GeneralInformation

Hostnames	mediawiki.org w.wiki wikibooks.org wikidata.org wikifunctions.org wikimedia.org text-lb.esams.wikimedia.org wikimediafoundation.org wikinews.org wikipedia.org wikiquote.org wikisource.org wikiversity.org wikivoyage.org wiktionary.org wmfusercontent.org
Domains	mediawiki.org w.wiki wikibooks.org wikidata.org wikifunctions.org wikimedia.org wikimediafoundation.org wikinews.org wikipedia.org wikiquote.org wikisource.org wikiversity.org wikivoyage.org wiktionary.org wmfusercontent.org
Country	Netherlands
City	Amsterdam
Organization	Wikimedia Foundation, Inc.
ISP	Wikimedia Foundation Inc.
ASN	AS14907

WebTechnologies

Security

HSTS

Web servers

Apache Traffic Server9.1.4

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-41752	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 8.1.8, from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 8.1.9 or 9.2.3, which fixes the issue.
CVE-2023-39456	Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue.
CVE-2023-33934	Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: through 9.2.1.
CVE-2023-33933	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions
CVE-2023-30631	Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. The configuration option proxy.config.http.push_method_enabled didn't function. However, by default the PUSH method is blocked in the ip_allow configuration file.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions
CVE-2022-47185	Improper input validation vulnerability on the range header in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: through 9.2.1.
CVE-2022-47184	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: 8.0.0 to 9.2.0.

OpenPorts

80 443

-1725283927 | 2024-05-03T10:16:56.043509

80 / tcp

HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://dyna.wikimedia.org/
server: HAProxy
x-cache: cp3066 int
x-cache-status: int-tls
connection: close

-800693540 | 2024-05-03T21:03:34.971692

443 / tcp

HTTP/1.1 200 OK
date: Fri, 03 May 2024 20:03:30 GMT
cache-control: s-maxage=3600, must-revalidate, max-age=0
server: ATS/9.1.4
etag: W/"4aa9-610184202c040"
last-modified: Mon, 29 Jan 2024 16:37:13 GMT
content-type: text/html
vary: Accept-Encoding
age: 3603
x-cache: cp3068 hit, cp3068 hit/60
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3068"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
set-cookie: WMF-Last-Access=03-May-2024;Path=/;HttpOnly;secure;Expires=Tue, 04 Jun 2024 12:00:00 GMT
x-client-ip: 2604:a880:2:d0::978:7001
set-cookie: GeoIP=US:CA:Santa_Clara:37.34:-121.98:v4; Path=/; secure; Domain=.wikimedia.org
set-cookie: NetworkProbeLimit=0.001;Path=/;Secure;Max-Age=3600
accept-ranges: bytes
content-length: 19113

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            07:41:9e:39:58:3a:4c:76:cf:1e:a1:43:47:fa:5f:3a
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=DigiCert Inc, CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1
        Validity
            Not Before: Oct 18 00:00:00 2023 GMT
            Not After : Oct 16 23:59:59 2024 GMT
        Subject: C=US, ST=California, L=San Francisco, O=Wikimedia Foundation, Inc., CN=*.wikipedia.org
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:35:61:f4:21:1a:ff:6a:c4:3b:fa:06:47:c6:19:
                    6e:be:70:38:f1:dc:16:b1:bc:38:14:12:d4:14:2b:
                    1c:0b:31:81:59:f5:67:f6:e7:2a:d1:3c:1e:fa:ae:
                    a7:ed:06:5d:d6:6f:5d:89:4c:6b:c8:b0:e0:0f:83:
                    cf:f5:d3:8a:da
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                0A:BC:08:29:17:8C:A5:39:6D:7A:0E:CE:33:C7:2E:B3:ED:FB:C3:7A
            X509v3 Subject Key Identifier: 
                CA:AC:0C:67:A2:E3:86:43:3F:BB:43:E7:41:D9:A1:87:3A:78:DD:33
            X509v3 Subject Alternative Name: 
                DNS:*.wikipedia.org, DNS:wikimedia.org, DNS:mediawiki.org, DNS:wikibooks.org, DNS:wikidata.org, DNS:wikinews.org, DNS:wikiquote.org, DNS:wikisource.org, DNS:wikiversity.org, DNS:wikivoyage.org, DNS:wiktionary.org, DNS:wikimediafoundation.org, DNS:w.wiki, DNS:wmfusercontent.org, DNS:*.m.wikipedia.org, DNS:*.wikimedia.org, DNS:*.m.wikimedia.org, DNS:*.planet.wikimedia.org, DNS:*.mediawiki.org, DNS:*.m.mediawiki.org, DNS:*.wikibooks.org, DNS:*.m.wikibooks.org, DNS:*.wikidata.org, DNS:*.m.wikidata.org, DNS:*.wikinews.org, DNS:*.m.wikinews.org, DNS:*.wikiquote.org, DNS:*.m.wikiquote.org, DNS:*.wikisource.org, DNS:*.m.wikisource.org, DNS:*.wikiversity.org, DNS:*.m.wikiversity.org, DNS:*.wikivoyage.org, DNS:*.m.wikivoyage.org, DNS:*.wiktionary.org, DNS:*.m.wiktionary.org, DNS:*.wikimediafoundation.org, DNS:*.wmfusercontent.org, DNS:wikipedia.org, DNS:wikifunctions.org, DNS:*.wikifunctions.org
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Agreement
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl3.digicert.com/DigiCertTLSHybridECCSHA3842020CA1-1.crl
                Full Name:
                  URI:http://crl4.digicert.com/DigiCertTLSHybridECCSHA3842020CA1-1.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/DigiCertTLSHybridECCSHA3842020CA1-1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 18 15:06:00.690 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E6:B7:9E:7A:E2:D2:CC:63:EF:25:0E:
                                61:4F:70:5D:F1:A3:95:C6:62:25:B5:73:13:2E:16:3A:
                                D7:DA:83:19:65:02:21:00:CE:D0:B3:1B:17:7B:38:DA:
                                DC:B1:80:52:0E:B7:BA:D5:3A:9B:07:7B:D4:B2:D3:01:
                                50:42:3F:01:58:ED:0B:21
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct 18 15:06:00.577 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:60:97:6E:06:B8:A8:22:E9:FA:15:37:90:
                                84:3C:6A:2B:67:B2:65:E8:60:B8:E9:31:49:C4:B7:9F:
                                0B:06:49:A9:02:21:00:B5:17:2B:82:A6:6F:90:40:14:
                                49:15:24:C0:9D:2B:51:88:FF:A1:80:62:21:83:3C:99:
                                F3:7E:EE:B1:A8:41:D1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 18 15:06:00.591 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E9:B5:1A:F6:3C:33:85:7E:B5:4C:A3:
                                57:DF:CF:0A:3F:2B:71:61:D4:3A:F7:D8:D1:AF:E8:9E:
                                C2:A0:FD:B8:AD:02:21:00:D5:59:B5:A4:FF:02:0E:9E:
                                E1:19:C4:33:04:14:EC:72:90:95:79:BC:D6:09:EF:03:
                                2B:6D:F5:9A:DB:FD:ED:05
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:2a:e3:8e:2e:39:b0:1a:0b:63:1b:a4:80:48:5e:
        16:d9:ef:0a:b5:06:40:35:1b:18:5c:c5:c9:0c:6c:01:0a:2f:
        5f:33:b4:32:4b:d7:6f:94:52:f0:ad:c0:e0:d6:0c:65:02:31:
        00:e5:7c:09:8a:46:e9:93:fa:b2:41:ea:f3:79:4b:29:b9:92:
        a1:aa:1d:4a:3e:e8:f6:b8:17:69:f2:f8:9c:b8:1c:6e:4c:95:
        1d:d5:6f:9d:dc:b9:a2:90:e5:20:1b:38:a5

2a02:ec80:300:ed1a::1

Last Seen: 2024-05-03

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1725283927 | 2024-05-03T10:16:56.043509
80 / tcp

-800693540 | 2024-05-03T21:03:34.971692
443 / tcp

Products

Pricing

Contact Us

2a02:ec80:300:ed1a::1

Last Seen: 2024-05-03

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1725283927 | 2024-05-03T10:16:56.043509 80 / tcp

-800693540 | 2024-05-03T21:03:34.971692 443 / tcp

Products

Pricing

Contact Us

-1725283927 | 2024-05-03T10:16:56.043509
80 / tcp

-800693540 | 2024-05-03T21:03:34.971692
443 / tcp