| Hostnames |
local.101thingstodo.com local.adirondackexpress.com local.aitkinage.com local.alexcityoutlook.com local.ansonrecord.com local.argusobserver.com local.beloitdailynews.com mylocal.carrollcountytimes.com local.cessnockadvertiser.com.au local.chronicle-tribune.com mylocal.courant.com local.daily-chronicle.com local.dailytimesleader.com local.dissmercury.co.uk local.djournal.com local.dl-online.com local.eastbayri.com local.easterntimesregister.com local.elkintribune.com local.fakenhamtimes.co.uk local.fergusfallsjournal.com local.gazette.com local.gettysburgtimes.com 232.77.96.34.bc.googleusercontent.com local.h-ponline.com local.hampshire-life.co.uk local.hennesseyclipper.com local.hmbreview.com local.hungryhorsenews.com local.huntspost.co.uk local.idahopress.com local.ilfordrecorder.co.uk local.illinois-valley.com local.ipswichstar.co.uk local.janesvillemarketplace.com local.kentnews.co.uk gm.local.kentonline.co.uk te.local.kentonline.co.uk local.kilburntimes.co.uk local.laurinburgexchange.com local.leaderadvertiser.com local.lowestoftjournal.co.uk local.mayfield-messenger.com mylocal.indulge.mcall.com mylocal.mcall.com local.midweek.com local.militarynews.com annarborshopping.mlive.com grandrapidsshopping.mlive.com local.mlstargazette.com local.monvalleyindependent.com local.mtairynews.com mylocal.myplainview.com local.myrecordjournal.com franklin-county-news.origami.neighbourly.co.nz north-harbour-news.origami.neighbourly.co.nz north-shore-times.origami.neighbourly.co.nz taupo-times.origami.neighbourly.co.nz local.news-banner.com local.news-sun.com shopping.nj.com local.northsomersettimes.co.uk local.observer-reporter.com local.okeenerecord.com local.omakchronicle.com local.pawtuckettimes.com local.postindependent.com local.prairiepost.com quad.presspubs.com local.psdispatch.com local.ricentral.com local.sequoyahcountytimes.com local.staradvertiser.com local.stowmarketmercury.co.uk local.sunnysouthnews.com local.sussexlife.co.uk shopping.syracuse.com local.tehachapinews.com local.thedailyiberian.com local.theherald-news.com local.thelocalvoice.net local.thepilotnews.com local.thetimes-tribune.com local.theupstater.com local.times-journal.com local.times-online.com bloorwestyork.toronto.com northyork.toronto.com local.townandcountrymagazine.com.au community.triblive.com mylocal.vagazette.com local.times.vernonpublishing.com local.wctrib.com local.wenatcheeworld.com local.westhawaiitoday.com local.whatsuppub.com local.whtimes.co.uk local.williamsondailynews.com local.winterhavensun.com local.wisbechstandard.co.uk local.yoursun.com |
| Domains | 101thingstodo.com adirondackexpress.com aitkinage.com alexcityoutlook.com ansonrecord.com argusobserver.com beloitdailynews.com carrollcountytimes.com cessnockadvertiser.com.au chronicle-tribune.com courant.com daily-chronicle.com dailytimesleader.com dissmercury.co.uk djournal.com dl-online.com eastbayri.com easterntimesregister.com elkintribune.com fakenhamtimes.co.uk fergusfallsjournal.com gazette.com gettysburgtimes.com googleusercontent.com h-ponline.com hampshire-life.co.uk hennesseyclipper.com hmbreview.com hungryhorsenews.com huntspost.co.uk idahopress.com ilfordrecorder.co.uk illinois-valley.com ipswichstar.co.uk janesvillemarketplace.com kentnews.co.uk kentonline.co.uk kilburntimes.co.uk laurinburgexchange.com leaderadvertiser.com lowestoftjournal.co.uk mayfield-messenger.com mcall.com midweek.com militarynews.com mlive.com mlstargazette.com monvalleyindependent.com mtairynews.com myplainview.com myrecordjournal.com neighbourly.co.nz news-banner.com news-sun.com nj.com northsomersettimes.co.uk observer-reporter.com okeenerecord.com omakchronicle.com pawtuckettimes.com postindependent.com prairiepost.com presspubs.com psdispatch.com ricentral.com sequoyahcountytimes.com staradvertiser.com stowmarketmercury.co.uk sunnysouthnews.com sussexlife.co.uk syracuse.com tehachapinews.com thedailyiberian.com theherald-news.com thelocalvoice.net thepilotnews.com thetimes-tribune.com theupstater.com times-journal.com times-online.com toronto.com townandcountrymagazine.com.au triblive.com vagazette.com vernonpublishing.com wctrib.com wenatcheeworld.com westhawaiitoday.com whatsuppub.com whtimes.co.uk williamsondailynews.com winterhavensun.com wisbechstandard.co.uk yoursun.com |
| Cloud Provider | |
| Cloud Region | global |
| Country | United States |
| City | Kansas City |
| Organization | Google LLC |
| ISP | Google LLC |
| ASN | AS396982 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
| CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
| CVE-2019-9516 | 6.8Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory. |
| CVE-2019-9513 | 7.8Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU. |
| CVE-2019-9511 | 7.8Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both. |
| CVE-2019-20372 | 4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer. |
