GeneralInformation

Hostnames	s11.otus.biz
Domains	otus.biz
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	North Bergen
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-9516	7.5Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.
CVE-2019-9513	7.5Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
CVE-2019-9511	7.5Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
CVE-2019-20372	5.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

22 80 111 443

-871561292 | 2024-04-14T16:02:44.419051

22 / tcp

SSH-2.0-OpenSSH_7.9p1 Ubuntu-10
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDBLgT6Org/itIdc6kSvrYLGDlxeLwa8A1VwyC81oOclyDw
oAoyYeAhnM/fRlngCIvtFu4TGngWZrQOZsqQeYzGocsIc+YMvfQupSkd2RJO9/V1PrW00F5u2AEG
iVxYbVBeLtVhiYlAPl87ShTfqp9E8a7jWoctxJBT7kGbZ85XUB3M5BSsqHsOBZtysfHBLxY+O362
RXRfviLB0GDFFgGPv/glfFP2QDoDHCZhEtt68rrq0tvwycWysE+4/+ZXSwJTaUlAEqQs6+nSIyo2
+Bd1RMFgG/jF42Tgp3wSRWhOYgcy2KnRn9q91Rj2uA/scbldXTSSDdM47qvv3NTiI4Xz
Fingerprint: 8f:4a:e7:92:09:2d:67:00:5d:5d:ef:73:fd:31:51:ec

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1232306054 | 2024-04-16T04:49:40.966310

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.15.9 (Ubuntu)
Date: Tue, 16 Apr 2024 04:49:40 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-1345205424 | 2024-04-10T19:30:29.050167

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-04-17T10:46:52.130656

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

812995292 | 2024-04-13T16:29:03.703321

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.15.9 (Ubuntu)
Date: Sat, 13 Apr 2024 16:29:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1244
Connection: keep-alive
X-DNS-Prefetch-Control: off
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
ETag: W/"4dc-c+fpshmkOWA5dKCHYjmI9aunqx8"
Set-Cookie: connect.sid=s%3AuQMhuY5i6_XppJa51IymFt3uYm_JmPib.lV0w0XcNXacTn6har1DdBcCqLIZ8qYwRhd4RrtMOwTU; Path=/; HttpOnly
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:b3:93:1b:3f:0a:a6:cc:de:d9:9f:e5:a1:d4:fe:b2:84:d6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
        Validity
            Not Before: May 29 19:48:14 2019 GMT
            Not After : Aug 27 19:48:14 2019 GMT
        Subject: CN=s11.otus.biz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b2:67:9f:a4:3f:b9:2e:e6:42:4a:d0:b2:f0:3f:
                    fc:0e:cb:98:c1:33:6c:7a:97:dc:e0:5e:b6:6b:80:
                    8e:0b:25:bc:47:e8:26:0d:f7:68:e6:66:80:c7:5c:
                    a0:3a:73:51:a9:47:7a:23:c7:30:7e:29:a2:43:28:
                    bc:d6:63:8d:88:a5:fb:c7:ce:1e:53:66:51:ef:d9:
                    0d:63:23:18:cb:a7:6b:40:73:3f:05:f5:d9:ce:a2:
                    da:e1:ea:23:17:6a:c0:5a:ed:ac:67:05:38:97:55:
                    81:ea:92:95:c2:b6:70:6e:34:cb:45:7c:68:cd:a9:
                    ef:99:b9:ed:64:61:85:2b:b0:d7:a6:ba:a3:64:1e:
                    94:86:f5:80:4b:bb:31:24:2b:af:f9:e1:fb:d1:68:
                    03:1c:34:27:80:8f:f2:e4:3a:b7:49:03:25:dc:a4:
                    76:18:97:f5:62:ed:8c:78:84:1c:4f:c4:25:36:04:
                    82:14:f9:03:6e:d8:f4:67:29:ed:74:73:50:dd:d9:
                    cb:30:4d:dc:f6:c2:bf:4a:a2:1b:83:8a:a4:dd:8c:
                    cc:7c:69:e8:5b:cf:33:9a:b7:b8:af:4b:3a:5b:3f:
                    42:5a:06:19:4e:e3:fd:7c:7a:bc:59:27:92:57:5a:
                    97:9b:a6:9f:c9:a3:25:45:13:e1:8f:ef:f6:83:34:
                    ff:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                0F:72:5B:FD:E6:97:1E:5C:F4:76:79:E4:65:D7:AB:4F:35:76:0D:64
            X509v3 Authority Key Identifier: 
                A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
            Authority Information Access: 
                OCSP - URI:http://ocsp.int-x3.letsencrypt.org
                CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
            X509v3 Subject Alternative Name: 
                DNS:s11.otus.biz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 74:7E:DA:83:31:AD:33:10:91:21:9C:CE:25:4F:42:70:
                                C2:BF:FD:5E:42:20:08:C6:37:35:79:E6:10:7B:CC:56
                    Timestamp : May 29 20:48:15.381 2019 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:43:6A:7C:4E:FA:4A:AF:26:81:2E:14:2F:
                                BA:4D:05:23:69:3F:77:FB:50:57:FC:BE:56:3A:A8:D9:
                                85:54:D9:4C:02:21:00:98:E7:D6:27:47:9A:53:D0:1C:
                                EF:80:B4:26:09:40:68:55:E2:70:CC:EA:48:09:45:9D:
                                78:99:47:11:40:7E:F3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 63:F2:DB:CD:E8:3B:CC:2C:CF:0B:72:84:27:57:6B:33:
                                A4:8D:61:77:8F:BD:75:A6:38:B1:C7:68:54:4B:D8:8D
                    Timestamp : May 29 20:48:15.410 2019 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:43:02:20:30:80:42:56:43:13:9B:E7:A5:79:6A:91:
                                B6:C2:9B:60:C8:07:2C:6F:B9:DD:E3:42:1E:30:F1:87:
                                E8:9D:E5:78:02:1F:3F:2D:BA:8C:57:47:F6:07:D5:38:
                                B2:77:8D:99:E6:D1:4A:3B:95:3D:E2:5B:C1:E1:28:95:
                                31:E1:A5:3F:1C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        98:e8:85:63:a9:83:8d:cc:cb:54:f4:1b:be:e8:4b:7a:2c:5a:
        b6:c7:34:18:27:8f:93:3b:96:f7:7c:89:a2:d4:81:c2:23:7b:
        aa:e8:cd:cc:68:dc:a8:b8:91:27:6e:18:19:b4:57:8c:c5:34:
        35:e3:d9:2d:27:cf:2d:05:99:c0:5c:f3:b9:d6:34:6f:b0:3c:
        53:cf:24:ad:8a:3c:dd:d2:28:94:d0:71:0d:37:ad:d8:64:1d:
        57:f1:6d:8f:30:72:68:86:97:89:57:da:4d:c1:40:2f:f4:af:
        e0:83:6c:ea:96:5d:ff:ec:e9:1e:75:d8:77:4f:f3:af:a7:24:
        18:ff:c0:e0:66:2d:29:50:31:57:82:2e:89:9e:a8:25:de:6a:
        19:d2:9a:c8:fd:f9:f6:3a:f7:bd:1a:12:fc:13:bf:61:72:d9:
        30:98:fa:6f:87:54:f3:fb:e4:45:7c:59:ad:a2:69:f8:e1:af:
        81:db:d7:51:64:b9:ec:d6:37:6f:6e:c3:07:fc:e5:77:5e:8d:
        a2:a1:e8:2d:39:fb:27:2b:0d:d4:59:21:2a:7c:a6:38:21:46:
        20:87:f2:b7:6a:60:03:d5:da:80:9e:40:32:54:62:f0:9c:6f:
        f4:b1:69:35:38:10:2f:ea:34:2c:d6:04:58:7f:4d:5f:c2:a3:
        34:06:b2:a4

206.81.12.98

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-871561292 | 2024-04-14T16:02:44.419051
22 / tcp

OpenSSH7.9p1 Ubuntu-10

-1232306054 | 2024-04-16T04:49:40.966310
80 / tcp

nginx1.15.9

-1345205424 | 2024-04-10T19:30:29.050167
111 / tcp

-1345205424 | 2024-04-17T10:46:52.130656
111 / udp

812995292 | 2024-04-13T16:29:03.703321
443 / tcp

nginx1.15.9

Products

Pricing

Contact Us

206.81.12.98

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-871561292 | 2024-04-14T16:02:44.419051 22 / tcp

OpenSSH7.9p1 Ubuntu-10

-1232306054 | 2024-04-16T04:49:40.966310 80 / tcp

nginx1.15.9

-1345205424 | 2024-04-10T19:30:29.050167 111 / tcp

-1345205424 | 2024-04-17T10:46:52.130656 111 / udp

812995292 | 2024-04-13T16:29:03.703321 443 / tcp

nginx1.15.9

Products

Pricing

Contact Us

-871561292 | 2024-04-14T16:02:44.419051
22 / tcp

-1232306054 | 2024-04-16T04:49:40.966310
80 / tcp

-1345205424 | 2024-04-10T19:30:29.050167
111 / tcp

-1345205424 | 2024-04-17T10:46:52.130656
111 / udp

812995292 | 2024-04-13T16:29:03.703321
443 / tcp