GeneralInformation

Hostnames	vm2401180232.vds.ru
Domains	vds.ru
Country	Russian Federation
City	Moscow
Organization	JSC "RU-CENTER"
ISP	JSC "RU-CENTER"
ASN	AS48287
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 5432

1679903157 | 2024-04-16T03:25:09.904487

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDgPR1zco+cN+B1n0GVinIvKsoAdTh/HUFBL3UGDn68++/e
6nYCYR7FDa3l7dl6UYjKo649F71bioAPwu2s86Cp0dFldqt8PSjVAundEwGW0fxzB1b+XeP9Fg2K
ery9g49iPoprRhaLWsh/x7m2VlVgW3mN3s19lQPQAhpFDbXTFVPAlwpdMoy3FUCqIPy0aBYsz67q
kg8fsgicEMj0zYlfYOa+LjjInurxr+K00kehbda03xk+JMT2D23gtxaMZo3GSNwoB9o/8Dsdarxs
YlOvk5Ouh52MkpCvgLuuqAgfDCtn4XTmMiR8PHRQY8dx5gg19Nmah6t2GRZR1oVXFSjtq6Oa83UP
fiBv6Z2oJRvPkYc+cMKv/LTd5HB0DbSv4XRgn878Nj0GIRyDoRBoAPtrIm3mtmvyjObrYDmYP05i
JFn3wGyKsVYXSPwdJjSjNpxrpGWz54LuJqMnALq+Gjfcjwtl0gl/PcJ9x2FPln1ucFbjtqsi9juu
FIc5/dwShGs=
Fingerprint: 8d:84:5d:c6:cd:17:f4:5c:c9:69:e0:a5:3f:17:21:82

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-04-19T23:38:05.073501

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 19 Apr 2024 23:38:05 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://195.24.65.208/

813958279 | 2024-04-29T03:44:59.363051

443 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 29 Apr 2024 03:44:59 GMT
Content-Type: text/html
Content-Length: 264
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

-490128302 | 2024-04-24T16:51:14.451120

5432 / tcp

PostgreSQL
FATAL:  no pg_hba.conf entry for host "224.24.179.175", user "postgres", database "template0", SSL on
FATAL:  no pg_hba.conf entry for host "224.24.179.175", user "postgres", database "template0", SSL off

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            31:a5:4b:b5:47:e1:f1:80:a0:5e:bf:f2:23:b7:65:ba:eb:6d:41:26
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=vm2401180232.vds.ru
        Validity
            Not Before: Jan 18 08:27:09 2024 GMT
            Not After : Jan 15 08:27:09 2034 GMT
        Subject: CN=vm2401180232.vds.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ba:29:82:d1:49:5a:11:be:4c:59:00:e6:cd:33:
                    84:68:38:0d:63:8d:8d:ae:cd:d1:de:31:4f:6f:d0:
                    2b:bb:03:a9:3a:b6:e2:19:cb:e6:0a:5d:46:a2:e6:
                    95:a0:3a:8c:10:73:a0:18:4b:45:e6:ad:a4:de:38:
                    aa:43:89:dc:f8:b9:fd:93:c1:fe:84:d7:05:e7:18:
                    64:fe:20:92:ba:18:13:dc:28:df:92:88:7e:33:c2:
                    b7:f4:db:0a:9b:63:df:2b:ec:ae:ea:f6:ce:69:07:
                    0b:eb:42:52:c0:7d:86:d9:4d:25:7e:19:2a:13:80:
                    a8:28:7f:1b:54:93:00:00:36:40:47:19:e9:ed:aa:
                    ad:1b:92:e5:ec:f7:92:fc:1c:03:ef:2d:d8:75:8c:
                    3b:cc:2e:80:07:14:63:45:52:bd:23:c8:82:40:c7:
                    39:e9:c1:a4:97:b5:06:49:c8:46:f4:47:41:23:bb:
                    4c:9d:ee:2c:ce:e7:42:08:1c:a9:97:9a:ea:ee:80:
                    96:af:78:47:4d:e5:0f:97:4d:d5:bd:46:1d:d8:fe:
                    9c:1e:54:9e:8c:8a:9a:6a:e7:c5:15:12:11:ed:be:
                    2c:70:e0:9c:79:54:01:79:9e:5e:81:d4:aa:db:1f:
                    a7:d2:74:e2:34:fe:ff:ba:d9:f3:57:06:ee:c6:2c:
                    0a:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:vm2401180232.vds.ru
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        83:68:ac:dd:fd:ec:e8:40:5a:49:ed:b3:ac:f6:b2:7f:a6:d8:
        b9:c3:88:15:12:b9:62:c3:0e:05:f5:d6:8f:12:62:22:c3:a7:
        9d:e1:85:38:f0:a9:d9:dd:c9:73:37:d2:56:b1:f4:8b:94:c3:
        89:0d:25:f7:9a:e3:88:f6:a0:58:bd:3a:1b:c0:61:d1:49:aa:
        08:bd:65:f9:b3:0d:7c:c7:ac:82:df:f2:6b:e5:9e:91:41:a5:
        e7:c6:75:bd:91:89:a7:9d:fd:ef:8c:ff:09:9a:1f:84:f6:1d:
        cb:07:d4:6b:5f:bc:36:d8:8d:77:e8:57:e5:98:f2:4a:f1:09:
        3e:51:d7:10:79:ed:88:1f:b2:da:56:74:36:59:91:dc:6f:71:
        a7:56:b9:47:a1:96:24:f0:c3:42:a9:c6:66:80:a4:fb:6e:0c:
        fc:46:cf:55:c6:4f:96:9d:ca:60:ce:0b:7d:76:76:8d:e6:9a:
        5e:b7:de:14:43:37:b1:92:d8:f4:9d:a8:2a:f2:32:71:c9:ba:
        34:1e:7a:47:a3:98:b6:b9:1c:7d:c1:ec:f1:52:fe:79:6f:b8:
        bf:f4:f9:56:3a:59:7a:c5:36:16:a9:48:36:ce:64:2c:cf:06:
        5e:3b:ae:d6:04:cd:b6:f6:a9:76:36:5a:d0:1f:d1:61:b6:42:
        94:d7:a8:ad

195.24.65.208

Last Seen: 2024-04-29

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1679903157 | 2024-04-16T03:25:09.904487
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-04-19T23:38:05.073501
80 / tcp

nginx1.18.0

813958279 | 2024-04-29T03:44:59.363051
443 / tcp

nginx1.18.0

-490128302 | 2024-04-24T16:51:14.451120
5432 / tcp

PostgreSQL12.14 - 12.18

Products

Pricing

Contact Us

195.24.65.208

Last Seen: 2024-04-29

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1679903157 | 2024-04-16T03:25:09.904487 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-04-19T23:38:05.073501 80 / tcp

nginx1.18.0

813958279 | 2024-04-29T03:44:59.363051 443 / tcp

nginx1.18.0

-490128302 | 2024-04-24T16:51:14.451120 5432 / tcp

PostgreSQL12.14 - 12.18

Products

Pricing

Contact Us

1679903157 | 2024-04-16T03:25:09.904487
22 / tcp

589765266 | 2024-04-19T23:38:05.073501
80 / tcp

813958279 | 2024-04-29T03:44:59.363051
443 / tcp

-490128302 | 2024-04-24T16:51:14.451120
5432 / tcp