GeneralInformation

Hostnames	kivitu.com admin.kivitu.com form.kivitu.com svc.kivitu.com videos.kivitu.com www.kivitu.com
Domains	kivitu.com
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 123 443 4949

-8559307 | 2024-04-26T21:31:39.376007

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC8igNU5WJQsBtrMZy4zZzhvyJveeWsfY6zo0rbNSavCOm7
PPgYQT3Q4gUSk8DgGSx7Rk2GmXOUwXv3MxZRt7QPZPsP2XaSZIwoRK2xBITjI5novutBGZdzM0hC
27nDiwhZgXW362xF5qc74Vc2763LkM8tC0VuUKMvfIrimU/IWo5TKRSU9/23zk+hs9B8t6aeRGlA
ek73XAFBqwXeLQmOssSUzEtjMk4fjTAkNB/UUWEHjKyYDZZD+22tHLabeH/Mg1hDw+kpFAoZFZHZ
MUr+nsw5a/MzPIZs8ByPeQZvVMN9DfjhR4J/JLFvjBbbMBZo/CLGJ2TzPjgJur5xHt7H
Fingerprint: a9:3c:92:8e:df:c6:aa:95:bb:03:5e:2d:9c:e9:8c:13

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-26T23:40:27.838752

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 26 Apr 2024 23:40:27 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

1255269962 | 2024-04-26T21:20:28.650865

123 / udp

NTP
protocolversion: 3
stratum: 2
leap: 0
precision: -22
rootdelay: 0.00840759277344
rootdisp: 0.0359649658203
refid: 2210137054
reftime: 3923153836.25
poll: 3

780672404 | 2024-04-26T22:06:26.041598

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 26 Apr 2024 22:06:25 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:9b:e2:a8:bb:b7:09:99:82:57:30:d5:63:8e:19:f0:9b:0e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  9 13:35:13 2024 GMT
            Not After : Jun  7 13:35:12 2024 GMT
        Subject: CN=kivitu.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:fa:8c:0f:ee:c2:16:2d:d5:6f:64:91:7d:c1:
                    84:db:b9:7d:1e:d4:56:d9:d1:23:f5:56:ab:51:cf:
                    74:b9:20:a4:e5:eb:04:88:d2:c4:09:a8:0f:13:20:
                    3f:e9:54:48:98:db:6a:93:1d:bc:74:9e:25:02:d7:
                    69:2b:77:77:60:5c:34:23:b4:40:3e:4a:91:bc:e8:
                    03:94:c2:cd:54:bc:42:a8:16:1b:09:8d:3c:f2:af:
                    79:05:bf:9f:9c:85:c3:6a:ce:0f:e8:40:2b:25:23:
                    33:18:b1:1c:90:b9:f6:b1:80:39:13:8c:01:e1:80:
                    d5:e6:53:90:4d:9f:05:28:43:34:27:82:39:a9:1c:
                    c6:89:a1:a7:79:08:3a:6a:69:bf:bd:22:2d:5d:9a:
                    c6:a8:cb:f0:f8:ee:f7:ee:23:ed:d3:61:af:1e:59:
                    bc:3c:5a:7a:4a:e7:33:46:07:fb:29:40:ab:02:a2:
                    d0:e6:26:47:11:0f:ed:ba:6d:98:67:c6:4c:a3:b1:
                    b1:25:2a:dd:39:c5:26:45:55:09:37:0f:2d:a9:50:
                    70:73:e3:12:75:ac:c7:5a:6e:6e:77:11:0d:c8:19:
                    35:c5:ee:32:fa:59:4a:96:8a:49:40:e1:ee:49:71:
                    96:ea:ae:6b:7c:10:0f:55:08:2f:2a:dc:d3:6f:a4:
                    2d:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D3:28:EC:84:8B:3D:B5:E8:71:59:0B:B0:1B:7F:BD:9B:B2:B6:3F:95
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:admin.kivitu.com, DNS:form.kivitu.com, DNS:kivitu.com, DNS:svc.kivitu.com, DNS:videos.kivitu.com, DNS:www.kivitu.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar  9 14:35:13.161 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:85:9C:33:E8:95:E6:AD:01:93:1C:D1:
                                35:AD:29:E8:D8:AA:68:25:75:34:39:AF:4E:27:04:CE:
                                CA:44:1A:63:78:02:20:27:1E:F1:89:41:E9:A8:9D:71:
                                11:51:CD:8F:4B:8D:66:03:47:45:13:60:64:2D:EC:27:
                                97:36:F6:E0:8F:87:0B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar  9 14:35:13.230 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:EC:FC:AC:C0:70:8E:FA:21:15:96:22:
                                38:9A:FD:F7:40:F2:F7:C1:D1:C7:0F:16:D4:8E:4C:C2:
                                D7:93:75:C8:5B:02:20:66:C7:7C:E5:6F:7D:7B:73:3D:
                                25:AE:A7:0A:E6:25:A7:A9:EB:9C:66:9C:34:A2:FD:F8:
                                A7:75:68:48:A3:5E:EB
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        92:1f:76:b4:e8:7c:27:40:d3:a8:80:95:2d:0a:f9:a3:68:da:
        75:3c:fa:f5:68:dd:a3:06:7c:52:f8:f0:cf:60:a4:1b:71:da:
        73:28:5d:aa:68:aa:fc:f2:a0:81:64:8c:85:36:3f:2d:24:15:
        00:d4:f3:87:bf:d9:94:ff:4a:95:9a:04:db:47:78:10:88:bf:
        33:b0:e5:ad:d8:d7:d5:65:be:aa:64:cc:60:88:b5:57:fb:8d:
        aa:14:00:ae:2a:78:81:47:b0:f3:6d:00:6f:8f:f9:8c:5c:e9:
        65:86:c1:a9:8e:b5:6a:f0:91:06:1e:bb:bd:d6:c5:cd:38:3d:
        bf:84:4e:db:38:45:67:d9:10:85:cc:11:3c:e1:1c:f0:1d:31:
        c6:ed:2a:7d:3f:be:23:11:cd:e5:84:7c:d9:73:78:54:54:f9:
        1f:78:07:c6:0a:59:8a:dd:c7:31:7b:a0:db:2e:b1:a7:8d:9b:
        fd:91:49:2a:0c:24:dc:6b:5d:e9:b1:c1:57:4e:b5:d8:fa:6a:
        65:9d:03:5b:45:30:97:5b:b6:56:d7:a2:5c:40:04:45:a6:3e:
        a6:9f:51:a0:54:88:0e:fd:76:86:b8:fd:8f:99:cc:63:3a:69:
        61:61:e1:a4:bb:28:c3:8c:63:32:d2:e9:99:1c:61:19:7b:17:
        5d:19:15:31

2a01:4f8:172:9c1::2

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-8559307 | 2024-04-26T21:31:39.376007
22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.3

677579724 | 2024-04-26T23:40:27.838752
80 / tcp

nginx1.18.0

1255269962 | 2024-04-26T21:20:28.650865
123 / udp

780672404 | 2024-04-26T22:06:26.041598
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

2a01:4f8:172:9c1::2

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-8559307 | 2024-04-26T21:31:39.376007 22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.3

677579724 | 2024-04-26T23:40:27.838752 80 / tcp

nginx1.18.0

1255269962 | 2024-04-26T21:20:28.650865 123 / udp

780672404 | 2024-04-26T22:06:26.041598 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-8559307 | 2024-04-26T21:31:39.376007
22 / tcp

677579724 | 2024-04-26T23:40:27.838752
80 / tcp

1255269962 | 2024-04-26T21:20:28.650865
123 / udp

780672404 | 2024-04-26T22:06:26.041598
443 / tcp