GeneralInformation

Hostnames	oxom.cc oxom.com test.oxom.com vden.fr
Domains	oxom.cc oxom.com vden.fr
Country	France
City	Paris
Organization	Scaleway Dedibox IPFO
ISP	SCALEWAY S.A.S.
ASN	AS12876

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 631 3306

-416054115 | 2024-04-23T11:05:24.836499

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCoxREyi9giVkw55GI5rTAs1
BLdxlc+9bWMwnHF94XZd2Bw8fElL3IAAhe17U1u726tcP5B787UIXl22RzJa6Q0=
Fingerprint: ea:61:18:c2:47:f3:65:e1:cf:76:27:07:0b:07:11:13

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-2120412095 | 2024-04-25T09:05:29.128953

80 / tcp

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 25 Apr 2024 09:05:16 GMT
Content-Type: text/html
Content-Length: 154
Connection: keep-alive
Location: https://test.oxom.com/

-770651211 | 2024-04-25T09:05:32.049583

443 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 25 Apr 2024 09:05:18 GMT
Content-Type: text/html
Content-Length: 590
Connection: keep-alive
WWW-Authenticate: Basic realm="Restricted Access!"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d9:34:1c:62:9b:62:80:60:48:cc:5f:50:05:3c:12:52:da
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 16 20:32:35 2024 GMT
            Not After : Jun 14 20:32:34 2024 GMT
        Subject: CN=oxom.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cd:62:99:db:ed:79:1e:35:6a:51:d0:7a:58:ce:
                    d6:54:01:16:e5:67:c2:f5:0d:d7:a3:cd:14:4b:84:
                    1e:e2:27:23:c0:85:a0:71:b8:5e:8f:36:a8:6a:94:
                    fa:3c:02:c5:ea:7f:36:88:6a:04:09:80:dc:63:fc:
                    51:14:57:53:38:41:67:9b:57:0d:8a:90:15:06:ee:
                    df:44:70:f7:a9:dc:73:3c:bf:5a:8c:bc:39:54:50:
                    09:97:d6:4c:dc:3b:f1:77:83:5a:05:44:cd:6a:01:
                    db:fb:2b:10:ee:50:5d:b3:3f:78:68:3b:b8:f9:2d:
                    25:e1:f3:4d:e3:53:07:42:0d:83:47:e8:4a:a9:eb:
                    56:81:e9:dd:76:74:95:d9:ca:3e:db:94:a7:f2:ab:
                    1e:99:39:f2:fa:e1:83:ae:96:5a:63:b2:4b:5e:01:
                    d4:15:73:ec:77:cc:a3:81:55:ad:33:09:c5:e1:65:
                    4a:5a:09:95:80:19:c6:ee:3d:44:7c:dd:cb:16:15:
                    a7:7c:60:b2:dc:4b:3b:d5:b2:e1:e4:25:48:75:82:
                    00:0a:48:10:30:ec:72:49:5a:15:38:46:fd:78:51:
                    1c:8b:90:61:80:b5:f4:60:dc:bc:a3:c6:cc:4b:3c:
                    c6:a4:b6:17:31:a8:0e:21:34:b5:bd:ab:e5:b7:1a:
                    d5:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BE:B8:DB:B5:2D:08:89:CF:27:53:73:C7:A3:5C:C8:6A:BF:47:CD:F7
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.oxom.cc, DNS:*.oxom.com, DNS:*.vden.fr, DNS:oxom.cc, DNS:oxom.com, DNS:vden.fr
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 16 21:32:35.427 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:83:F6:D8:44:D9:19:A3:25:CD:42:3D:
                                3D:07:C4:CC:72:43:8A:74:B5:6C:C4:C0:3E:C2:25:F1:
                                0D:0C:C5:D3:9B:02:20:59:A6:5A:CC:8D:FC:FB:A1:2D:
                                01:7C:7F:A7:81:7F:3C:89:A1:84:38:32:8C:9F:3A:92:
                                18:75:7B:6D:7F:7B:B2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 16 21:32:35.447 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EB:6E:37:8F:24:EC:9F:FB:3D:39:5C:
                                EA:7C:B3:40:13:CF:41:5C:28:87:36:41:B4:AD:A2:2A:
                                62:B3:5D:1D:F5:02:21:00:D9:F1:A1:E1:6D:D5:B8:56:
                                EE:30:91:ED:C8:96:6C:56:E9:05:91:B8:77:5D:BF:55:
                                14:76:FC:C6:15:F2:03:46
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a3:87:dc:8e:1c:93:44:a1:72:64:0d:af:53:9a:eb:c3:4b:2b:
        f0:4e:d5:0f:3c:67:18:23:60:7b:7a:4d:62:37:c1:13:a4:3c:
        8d:a3:e9:fd:f7:53:77:93:59:53:93:ad:0b:ac:b4:55:f7:f3:
        f8:69:ef:c2:99:16:98:09:1d:ef:99:b8:9f:bf:bd:73:0a:9a:
        08:74:4f:40:cb:19:42:f6:ae:52:2b:c6:aa:4b:37:25:7c:29:
        5a:c0:98:bf:47:3c:79:c6:53:61:8c:cd:d9:97:18:1c:fd:e9:
        82:52:b6:ab:58:b5:50:95:f0:3d:12:09:f2:12:8f:07:7d:3d:
        92:8f:08:93:61:59:82:9c:82:a4:14:d0:ca:9e:71:7c:c0:6d:
        ea:69:0c:b6:4e:4b:fb:87:a3:98:80:26:91:39:91:81:31:ee:
        91:33:9c:9a:51:7e:30:87:d1:2c:b2:ea:0a:12:d8:72:2b:b2:
        53:ed:3d:c9:97:1a:45:fe:42:eb:3a:98:f6:ff:48:29:07:d8:
        ca:b3:8c:7a:6f:4b:2a:fb:d6:d4:2b:71:e4:f0:7b:a1:66:cd:
        79:66:8f:a4:72:25:79:d5:e3:be:e9:8c:0b:a4:a5:9f:80:f4:
        4e:36:09:f8:f5:0a:05:a8:ae:b0:5f:cb:73:ff:92:df:81:5e:
        ac:56:d6:c5

-1684105774 | 2024-04-25T11:50:22.390480

631 / tcp

HTTP/1.1 403 Forbidden
Connection: close
Content-Language: en
Content-Length: 370
Content-Type: text/html; charset=utf-8
Date: Thu, 25 Apr 2024 11:50:22 GMT
Accept-Encoding: gzip, deflate, identity
Server: CUPS/2.4 IPP/2.1
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none'

225015788 | 2024-04-19T15:36:40.154126

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.36-0ubuntu0.22.04.1
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: caching_sha2_password

212.83.168.160

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-416054115 | 2024-04-23T11:05:24.836499
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-2120412095 | 2024-04-25T09:05:29.128953
80 / tcp

nginx1.18.0

-770651211 | 2024-04-25T09:05:32.049583
443 / tcp

nginx1.18.0

-1684105774 | 2024-04-25T11:50:22.390480
631 / tcp

CUPS (IPP)2.4.7

225015788 | 2024-04-19T15:36:40.154126
3306 / tcp

MySQL8.0.36-0ubuntu0.22.04.1

Products

Pricing

Contact Us

212.83.168.160

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-416054115 | 2024-04-23T11:05:24.836499 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-2120412095 | 2024-04-25T09:05:29.128953 80 / tcp

nginx1.18.0

-770651211 | 2024-04-25T09:05:32.049583 443 / tcp

nginx1.18.0

-1684105774 | 2024-04-25T11:50:22.390480 631 / tcp

CUPS (IPP)2.4.7

225015788 | 2024-04-19T15:36:40.154126 3306 / tcp

MySQL8.0.36-0ubuntu0.22.04.1

Products

Pricing

Contact Us

-416054115 | 2024-04-23T11:05:24.836499
22 / tcp

-2120412095 | 2024-04-25T09:05:29.128953
80 / tcp

-770651211 | 2024-04-25T09:05:32.049583
443 / tcp

-1684105774 | 2024-04-25T11:50:22.390480
631 / tcp

225015788 | 2024-04-19T15:36:40.154126
3306 / tcp