d:1c:50:2e:9f:55:26:80:27:97:
        f4:4c:b0:a0:84:f6:57:bf:68:11:0a:83:58:2b:30:ed:96:c2:
        8b:8f:0c:8d:3c:29:63:0e:35:44:88:f7:df:8a:40:63:74:0d:
        3b:99:17:df:88:fd:f6:47:4b:ba:03:43:8f:0c:8c:58:39:6c:
        7d:19:76:ab:91:a5:d2:e1:21:68:36:94:e0:85:0e:4f:9f:16:
        56:d5:a7:e1:2b:6d:2d:57:5b:96:ed:fa:fe:18:45:3a:62:cd:
        8a:b1:c3:03:c4:03:ef:58:46:27:dc:5a:41:09:26:5b:ba:69:
        a2:b9:52:18:a5:9a:1b:6f:2a:25:0c:ed:d5:e6:d1:4b:0e:ff:
        15:f3:d3:d1:77:5f:0d:75:fa:08:25:03:c2:b1:29:c5:67:f9:
        2c:ce:df:77:ab:be:39:2d:54:76:75:98:7e:b1:e3:81:08:00:
        4f:a6:93:7a:ae:75:94:a8:67:24:9a:22:de:d9:03:07:ba:24:
        e3:c7:45:30:31:c0:03:f0:9e:22:a1:5d:b1:78:6a:e5:cf:d0:
        ca:6d:89:e1

195.201.57.28

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-757622256 | 2024-04-16T06:23:06.006118
22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.3

-1255326477 | 2024-04-18T13:50:26.399585
80 / tcp

nginx1.17.0

-1255326477 | 2024-04-05T21:35:17.039331
443 / tcp

nginx1.17.0

Products

Pricing

Contact Us

195.201.57.28

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-757622256 | 2024-04-16T06:23:06.006118 22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.3

-1255326477 | 2024-04-18T13:50:26.399585 80 / tcp

nginx1.17.0

-1255326477 | 2024-04-05T21:35:17.039331 443 / tcp

nginx1.17.0

Products

Pricing

Contact Us

-757622256 | 2024-04-16T06:23:06.006118
22 / tcp

-1255326477 | 2024-04-18T13:50:26.399585
80 / tcp

-1255326477 | 2024-04-05T21:35:17.039331
443 / tcp