GeneralInformation

Hostnames	www.cdn.enadomain.gr gc.enadomain.gr gcdata.gr origin.gcdata.gr origin.hz.gocar.gr images.gocar.gr origin.images.gocar.gr new.gocar.gr origin.gocar.gr www.cdn.kia.gr www.cdn.mediadirect.gr jira.nemo.gr www.data.nemohq.gr p1.nemohq.gr p2.nemohq.gr srvn1.nemohq.gr ssl2.nemohq.gr www.cdn.radioads.eu www.data.radioads.eu deasy.smart-ads.gr gocar.smart-ads.gr stardome.smart-ads.gr streamvideolabs.com new.streamvideolabs.com www.streamvideolabs.com stats.vidadchain.com vidads.gr adx.vidads.gr core.vidads.gr www.vidads.gr vidata.gr www.cdn.vidata.gr
Domains	enadomain.gr gcdata.gr gocar.gr kia.gr mediadirect.gr nemo.gr nemohq.gr radioads.eu smart-ads.gr streamvideolabs.com vidadchain.com vidads.gr vidata.gr
Country	United States
City	Dallas
Organization	HIVELOCITY, Inc.
ISP	HIVELOCITY, Inc.
ASN	AS29802

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 443 4040 27017

501510358 | 2024-04-26T21:21:58.358959

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Fri, 26 Apr 2024 21:21:58 GMT
Content-Type: text/html
Content-Length: 4833
Last-Modified: Fri, 16 May 2014 15:12:48 GMT
Connection: keep-alive
ETag: "53762af0-12e1"
Accept-Ranges: bytes

-1948676300 | 2024-04-28T06:26:08.655745

443 / tcp

HTTP/1.1 200 OK
Date: Sun, 28 Apr 2024 06:26:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
X-Upstream: 23.92.74.22:80

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:78:89:a8:6a:f2:dc:87:21:90:3e:a0:66:06:f1:f1:81:30
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 13 00:07:38 2024 GMT
            Not After : Jun 11 00:07:37 2024 GMT
        Subject: CN=ssl2.nemohq.gr
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ab:ca:41:1a:b3:83:e1:69:21:c4:96:4b:0c:30:
                    42:2c:9d:05:16:42:63:4d:1b:b2:de:6a:10:d5:9a:
                    d6:f7:2d:0a:8e:10:02:cb:79:47:25:2b:72:f3:16:
                    52:9e:73:2a:ec:82:6d:01:7f:9a:dd:02:dd:47:6b:
                    d9:87:82:31:d0:c6:f4:8a:2b:5f:c9:4a:92:8e:6a:
                    7d:01:98:bd:3b:60:bd:43:80:1b:9f:46:e8:ae:68:
                    01:bf:c1:6a:33:94:3a:6a:9f:29:84:a0:dc:b2:0b:
                    b2:de:af:c4:5f:5b:22:7c:24:81:30:70:da:dc:eb:
                    cf:f3:79:26:3f:36:a2:51:57:d7:f0:ee:a5:09:ac:
                    25:ba:c6:f1:e4:ca:49:3b:0f:ef:2c:f6:4d:92:39:
                    74:43:42:10:b1:0e:74:d5:ef:57:3c:90:84:f2:29:
                    84:09:aa:55:da:16:77:a7:9a:16:b8:17:e9:88:95:
                    0f:0b:b0:94:d2:7d:dc:94:77:a8:87:fc:bf:c1:ac:
                    cb:e7:f4:6d:5e:c7:74:57:74:09:b4:ff:47:a5:d1:
                    81:67:41:73:7d:e9:e8:ac:35:e8:ac:cd:2c:bf:75:
                    7f:73:f4:6c:32:30:a2:a1:1d:69:16:5d:b5:5a:f8:
                    d4:5c:be:a8:c2:cc:d0:de:96:92:2e:19:0b:53:07:
                    48:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                34:EC:FE:E6:66:68:84:8C:3D:09:B9:26:74:E5:E6:46:7C:39:F9:4D
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:adx.vidads.gr, DNS:core.vidads.gr, DNS:deasy.smart-ads.gr, DNS:gc.enadomain.gr, DNS:gcdata.gr, DNS:gocar.smart-ads.gr, DNS:images.gocar.gr, DNS:jira.nemo.gr, DNS:new.gocar.gr, DNS:new.streamvideolabs.com, DNS:origin.gcdata.gr, DNS:origin.gocar.gr, DNS:origin.hz.gocar.gr, DNS:origin.images.gocar.gr, DNS:p1.nemohq.gr, DNS:p2.nemohq.gr, DNS:ssl2.nemohq.gr, DNS:stardome.smart-ads.gr, DNS:stats.vidadchain.com, DNS:streamvideolabs.com, DNS:vidads.gr, DNS:vidata.gr, DNS:www.cdn.enadomain.gr, DNS:www.cdn.kia.gr, DNS:www.cdn.mediadirect.gr, DNS:www.cdn.radioads.eu, DNS:www.cdn.vidata.gr, DNS:www.data.nemohq.gr, DNS:www.data.radioads.eu, DNS:www.streamvideolabs.com, DNS:www.vidads.gr
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 13 01:07:39.216 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:77:86:41:DF:01:C6:4C:BD:8D:39:5F:45:
                                F9:AB:92:F3:04:21:83:2C:DE:93:0B:F8:97:D6:81:8E:
                                97:ED:F3:53:02:21:00:DC:F5:A7:34:D0:24:76:4B:72:
                                39:4B:61:B2:93:62:9E:69:3B:6C:F9:DC:7E:66:A3:37:
                                C0:D6:30:07:C1:07:FA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 13 01:07:39.221 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E9:B7:B6:65:DE:29:42:6F:73:CF:90:
                                27:1D:C4:C2:E1:3F:61:D2:8F:69:39:B1:2F:4D:42:04:
                                75:04:25:9A:07:02:21:00:F7:C4:7B:DA:ED:D9:AE:DF:
                                94:2D:FF:24:D9:0A:94:35:F5:75:A1:8C:F5:73:F7:BF:
                                55:A9:6B:1A:3B:AB:C2:9A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        25:4b:4c:9e:ec:61:ee:29:14:e4:5a:dc:61:00:13:8e:a8:2d:
        fa:c5:04:dd:49:b9:79:0e:06:40:b2:c7:6e:6e:0d:bd:95:27:
        41:84:90:d5:3f:9e:2c:5d:c3:2d:92:0d:eb:e5:0b:01:07:8c:
        b0:49:e5:d3:d9:07:1f:a9:4c:12:55:23:60:01:d0:6b:78:98:
        7e:fa:f4:52:d6:6c:c2:72:ec:94:c4:27:63:fd:1f:f0:aa:66:
        cf:50:c9:90:c8:14:64:f0:36:10:97:88:8b:45:15:10:2c:53:
        19:07:43:45:e7:7b:9c:74:7d:c6:f0:95:46:ab:94:8c:eb:f5:
        b3:ba:af:df:73:06:29:24:24:90:d5:6e:ca:e8:83:52:3b:27:
        47:f1:e2:53:84:e8:14:13:b5:f6:4d:81:78:38:6d:f4:4a:3d:
        65:ef:28:8f:72:43:ac:1b:b2:1c:33:14:89:b9:7f:8f:9e:c5:
        1f:f3:a8:ad:86:27:7c:c5:cd:9b:13:49:70:2e:2b:df:b6:42:
        e2:93:32:87:1a:22:f7:08:48:c7:0d:1b:93:0c:9f:e8:f9:38:
        03:8f:c1:32:f1:3d:30:ce:73:13:5c:c4:dc:39:e6:f8:65:b9:
        fb:ac:18:e6:a5:b2:8b:ca:11:de:39:6f:ab:e9:7e:5c:3c:de:
        c2:fa:84:69

731197476 | 2024-04-27T14:13:20.454866

4040 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Sat, 27 Apr 2024 14:13:20 GMT
Content-Length: 19

744531833 | 2024-04-21T21:28:30.351357

27017 / tcp

MongoDB Server Information
Authentication partially enabled
{
    "storageEngines": [
        "devnull", 
        "ephemeralForTest", 
        "mmapv1", 
        "wiredTiger"
    ], 
    "buildEnvironment": {
        "distarch": "x86_64", 
        "cc": "/opt/mongodbtoolchain/v2/bin/gcc: gcc (GCC) 5.4.0", 
        "cxxflags": "-Woverloaded-virtual -Wno-maybe-uninitialized -std=c++14", 
        "linkflags": "-pthread -Wl,-z,now -rdynamic -Wl,--fatal-warnings -fstack-protector-strong -fuse-ld=gold -Wl,--build-id -Wl,--hash-style=gnu -Wl,-z,noexecstack -Wl,--warn-execstack -Wl,-z,relro", 
        "ccflags": "-fno-omit-frame-pointer -fno-strict-aliasing -ggdb -pthread -Wall -Wsign-compare -Wno-unknown-pragmas -Winvalid-pch -Werror -O2 -Wno-unused-local-typedefs -Wno-unused-function -Wno-deprecated-declarations -Wno-unused-but-set-variable -Wno-missing-braces -fstack-protector-strong -fno-builtin-memcmp", 
        "target_arch": "x86_64", 
        "distmod": "rhel70", 
        "target_os": "linux", 
        "cxx": "/opt/mongodbtoolchain/v2/bin/g++: g++ (GCC) 5.4.0"
    }, 
    "ok": 1.0, 
    "sysInfo": "deprecated", 
    "modules": [], 
    "openssl": {
        "compiled": "OpenSSL 1.0.1e-fips 11 Feb 2013", 
        "running": "OpenSSL 1.0.1e-fips 11 Feb 2013"
    }, 
    "javascriptEngine": "mozjs", 
    "version": "4.0.18", 
    "allocator": "tcmalloc", 
    "versionArray": [
        4, 
        0, 
        18, 
        0
    ], 
    "debug": false, 
    "maxBsonObjectSize": 16777216, 
    "bits": 64, 
    "gitVersion": "6883bdfb8b8cff32176b1fd176df04da9165fd67"
}

23.92.74.18

Last Seen: 2024-04-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

501510358 | 2024-04-26T21:21:58.358959
80 / tcp

nginx1.16.1

-1948676300 | 2024-04-28T06:26:08.655745
443 / tcp

731197476 | 2024-04-27T14:13:20.454866
4040 / tcp

744531833 | 2024-04-21T21:28:30.351357
27017 / tcp

MongoDB4.0.18

Products

Pricing

Contact Us

23.92.74.18

Last Seen: 2024-04-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

501510358 | 2024-04-26T21:21:58.358959 80 / tcp

nginx1.16.1

-1948676300 | 2024-04-28T06:26:08.655745 443 / tcp

731197476 | 2024-04-27T14:13:20.454866 4040 / tcp

744531833 | 2024-04-21T21:28:30.351357 27017 / tcp

MongoDB4.0.18

Products

Pricing

Contact Us

501510358 | 2024-04-26T21:21:58.358959
80 / tcp

-1948676300 | 2024-04-28T06:26:08.655745
443 / tcp

731197476 | 2024-04-27T14:13:20.454866
4040 / tcp

744531833 | 2024-04-21T21:28:30.351357
27017 / tcp