GeneralInformation

Hostnames	fleetdm.epikapps.cloud
Domains	epikapps.cloud
Country	Netherlands
City	Amsterdam
Organization	TerraHost AS
ISP	TerraHost AS
ASN	AS56655

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 111 443 3306

-1343848811 | 2024-06-14T00:33:44.722856

22 / tcp

SSH-2.0-OpenSSH_7.4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDd6r+0jb9WVEu9TBlRApaHGdmGM4PWT2IgvtNgZulSDvJL
Q7cuKvlPQy6tAH1TOLYpFANMqo0uFq6/IxQf5Xk356rtmXRt1/jQc/p6UtcZXJtHwrshlYmYuelZ
QwuqXXz9hIuWGiJFSc5mFg3YMhQ5pH3XNqHmQBoaXqWHrRyfOb5kvCGRPsjqUqKXmFybM8r9ZMCe
KP5gbj2v0WZywL6Z+XQoYXRBOVhIMn2xbnTk9BXrgdQou+F6MaIFykibxQGTc7XEbqv0brDONcoP
u7JYW8DAjeLIokSN9TnJL8aw1TFXlxkMTo4YOVi+0BcPgQCH/7Tq1aEKfTT3pZ3jC49b
Fingerprint: 82:6b:11:ca:58:50:18:06:d5:2f:5c:53:47:26:18:e8

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group-exchange-sha1
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com
	aes128-cbc
	aes192-cbc
	aes256-cbc
	blowfish-cbc
	cast128-cbc
	3des-cbc

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

CVE-2008-3844 CVE-2021-41617 CVE-2020-15778 CVE-2020-14145 CVE-2019-6111 13 moreCVE-2019-6110 CVE-2019-6109 CVE-2018-15919 CVE-2018-15473 CVE-2017-15906 CVE-2016-20012 CVE-2007-2768 CVE-2023-51767 CVE-2023-51385 CVE-2023-48795 CVE-2023-38408 CVE-2021-36368 CVE-2018-20685

-1836475360 | 2024-06-12T15:30:53.615458

80 / tcp

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Wed, 12 Jun 2024 15:30:14 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

CVE-2021-3618 CVE-2023-44487

-1345205424 | 2024-06-13T10:01:32.046545

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-06-15T14:08:22.253982

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

1221932855 | 2024-06-11T16:05:24.656420

443 / tcp

Fleet

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 11 Jun 2024 16:05:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 593
Connection: keep-alive
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains;
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:2e:dd:df:4d:d2:90:9b:40:f9:50:77:35:97:bf:55:1d:06
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 15 15:26:16 2024 GMT
            Not After : Jun 13 15:26:15 2024 GMT
        Subject: CN=fleetdm.epikapps.cloud
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a2:f4:91:95:83:22:73:ad:93:c0:7e:44:a5:c9:
                    a8:c2:c0:0b:24:a3:db:36:db:eb:20:63:ec:02:1d:
                    a8:c0:6c:f5:ff:71:f7:d6:9f:a6:58:60:81:0f:c4:
                    d9:7a:37:a1:cd:b2:70:71:87:72:f8:b7:14:93:3c:
                    4a:5a:d0:5d:a6:20:81:64:89:2a:b0:7f:ad:e0:0c:
                    7d:b2:18:0f:d9:f6:9e:64:50:f0:7b:6c:51:ef:85:
                    cc:f1:f4:e7:0b:95:11:7d:2e:09:20:33:46:48:04:
                    e5:ff:1d:05:6c:e4:95:45:ef:e8:04:f6:9a:fd:02:
                    4f:44:52:f4:f7:03:c5:1a:d0:95:e9:b1:33:69:55:
                    64:32:9d:8e:0d:f4:bc:a8:ce:fd:26:c4:a7:43:30:
                    cc:8b:6e:ff:17:40:c2:8f:42:bb:3e:b6:d5:9c:94:
                    40:72:c0:86:74:75:2c:07:ac:21:52:63:43:5b:4e:
                    03:f0:4b:e2:28:3a:4b:25:94:d5:31:fa:be:60:4e:
                    ef:ed:29:87:42:63:e8:e2:55:b6:01:fc:7d:04:ae:
                    e3:d1:61:34:84:38:71:1d:30:38:f7:13:d0:04:84:
                    3a:f8:a4:c8:4b:2b:f8:36:58:68:13:02:a2:69:0c:
                    74:61:6a:52:61:60:7b:09:a3:31:65:00:65:88:c9:
                    b7:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                9C:A4:BC:CD:07:1C:6D:12:54:78:96:B2:C2:65:4C:D4:65:26:0B:8C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:fleetdm.epikapps.cloud
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 15 16:26:16.882 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E1:27:0E:AC:38:0B:C2:81:18:34:13:
                                FB:4E:E3:13:F8:ED:43:32:AE:89:BB:9C:E5:CD:80:25:
                                5C:E1:FE:42:A6:02:21:00:F7:29:A2:14:EF:A3:E6:88:
                                AE:8A:8C:CC:63:95:64:C7:C8:72:0C:7A:5A:3F:6F:9E:
                                1C:E5:4D:3B:E1:45:7C:56
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 15 16:26:16.900 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:0F:BC:20:3A:96:06:42:E4:D6:77:BA:95:
                                F1:E8:2A:5A:63:B3:B5:7A:F9:1A:CF:D2:78:85:F2:C9:
                                31:23:A2:27:02:20:0A:E5:EE:74:03:72:6C:83:54:87:
                                13:4A:0C:DA:43:43:A0:F5:D0:AE:67:21:A6:52:85:2C:
                                70:58:31:30:44:7C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        73:78:df:be:73:98:ba:fe:6a:5b:ce:01:a6:31:63:e8:1c:55:
        7d:ba:a6:53:9a:5b:e7:6f:cb:46:1b:df:2a:81:c9:c5:e2:42:
        32:c0:7c:6a:ec:f5:88:d6:94:1e:98:3a:af:8f:b7:9d:a5:81:
        6d:74:c1:44:48:59:0b:b1:39:4e:c3:68:70:ae:cf:4c:5b:25:
        14:48:c9:30:de:b2:2a:d5:b8:78:a2:b3:f2:db:c8:c8:8c:91:
        20:1c:6c:18:16:2d:d0:fd:e0:de:f1:c1:38:0e:d4:36:5e:9a:
        39:1b:52:7e:c8:4f:15:0d:d0:c7:a5:74:2b:ec:aa:52:59:69:
        31:bd:b6:f4:05:ed:8d:76:05:0f:87:b2:e3:57:8e:3b:02:64:
        94:fd:04:61:7a:ef:dc:3e:3d:bf:5d:5b:a2:6c:bf:72:3c:08:
        4a:26:2d:8a:a1:e3:cc:81:e1:e9:02:dd:2b:07:75:90:16:39:
        15:88:23:cb:da:60:7c:09:06:9f:f5:da:7e:bf:2b:03:02:da:
        27:40:8b:08:2b:89:84:3c:74:d8:00:35:55:53:7f:ad:0e:e8:
        b4:f2:2c:e0:95:c2:a7:01:da:af:c9:fe:e1:4c:87:12:d1:65:
        71:78:a5:a7:bb:af:95:67:a8:54:c0:86:40:11:ea:14:a4:29:
        42:b8:28:ff

CVE-2021-3618 CVE-2023-44487

815199224 | 2024-06-15T22:35:20.184137

3306 / tcp

MySQL:
  Error Message: Host '224.220.63.113' is not allowed to connect to this MySQL server
  Error Code: 1130

198.140.141.53

Last Seen: 2024-06-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1343848811 | 2024-06-14T00:33:44.722856
22 / tcp

OpenSSH7.4

-1836475360 | 2024-06-12T15:30:53.615458
80 / tcp

nginx1.20.1

-1345205424 | 2024-06-13T10:01:32.046545
111 / tcp

-1345205424 | 2024-06-15T14:08:22.253982
111 / udp

1221932855 | 2024-06-11T16:05:24.656420
443 / tcp

nginx1.20.1

815199224 | 2024-06-15T22:35:20.184137
3306 / tcp

MySQL

Products

Pricing

Contact Us

198.140.141.53

Last Seen: 2024-06-15

Tags:

GeneralInformation

Vulnerabilities All ports Port 22 Port 80 Port 443 Latest CVSS

OpenPorts

-1343848811 | 2024-06-14T00:33:44.722856 22 / tcp

OpenSSH7.4

-1836475360 | 2024-06-12T15:30:53.615458 80 / tcp

nginx1.20.1

-1345205424 | 2024-06-13T10:01:32.046545 111 / tcp

-1345205424 | 2024-06-15T14:08:22.253982 111 / udp

1221932855 | 2024-06-11T16:05:24.656420 443 / tcp

nginx1.20.1

815199224 | 2024-06-15T22:35:20.184137 3306 / tcp

MySQL

Products

Pricing

Contact Us

Vulnerabilities

-1343848811 | 2024-06-14T00:33:44.722856
22 / tcp

-1836475360 | 2024-06-12T15:30:53.615458
80 / tcp

-1345205424 | 2024-06-13T10:01:32.046545
111 / tcp

-1345205424 | 2024-06-15T14:08:22.253982
111 / udp

1221932855 | 2024-06-11T16:05:24.656420
443 / tcp

815199224 | 2024-06-15T22:35:20.184137
3306 / tcp