GeneralInformation

Hostnames	ac.ava.rieh.nees.ufal.br to.ava.rieh.nees.ufal.br
Domains	ufal.br
Country	Brazil
City	Maceió
Organization	Rede Nacional de Ensino e Pesquisa
ISP	Rede Nacional de Ensino e Pesquisa
ASN	AS1916
Operating System	Ubuntu

WebTechnologies

CDN

Google Hosted Libraries

jsDelivr

JavaScript frameworks

JavaScript libraries

LMS

Programming languages

PHP

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

677579724 | 2024-05-14T17:28:21.984467

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 14 May 2024 17:28:21 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

361526806 | 2024-05-03T16:51:31.103025

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 03 May 2024 16:51:30 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.27
Set-Cookie: MoodleSession=874371031b439646512955b9fcf929f4; path=/; secure; SameSite=None
Expires: 
Cache-Control: private, pre-check=0, post-check=0, max-age=0, no-transform
Pragma: no-cache
Content-Language: pt-br
Content-Script-Type: text/javascript
Content-Style-Type: text/css
X-UA-Compatible: IE=edge
Accept-Ranges: none
X-Frame-Options: sameorigin
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:41:1e:b3:7f:c5:67:66:ba:8e:7e:60:d3:1a:7f:8a:22:6d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 23 00:38:04 2024 GMT
            Not After : Jul 22 00:38:03 2024 GMT
        Subject: CN=ac.ava.rieh.nees.ufal.br
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:ce:ca:45:f3:80:63:3f:91:2b:c3:59:0d:93:84:
                    ad:48:be:cc:5f:98:1d:d8:02:55:af:b6:92:85:4a:
                    4f:33:0c:b0:1f:f7:c6:c3:47:fa:42:f8:25:58:8c:
                    83:ab:92:8b:c7:94:4a:b8:91:6f:3b:52:cf:3b:9b:
                    e4:6d:26:9a:d7
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                46:9C:9D:8A:88:8C:74:19:07:D6:2D:FF:0C:A5:0C:E1:BB:68:72:83
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ac.ava.rieh.nees.ufal.br, DNS:to.ava.rieh.nees.ufal.br
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 23 01:38:04.425 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:3A:02:E4:DE:7B:4B:3F:04:17:15:4C:5F:
                                BA:68:65:6D:36:5E:6F:5E:B6:88:9D:77:0A:73:6B:FA:
                                F2:B6:38:C5:02:21:00:FC:FB:9F:F7:E4:5B:3E:14:CB:
                                71:D9:9D:19:5B:E7:D8:0D:93:A1:C0:1D:C2:23:A0:4B:
                                FA:B1:00:FA:23:AF:21
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 23 01:38:04.428 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:58:2D:DC:9A:2F:6C:2C:59:B7:5B:ED:49:
                                8B:FA:32:43:98:DC:89:35:22:C8:60:E9:42:E8:CD:7A:
                                13:9D:74:65:02:20:62:29:0E:DD:B2:6A:F2:BA:B9:2E:
                                18:9E:7A:03:32:71:79:CE:2D:6C:01:2D:C0:87:1E:BB:
                                D0:63:69:F5:5F:D3
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a8:28:63:3b:6a:78:af:51:09:dc:b2:ce:63:1d:40:b3:57:e4:
        41:ed:3f:98:19:c6:16:9d:a9:5d:02:e2:73:2b:59:c9:26:97:
        9c:c5:09:80:5f:ea:4f:15:59:03:69:9d:5e:27:ab:a0:34:76:
        c3:7e:fe:f5:15:4e:a7:e9:f6:aa:49:f2:08:8d:59:8e:ce:87:
        ec:c2:39:12:51:c3:a1:f7:5f:50:2c:63:59:cd:45:87:90:3b:
        f2:33:b7:70:5a:e3:0c:4f:db:d7:6b:16:ef:38:69:d6:6e:64:
        8e:77:5d:b9:d4:a8:aa:83:e7:92:d2:d4:de:02:d9:65:56:10:
        45:74:a9:3b:57:1e:6d:e0:6b:62:b7:ba:95:1c:29:ed:46:08:
        2c:e0:e6:a0:b0:a1:26:67:58:ed:f1:8b:3c:54:fa:99:77:78:
        87:8b:4e:e8:8a:32:c4:31:14:c2:7f:49:b8:7a:b5:5f:74:67:
        72:eb:d4:6f:87:bf:ae:e4:18:77:6b:40:1b:17:75:2a:2b:7f:
        e4:e1:6d:6e:db:d5:a0:a7:57:f9:2d:b3:f1:76:a8:f3:e5:6f:
        71:41:4b:a0:05:07:30:32:88:32:c6:de:a0:8f:ed:c5:62:e6:
        5f:d5:c9:a6:9c:a0:20:96:77:df:54:04:3b:33:22:69:35:a6:
        c2:b2:b7:8b

200.17.114.44

Last Seen: 2024-05-14

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

677579724 | 2024-05-14T17:28:21.984467
80 / tcp

nginx1.18.0

361526806 | 2024-05-03T16:51:31.103025
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

200.17.114.44

Last Seen: 2024-05-14

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

677579724 | 2024-05-14T17:28:21.984467 80 / tcp

nginx1.18.0

361526806 | 2024-05-03T16:51:31.103025 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

677579724 | 2024-05-14T17:28:21.984467
80 / tcp

361526806 | 2024-05-03T16:51:31.103025
443 / tcp