GeneralInformation

Hostnames	customer.worldstream.nl
Domains	worldstream.nl
Country	Netherlands
City	Naaldwijk
Organization	WorldStream IPv4.15
ISP	WorldStream B.V.
ASN	AS49981

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-46118	4.9RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API and cause target node to be terminated by an "out-of-memory killer"-like mechanism. This vulnerability has been patched in versions 3.11.24 and 3.12.7.
CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2022-31008	7.5RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker (link) state. The encryption key used to encrypt the URI was seeded with a predictable secret. This means that in case of certain exceptions related to Shovel and Federation plugins, reasonably easily deobfuscatable data could appear in the node log. Patched versions correctly use a cluster-wide secret for that purpose. This issue has been addressed and Patched versions: `3.10.2`, `3.9.18`, `3.8.32` are available. Users unable to upgrade should disable the Shovel and Federation plugins.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-32719	4.8RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI via the `rabbitmq_federation_management` plugin, its consumer tag was rendered without proper <script> tag sanitization. This potentially allows for JavaScript code execution in the context of the page. The user must be signed in and have elevated permissions (manage federation upstreams and policies) for this to occur. The vulnerability is patched in RabbitMQ 3.8.18. As a workaround, disable the `rabbitmq_federation_management` plugin and use [CLI tools](https://www.rabbitmq.com/cli.html) instead.
CVE-2021-32718	5.4RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.17, a new user being added via management UI could lead to the user's bane being rendered in a confirmation message without proper `<script>` tag sanitization, potentially allowing for JavaScript code execution in the context of the page. In order for this to occur, the user must be signed in and have elevated permissions (other user management). The vulnerability is patched in RabbitMQ 3.8.17. As a workaround, disable `rabbitmq_management` plugin and use CLI tools for management operations and Prometheus and Grafana for metrics and monitoring.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2021-22116	7.5RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugin enabled.
CVE-2019-9516	7.5Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.
CVE-2019-9513	7.5Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
CVE-2019-9511	7.5Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
CVE-2019-20372	5.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.
CVE-2016-9877	9.8An issue was discovered in Pivotal RabbitMQ 3.x before 3.5.8 and 3.6.x before 3.6.6 and RabbitMQ for PCF 1.5.x before 1.5.20, 1.6.x before 1.6.12, and 1.7.x before 1.7.7. MQTT (MQ Telemetry Transport) connection authentication with a username/password pair succeeds if an existing username is provided but the password is omitted from the connection request. Connections that use TLS with a client-provided certificate are not affected.
CVE-2014-9650	CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions.
CVE-2014-9649	Cross-site scripting (XSS) vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary web script or HTML via the path info to api/, which is not properly handled in an error message.

OpenPorts

22 80 111 443 500 1701 5060 5672 7443

1348053995 | 2024-04-13T02:38:18.556469

22 / tcp

SSH-2.0-OpenSSH_6.7p1 Debian-5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDCpmRmorrQPEHgjd7uKPiWjGICZn6TXJo3X3wmKS4j71qy
oZHdJ4sS+D3h9qRy7z2nzdeXvrNpAPHGqxXKVcDPxeLKsLp0otTUdeaQCHXUPV/ZL2HAU9M3cjUW
BIY042msT+g683cXygBs2Twd/Yh8p6Rv2uw0kHwrWhLhL2C4VOppZu27zH0+RbtoeF7JcUtxPubK
wEldminYkPw8fhkgktEbB/upCFKtzesFo7THcbmCjb7PeWR4Gcsl4+v/+ljdGzWg9DtUR9r/NO8e
zUMa8oTgHmjTzOJ2tkiXqnXQMAJoMFDbad/zezNXRqmd3zJrKP61tWkD4uYlM7v+ot3V
Fingerprint: eb:82:77:bf:67:65:a6:f5:73:7e:38:10:ac:72:81:eb

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	ssh-dss
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com
	chacha20-poly1305@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

984321257 | 2024-04-13T14:18:11.311828

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.0
Date: Sat, 13 Apr 2024 14:17:07 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://217.23.8.45/

-1732508448 | 2024-03-25T01:12:03.852296

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111
status	1	udp	37668
status	1	tcp	35522

2122831770 | 2024-04-13T14:18:13.674490

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.16.0
Date: Sat, 13 Apr 2024 14:17:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:8a:f9:46:e5:48:66:b3:35:ca:a6:a3:4d:d8:33:b0:07:07
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 25 04:45:21 2024 GMT
            Not After : Jun 23 04:45:20 2024 GMT
        Subject: CN=*.crm.envytools.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bf:ad:9c:90:93:6a:23:a3:b4:a3:cc:d6:12:4c:
                    a0:60:d6:75:57:dc:b0:26:4f:ce:97:f2:0f:75:f0:
                    d0:44:53:4d:c1:89:0c:68:6b:af:7a:d4:8d:e5:37:
                    e1:e6:a2:b9:e3:90:14:64:d3:d7:03:eb:c1:5b:7d:
                    fa:a5:84:90:16:97:e3:ae:c9:21:79:52:a0:8e:a1:
                    8c:8e:83:13:31:99:a8:49:ef:52:a2:38:38:ae:44:
                    78:1d:5c:65:9b:8e:75:e0:3b:a0:c1:4c:94:46:9a:
                    4c:4c:93:69:f3:af:ba:94:c5:ba:83:91:49:2f:3b:
                    32:e7:fb:db:dc:5b:88:e3:6e:7b:79:f5:b0:46:42:
                    4b:fd:b1:a1:eb:c9:dd:a9:ae:0f:31:89:57:d9:80:
                    a1:22:3c:ca:c7:a9:13:fb:13:9f:96:6f:4e:20:72:
                    a0:a1:6a:78:da:d0:04:c1:54:c7:e2:1b:b7:da:4f:
                    e4:e3:6c:2f:39:97:2f:7e:fe:1d:16:b6:45:b4:f0:
                    18:0c:3a:31:23:e2:41:4c:9c:67:16:8f:83:81:a0:
                    85:c5:bb:e2:4e:98:cc:35:6d:b7:55:52:96:70:86:
                    90:98:ae:fe:97:2e:50:7a:5e:1d:82:c8:80:17:f7:
                    52:9e:ef:80:e6:0c:d0:5f:a6:f0:35:de:f1:10:00:
                    86:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                2C:B8:7E:C8:16:4E:21:1B:4B:CA:72:CA:8D:DB:8C:64:FA:9F:58:A3
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.crm.envytools.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 25 05:45:21.681 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AC:89:08:B1:33:44:20:D0:CD:F0:A6:
                                1E:66:2C:B6:7F:C8:CF:82:38:93:C4:06:D8:5F:8E:BD:
                                08:41:FB:A0:E9:02:20:59:1B:A9:AA:69:7E:0C:59:CA:
                                F3:72:BA:9A:62:D4:A5:78:60:08:85:B5:DC:EE:AA:5E:
                                74:D5:ED:69:97:62:CB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 25 05:45:21.699 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:87:13:F1:25:54:4F:91:5E:58:E6:EC:
                                E3:B4:11:A7:E7:6D:A5:46:46:86:55:86:8A:46:A9:C9:
                                26:E1:78:7F:95:02:21:00:8E:2D:71:82:9F:4A:CD:B9:
                                9C:8D:19:BC:B3:92:62:93:A5:83:F5:CB:26:8E:06:44:
                                8C:9D:1E:2F:8F:AA:E6:88
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        47:08:9e:a5:d3:85:ce:e7:ed:28:4a:22:3e:a8:2a:0a:66:1d:
        fb:2f:ba:8c:46:03:ed:b4:4c:90:57:62:7a:10:73:e5:86:74:
        53:d7:09:78:f7:2e:8c:ba:ff:d2:f2:22:54:a5:3c:32:7d:11:
        b8:e6:01:0e:df:9c:d9:be:23:95:b5:bc:99:3e:1c:d2:3c:d2:
        11:a8:82:1d:eb:09:ba:31:82:66:b6:ce:26:3e:1d:98:f1:e9:
        81:5f:63:ce:95:3f:c5:b9:d0:ba:58:9c:51:a4:af:01:fe:c4:
        1b:d7:da:9f:ff:6a:5b:92:0e:99:32:73:a9:b5:9e:f9:65:e4:
        4d:6d:60:23:ef:a5:18:47:35:c1:31:9a:e1:b7:01:ec:a8:26:
        36:3b:6a:cb:60:5e:76:e4:4c:e2:7d:f0:e0:33:cb:9e:16:7a:
        e1:e1:f9:cf:15:21:a7:e9:ef:7e:7e:3c:63:ae:b6:07:15:f0:
        e7:38:72:0d:64:ec:fb:b2:dd:93:6c:1e:d8:88:33:75:2a:4d:
        26:4a:15:47:85:72:49:b2:87:f2:e7:ad:f3:d1:2a:b1:53:60:
        34:ee:41:43:04:75:25:4e:19:a0:e2:52:1c:4e:ae:e5:cf:6b:
        fc:d3:eb:a0:86:2f:c2:00:49:94:8f:d6:06:44:a0:50:30:24:
        cc:c7:42:b1

-608778914 | 2024-04-17T08:18:37.608880

500 / udp

VPN (IKE)

Initiator SPI: 6b626d616a766e72
Responder SPI: 7575697678647476
Next Payload: RESERVED
Version: 2.0
Exchange Type: DOI Specific Use
Flags:
    Encryption:     False
    Commit:         False
    Authentication: False
Message ID: 00000000
Length: 36

1351506306 | 2024-04-14T23:48:21.789213

1701 / udp

\xc8\x02\x00E\x00\x00\x00\x00\x00\x00\x00\x01\x80\x08\x00\x00\x00\x00\x00\x04\x80\x08\x00\x00\x00\t\xc5\xe4\x80)\x00\x00\x00\x01\x00\x02\x00\x06Specify your assigned tunnel ID

-1168737991 | 2024-04-17T15:12:06.998575

5060 / udp

SIP/2.0 200 OK
Via: SIP/2.0/UDP nm;branch=foo;rport=26810;received=224.192.197.171
From: <sip:nm@nm>;tag=root
To: <sip:nm2@nm2>;tag=vgQ4t4BXZS8jp
Call-ID: 50000
CSeq: 42 OPTIONS
Contact: <sip:217.23.8.45>
User-Agent: FreeSWITCH-mod_sofia/1.7.0~64bit
Accept: application/sdp
Allow: INVITE, ACK, BYE, CANCEL, OPTIONS, MESSAGE, INFO, UPDATE, REGISTER, REFER, NOTIFY, PUBLISH, SUBSCRIBE
Supported: timer, path, replaces
Allow-Events: talk, hold, conference, presence, as-feature-event, dialog, line-seize, call-info, sla, include-session-description, presence.winfo, message-summary, refer
Content-Length: 0

-1753778400 | 2024-04-11T13:08:50.566008

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.3.5
  Platform: Erlang/OTP
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

-709757703 | 2024-04-12T18:38:25.297922

7443 / tcp

HTTP/1.1 400 Bad Request
Sec-WebSocket-Version: 13

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, CN=FreeSWITCH
        Validity
            Not Before: May  1 12:23:03 2016 GMT
            Not After : Apr 14 12:23:03 2116 GMT
        Subject: C=US, CN=FreeSWITCH
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c4:01:15:35:48:8f:ff:a5:92:37:06:06:eb:66:
                    4d:58:92:e0:59:17:b6:ee:98:56:a3:ab:c3:29:9f:
                    0d:df:26:07:a5:90:04:f6:42:c0:36:1d:b3:b9:63:
                    08:bb:91:49:8f:bc:8d:63:41:b0:be:e7:b5:70:e1:
                    b0:f1:23:33:3b:4c:ba:a7:b2:61:31:0d:29:e7:53:
                    5b:82:3b:59:ff:3e:6e:f9:20:91:3f:b0:4b:ed:ee:
                    37:36:5f:87:4e:1b:71:3a:fb:26:81:d4:30:e7:d7:
                    0e:85:0f:9b:27:8f:24:b6:35:4f:13:d6:7e:42:28:
                    f4:08:0d:71:6d:bf:97:34:75
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        02:c6:65:11:02:f9:6a:5c:09:42:27:65:eb:18:da:46:10:ff:
        00:c8:b4:eb:0a:8b:ef:8d:a4:19:51:26:f4:4f:f8:d7:a0:c5:
        b3:38:c4:9c:9d:b4:cb:89:0f:e8:88:27:95:18:36:6f:21:95:
        51:6b:a7:d9:a4:3e:ab:80:10:41:55:32:9b:5e:11:be:e5:be:
        d5:4a:76:47:0d:ff:02:f9:c8:6e:14:c4:2d:b0:bd:67:03:74:
        39:01:f9:7d:67:a0:1b:e1:c3:bc:8c:b6:fa:9c:ff:63:65:e0:
        7e:d4:0c:fd:ef:6b:65:46:c0:23:26:3c:fe:e9:6a:4f:65:83:
        eb:2d

217.23.8.45

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1348053995 | 2024-04-13T02:38:18.556469
22 / tcp

OpenSSH6.7p1 Debian 5

984321257 | 2024-04-13T14:18:11.311828
80 / tcp

nginx1.16.0

-1732508448 | 2024-03-25T01:12:03.852296
111 / tcp

2122831770 | 2024-04-13T14:18:13.674490
443 / tcp

nginx1.16.0

-608778914 | 2024-04-17T08:18:37.608880
500 / udp

1351506306 | 2024-04-14T23:48:21.789213
1701 / udp

-1168737991 | 2024-04-17T15:12:06.998575
5060 / udp

-1753778400 | 2024-04-11T13:08:50.566008
5672 / tcp

RabbitMQ3.3.5

-709757703 | 2024-04-12T18:38:25.297922
7443 / tcp

Products

Pricing

Contact Us

217.23.8.45

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1348053995 | 2024-04-13T02:38:18.556469 22 / tcp

OpenSSH6.7p1 Debian 5

984321257 | 2024-04-13T14:18:11.311828 80 / tcp

nginx1.16.0

-1732508448 | 2024-03-25T01:12:03.852296 111 / tcp

2122831770 | 2024-04-13T14:18:13.674490 443 / tcp

nginx1.16.0

-608778914 | 2024-04-17T08:18:37.608880 500 / udp

1351506306 | 2024-04-14T23:48:21.789213 1701 / udp

-1168737991 | 2024-04-17T15:12:06.998575 5060 / udp

-1753778400 | 2024-04-11T13:08:50.566008 5672 / tcp

RabbitMQ3.3.5

-709757703 | 2024-04-12T18:38:25.297922 7443 / tcp

Products

Pricing

Contact Us

1348053995 | 2024-04-13T02:38:18.556469
22 / tcp

984321257 | 2024-04-13T14:18:11.311828
80 / tcp

-1732508448 | 2024-03-25T01:12:03.852296
111 / tcp

2122831770 | 2024-04-13T14:18:13.674490
443 / tcp

-608778914 | 2024-04-17T08:18:37.608880
500 / udp

1351506306 | 2024-04-14T23:48:21.789213
1701 / udp

-1168737991 | 2024-04-17T15:12:06.998575
5060 / udp

-1753778400 | 2024-04-11T13:08:50.566008
5672 / tcp

-709757703 | 2024-04-12T18:38:25.297922
7443 / tcp