GeneralInformation

Hostnames	cheers-info.com www.cheers-info.com
Domains	cheers-info.com
Country	India
City	Artist Village
Organization	Pioneer Elabs Ltd.
ISP	Cogent Communications
ASN	AS174
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 8008

1651973090 | 2024-04-17T01:35:35.687014

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 17 Apr 2024 01:35:35 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 14 Dec 2020 04:12:07 GMT
Connection: keep-alive
ETag: "5fd6e617-264"
Accept-Ranges: bytes

-2100514759 | 2024-04-12T11:58:05.877260

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 12 Apr 2024 11:58:05 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://cognition-solutions.com/
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            d8:41:47:77:e6:1b:ae:7c:07:8a:ad:fb:27:d9:a7:a3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Jan  7 00:00:00 2022 GMT
            Not After : Feb  6 23:59:59 2023 GMT
        Subject: CN=cheers-info.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ad:f6:a3:69:bc:aa:ce:4e:a5:e7:82:06:43:82:
                    53:15:e5:92:10:0a:0d:52:81:4f:16:eb:a0:d5:b8:
                    2e:7e:18:a7:32:19:cb:c0:d2:74:d4:1d:1c:93:c6:
                    49:87:59:b5:39:b9:b1:dd:e0:2b:83:39:90:a5:1b:
                    8b:c2:2e:5e:ba:41:11:9c:3a:20:0f:8d:3b:ec:77:
                    94:28:46:23:d4:35:64:ae:62:64:01:ce:bd:8a:36:
                    64:06:22:4e:e6:49:3e:0a:fd:a6:34:95:1a:74:da:
                    0f:f1:ce:94:bc:29:0a:99:b7:71:5c:bb:45:b8:82:
                    f9:fa:fe:10:c9:68:d8:35:fe:01:0d:b7:33:d7:7b:
                    5f:4a:99:56:c3:66:a1:ee:05:77:3c:c9:7d:24:e0:
                    da:ed:36:d5:33:31:67:98:3c:51:74:64:9f:4f:00:
                    1c:ee:10:53:80:a1:41:7c:e7:f6:71:b4:46:86:a9:
                    37:17:04:b3:00:ea:a7:6f:24:0e:c9:c0:1e:94:c4:
                    8b:33:87:c9:54:d1:f2:2c:49:34:9b:b3:7a:72:a2:
                    10:a8:db:69:bc:ab:f2:dc:7f:60:fc:ce:13:91:78:
                    2b:38:6c:d6:b4:d3:e7:3c:7c:bc:7c:9b:23:2a:c9:
                    5f:0f:9c:3c:93:8d:fb:b2:83:cf:31:24:a1:d6:a0:
                    40:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                A1:FF:DB:06:12:76:1F:09:7B:C0:BD:FC:9F:C4:6D:06:A1:59:13:F4
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:cheers-info.com, DNS:www.cheers-info.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
                                B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
                    Timestamp : Jan  7 10:09:22.176 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7F:1E:3D:D2:7B:35:56:25:9B:1E:6A:E2:
                                2F:E3:4C:E4:AE:C2:B9:18:72:16:DE:0C:D1:1E:56:2C:
                                48:10:B9:A8:02:21:00:98:E3:D2:38:60:DB:D5:1B:3A:
                                E8:41:20:51:26:25:FF:B9:55:17:61:BE:B9:05:83:F5:
                                03:89:8C:17:F7:79:90
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
                                16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
                    Timestamp : Jan  7 10:09:22.108 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EA:64:C7:C9:6A:56:23:B8:F8:E7:83:
                                85:20:6E:A7:27:D0:15:7D:3F:0C:D8:B8:02:3B:B9:CC:
                                2F:38:6E:91:3D:02:21:00:E0:80:21:5F:25:C8:64:F0:
                                64:A8:66:3E:CC:1A:6D:D6:4C:0E:27:E1:F6:7E:50:9A:
                                E6:E7:86:77:83:BE:CF:01
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
                                03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
                    Timestamp : Jan  7 10:09:22.073 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BF:C0:7A:53:EE:0D:C4:F1:FF:CD:D9:
                                02:3C:17:E2:28:33:35:82:60:12:72:4E:27:13:78:DE:
                                16:CF:C1:B8:2E:02:21:00:D8:2E:E1:36:63:F2:BF:69:
                                C4:E6:E4:01:FE:25:B2:CE:0B:27:9F:BF:F9:5A:E8:B1:
                                D6:A7:43:63:77:73:8C:E4
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        47:6f:aa:64:08:cf:1f:1f:2b:b0:31:24:21:0f:e3:4e:9b:e2:
        ec:80:48:6a:05:df:ce:c1:2f:c4:23:44:57:e8:ab:f8:34:19:
        20:68:44:4d:e6:69:3c:ec:df:72:5b:45:d8:2d:93:f9:29:49:
        4c:82:72:24:48:52:a0:c2:7b:f0:3f:00:69:72:5c:07:4b:c8:
        da:51:2d:5c:e7:7d:d1:0b:d2:f7:0f:f6:7d:0c:6d:37:d9:e2:
        21:f7:96:7c:18:13:0c:9b:ca:80:74:77:0a:77:c8:98:6c:22:
        b7:de:c0:24:8e:79:c8:ab:70:52:22:4f:5a:e1:63:0c:6c:39:
        be:bd:b3:83:c8:90:20:2b:61:b2:c5:69:82:c0:61:b2:59:6a:
        2d:2d:ee:92:88:29:11:cd:d7:02:38:a5:b2:54:04:14:c9:24:
        3c:2d:fe:c0:21:ba:3d:14:70:a5:0d:23:2d:ae:14:47:32:91:
        7b:84:5f:76:7d:9f:b0:b7:d1:39:cb:a0:21:69:41:eb:87:ed:
        78:d7:77:8a:4d:a6:0b:56:5c:21:35:88:80:42:53:51:3f:6b:
        f2:89:9b:20:22:a5:fa:76:aa:6e:90:46:17:91:ce:9e:b1:5f:
        5c:cf:3a:e0:2b:b8:1d:0f:91:90:8a:ea:83:d2:ee:80:3f:7c:
        2f:f3:a4:06

802434339 | 2024-03-23T18:13:04.734823

8008 / tcp

HTTP/1.1 302 Found
Location: https://206.1.12.49:8015/
Connection: close
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self'

206.1.12.49

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2024-04-17T01:35:35.687014
80 / tcp

nginx1.18.0

-2100514759 | 2024-04-12T11:58:05.877260
443 / tcp

nginx

802434339 | 2024-03-23T18:13:04.734823
8008 / tcp

Products

Pricing

Contact Us

206.1.12.49

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2024-04-17T01:35:35.687014 80 / tcp

nginx1.18.0

-2100514759 | 2024-04-12T11:58:05.877260 443 / tcp

nginx

802434339 | 2024-03-23T18:13:04.734823 8008 / tcp

Products

Pricing

Contact Us

1651973090 | 2024-04-17T01:35:35.687014
80 / tcp

-2100514759 | 2024-04-12T11:58:05.877260
443 / tcp

802434339 | 2024-03-23T18:13:04.734823
8008 / tcp