GeneralInformation

Hostnames	minio.kpzx.cn
Domains	kpzx.cn
Country	China
City	Hefei
Organization	CHINANET Anhui province network
ISP	CHINANET-BACKBONE
ASN	AS4134
Operating System	Synology DiskStation Manager (DSM) 7.1-42661

WebTechnologies

JavaScript frameworks

Vue.js

ExtJS

Network storage

Synology DiskStation

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 161 443 5000 5001 7001 7547 8080 20000

128385691 | 2024-05-11T22:07:45.888313

80 / tcp

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.2
Date: Sat, 11 May 2024 22:07:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 59
Connection: keep-alive
Location: http://36.7.84.196:9001
Vary: Origin

80480342 | 2024-05-16T23:56:51.687268

161 / udp

SNMP:
  Versions:
    3
  Engineid Format: mac
  Engine Boots: 74
  Engineid Data: 54:16:51:66:a8:09
  Enterprise: 4881
  Engine Time: 161 days, 18:58:27

-224868621 | 2024-04-23T23:41:06.215782

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.19.2
Date: Tue, 23 Apr 2024 23:41:06 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0e:0e:92:57:7e:12:c3:72:1f:96:35:92:56:29:0d:b1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G1
        Validity
            Not Before: Jun 16 00:00:00 2023 GMT
            Not After : Jun 15 23:59:59 2024 GMT
        Subject: CN=minio.kpzx.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9e:42:3e:e1:33:4c:f1:3f:0e:ca:40:08:67:96:
                    d7:bd:70:22:1c:cd:ac:03:43:aa:c8:75:5c:47:00:
                    e4:fb:7e:c1:38:36:fc:d4:23:5c:23:91:90:ee:56:
                    85:23:7a:8f:e8:84:c2:e0:bd:31:84:c9:b3:fa:ed:
                    e0:0a:d3:17:45:f6:60:44:b8:91:b9:98:ba:11:97:
                    f3:3b:ee:4f:76:52:d8:58:b3:60:a2:32:72:79:2b:
                    49:bd:f3:07:30:95:93:0d:4f:c9:95:69:52:56:8d:
                    57:74:e1:64:36:4a:31:a6:a5:e2:7c:d8:70:93:63:
                    74:55:33:cd:f2:14:18:27:d8:f8:f8:73:5c:ae:c7:
                    9d:62:71:f5:03:1f:28:64:97:fe:f1:9b:1a:76:a8:
                    73:8b:b0:c5:36:b7:94:d7:e1:ab:07:70:f8:e4:8f:
                    3a:ef:37:ab:50:02:ea:65:8c:29:a1:7f:77:5d:3b:
                    06:c7:96:5c:d6:b7:a6:74:04:7f:48:46:48:66:e1:
                    be:5f:80:d3:f6:6c:ba:fe:1a:7f:22:b4:31:01:2d:
                    de:ec:77:53:f4:4f:45:02:d4:67:b3:0a:22:bf:5b:
                    a4:50:fd:1a:50:4c:b8:e1:af:64:84:84:af:7e:1b:
                    bd:83:a8:48:46:25:5f:e0:9f:40:5d:61:df:2f:b8:
                    bf:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:74:4F:B2:72:4F:F5:60:BA:50:D1:D7:E6:51:5C:9A:01:87:1A:D7
            X509v3 Subject Key Identifier: 
                8F:73:6F:4C:9A:67:3D:95:2F:C5:ED:2E:10:A4:0D:A7:16:CC:15:78
            X509v3 Subject Alternative Name: 
                DNS:minio.kpzx.cn
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt
            X509v3 Basic Constraints: 
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Jun 16 14:02:03.946 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:1F:14:3F:F2:A0:4D:6A:D5:20:22:AA:EC:
                                C5:C2:64:B1:15:81:D1:CF:A8:8F:EB:4E:5A:1A:FB:E4:
                                F1:E7:8E:B1:02:21:00:C9:FD:15:2A:DD:1A:59:70:99:
                                E6:73:14:E1:90:69:C5:3D:69:2A:7C:BE:15:0C:C1:A0:
                                93:FD:83:29:FC:1B:0C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Jun 16 14:02:03.993 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:23:DD:31:5B:17:64:F5:B0:F3:75:36:F9:
                                EF:83:CF:55:06:55:4C:B6:A0:CF:BA:8A:21:C6:43:5A:
                                3C:29:A7:78:02:21:00:86:0C:DF:2E:F6:61:BF:D8:6D:
                                32:7F:F1:8A:27:60:B0:0C:0C:24:15:FC:73:AE:81:48:
                                25:56:AB:16:E1:D5:57
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Jun 16 14:02:03.909 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4B:83:F9:35:C4:9F:D9:66:9A:F3:E2:AA:
                                D4:35:1B:0F:A7:12:9A:51:A2:13:C8:6A:35:76:97:B1:
                                AC:EC:DA:73:02:20:05:5E:6B:94:3F:A3:DD:92:78:A2:
                                34:03:21:AA:8A:CB:0D:FA:F6:19:72:9F:D4:C2:EE:3D:
                                22:0C:5F:A8:D4:E0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        12:ad:b5:8d:12:27:b3:9a:08:89:6c:89:ce:47:64:c1:8f:de:
        f4:02:3f:11:7c:67:2f:3d:8a:e0:0c:1c:ab:4b:6e:5f:9c:b6:
        2a:cd:03:55:68:ee:55:ad:8b:13:b0:d3:81:c2:2d:2e:30:5c:
        e0:69:48:59:30:c0:b4:7a:eb:69:9a:62:53:2b:71:b4:bb:49:
        dd:27:af:d5:94:12:74:63:0b:5c:91:ed:34:b2:32:4e:dc:96:
        c8:b8:1c:3e:75:d7:18:b4:be:be:f3:ac:2c:0b:11:61:e0:27:
        23:ae:0c:5d:5d:9d:65:29:76:7a:db:74:18:c6:6b:aa:96:7b:
        72:c8:68:f2:1f:ab:60:85:d1:2d:6b:80:b8:b2:ab:e9:c4:f1:
        d5:65:b0:00:8d:9e:cd:d0:3b:10:96:e8:bd:7f:9b:2a:f8:5e:
        b4:2e:08:86:71:23:c8:59:2b:af:2d:ed:de:87:08:6d:af:1e:
        21:a6:49:8c:70:d1:4c:23:79:60:10:6e:7f:59:d2:d5:77:ce:
        5d:9a:10:9e:36:7d:57:a9:f8:8b:bf:61:47:33:d4:7b:4c:47:
        7d:46:7f:83:52:8b:5d:b7:33:66:67:35:53:46:dd:23:56:3c:
        f7:af:11:d8:3b:f6:02:d8:1a:f5:9d:e1:66:54:64:e1:c7:f4:
        a5:d9:e0:35

-302267296 | 2024-05-17T12:40:13.477305

5000 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 17 May 2024 12:40:13 GMT
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Security-Policy: base-uri 'self';  connect-src data: ws: wss: http: https:; default-src 'self' 'unsafe-eval' data: blob: https://*.synology.com https://www.synology.cn/ https://help.synology.cn/; font-src 'self' data: https://*.googleapis.com https://*.gstatic.com https://fonts.gstatic.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' data: blob: https://*.synology.com https://*.synology.cn https://www.youtube.com http://www.youtube.com http://*.synology.com http://*.synology.cn; img-src 'self' data: blob: https://*.google.com https://*.googleapis.com http://*.googlecode.com https://*.gstatic.com https://maps.gstatic.com https://*.googleapis.com https://*.google.com https://i.ytimg.com https://*.ggpht.com; media-src 'self' data: about: https://*.synology.com https://help.synology.cn;  script-src 'self' 'unsafe-eval' data: blob: https://maps.google.com https://ajax.googleapis.com https://help.synology.com https://help.synology.cn https://maps.google.com https://maps.googleapis.com; style-src 'self' 'unsafe-inline' https://*.googleapis.com https://fonts.googleapis.com;


Synology DiskStation Manager (DSM):
  Version: 7.1-42661
  Hostname: mesis
  Custom Login Title: 麦穗创客教育SVN
  Login Welcome Title: 麦穗创客教育
  Login Welcome Message: 联系人：张泽轩13395518858

-302267296 | 2024-05-14T19:04:19.473713

5001 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 14 May 2024 19:04:18 GMT
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Security-Policy: base-uri 'self';  connect-src data: ws: wss: http: https:; default-src 'self' 'unsafe-eval' data: blob: https://*.synology.com https://www.synology.cn/ https://help.synology.cn/; font-src 'self' data: https://*.googleapis.com https://*.gstatic.com https://fonts.gstatic.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' data: blob: https://*.synology.com https://*.synology.cn https://www.youtube.com http://www.youtube.com http://*.synology.com http://*.synology.cn; img-src 'self' data: blob: https://*.google.com https://*.googleapis.com http://*.googlecode.com https://*.gstatic.com https://maps.gstatic.com https://*.googleapis.com https://*.google.com https://i.ytimg.com https://*.ggpht.com; media-src 'self' data: about: https://*.synology.com https://help.synology.cn;  script-src 'self' 'unsafe-eval' data: blob: https://maps.google.com https://ajax.googleapis.com https://help.synology.com https://help.synology.cn https://maps.google.com https://maps.googleapis.com; style-src 'self' 'unsafe-inline' https://*.googleapis.com https://fonts.googleapis.com;


Synology DiskStation Manager (DSM):
  Version: 7.1-42661
  Hostname: mesis
  Custom Login Title: 麦穗创客教育SVN
  Login Welcome Title: 麦穗创客教育
  Login Welcome Message: 联系人：张泽轩13395518858

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number:
            9a:5f:fe:75:17:39:22:43
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=TW, L=Taipei, O=Synology Inc., CN=Synology Inc. CA
        Validity
            Not Before: Jan  9 03:19:00 2019 GMT
            Not After : Sep 26 03:19:00 2038 GMT
        Subject: C=TW, L=Taipei, O=Synology Inc., CN=synology.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ec:e4:7f:2e:a9:96:20:99:12:7d:41:9d:94:ec:
                    6d:84:46:e2:9e:a9:50:ea:5a:d5:88:46:ff:cf:74:
                    c4:01:fa:d2:59:9a:e7:cc:b0:8c:d1:f0:b6:73:a5:
                    a2:4c:af:f9:10:f7:59:7f:3c:26:f4:64:7e:b8:da:
                    1e:7d:86:f6:b2:c6:1c:0e:16:2b:bd:ea:5f:1e:bc:
                    c7:63:3f:c1:3d:ed:fa:7a:de:fd:89:1a:14:b0:1e:
                    52:0b:51:28:86:2e:5a:1d:75:9a:d1:46:f8:eb:f0:
                    e2:0e:1a:eb:e3:a3:de:e3:02:cf:58:e2:3f:b6:05:
                    4a:16:20:0d:63:56:7c:5e:48:59:39:c7:58:09:66:
                    33:f1:87:76:15:39:12:45:ba:4b:69:ed:9b:59:c0:
                    a8:98:ba:31:d1:03:8c:f0:8b:ec:3b:cb:8e:88:52:
                    56:f4:7d:b8:4a:14:8e:49:7b:72:11:a3:b8:2f:b7:
                    5b:53:ae:b3:9e:89:d2:1f:b9:d0:e0:ac:86:04:b3:
                    1e:29:6e:de:f7:a9:c9:21:d7:d0:87:97:11:52:ca:
                    43:1c:04:09:bf:c2:40:b8:11:da:7a:01:5e:df:dd:
                    b9:6c:ce:65:7a:66:23:89:49:c7:49:8c:a5:33:08:
                    a0:bf:33:92:b9:c0:fb:82:d8:97:3e:dd:cc:cf:a0:
                    3a:bf
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        23:f4:5c:14:c2:ef:08:fb:67:51:2c:1d:ad:c2:48:26:dd:57:
        da:42:ef:ee:33:bf:29:d9:e8:e8:b0:c3:6d:9d:fd:83:39:0c:
        5a:ec:c6:1a:06:04:55:95:0c:6f:cd:49:e8:07:5b:d9:36:78:
        87:6f:8d:70:2c:df:b8:ef:d8:31:fc:92:a0:4e:74:3f:08:63:
        e5:1e:e4:0c:c6:69:f9:df:8e:6b:6e:a7:47:ca:4e:af:cb:3f:
        a8:bd:b7:10:1b:df:ea:da:dd:4d:44:80:19:29:de:24:5f:91:
        4d:fb:43:58:d6:f6:05:6a:37:61:7a:c1:46:05:47:c5:cf:89:
        50:71:ec:d7:4a:68:30:c2:b3:72:cf:3a:7e:d1:88:da:48:eb:
        99:b0:ac:42:1b:fa:92:28:9f:72:0b:b5:46:b8:27:45:5d:fa:
        25:02:55:3c:9e:9c:1e:86:80:05:79:50:7b:01:f1:62:93:14:
        c3:30:32:37:ed:01:ce:0d:74:51:f7:d7:17:24:5a:22:0f:a8:
        1a:14:61:f6:71:cd:58:47:49:95:e4:a0:8a:ec:03:cb:89:9e:
        08:e9:b4:43:22:6c:7f:bd:02:c7:84:57:ba:ab:64:19:05:b0:
        12:39:1e:c3:9b:88:9f:3e:cc:88:c2:98:d6:50:f4:54:1c:b1:
        e0:1a:01:a4

-1098580137 | 2024-05-06T10:42:47.600193

7001 / tcp

HTTP/1.1 404 Not Found
Vary: Origin
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
content-type: text/html; charset=utf-8
content-length: 22
x-readtime: 1
keep-alive: timeout=5
Date: Mon, 06 May 2024 10:42:47 GMT
Connection: keep-alive

<h1>404 Not Found</h1>

-1759155114 | 2024-05-02T19:02:06.904040

7547 / tcp

HTTP/1.1 200 OK
Server: RG/Device 10.x
Content-Type: text/xml; charset=utf-8
Content-Length: 0
Connection: keep-alive

-1563286352 | 2024-04-23T21:04:09.127090

8080 / tcp

HTTP/1.1 404 Not Found
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=utf-8
Content-Language: en
Content-Length: 951
Date: Tue, 23 Apr 2024 21:04:08 GMT

373912545 | 2024-05-15T08:06:45.627312

20000 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.19.2
Date: Wed, 15 May 2024 08:10:52 GMT
Content-Type: text/html
Content-Length: 157
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.19.2</center>
</body>
</html>

36.7.84.196

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

128385691 | 2024-05-11T22:07:45.888313
80 / tcp

nginx1.19.2

80480342 | 2024-05-16T23:56:51.687268
161 / udp

-224868621 | 2024-04-23T23:41:06.215782
443 / tcp

nginx1.19.2

-302267296 | 2024-05-17T12:40:13.477305
5000 / tcp

nginx

-302267296 | 2024-05-14T19:04:19.473713
5001 / tcp

nginx

-1098580137 | 2024-05-06T10:42:47.600193
7001 / tcp

-1759155114 | 2024-05-02T19:02:06.904040
7547 / tcp

-1563286352 | 2024-04-23T21:04:09.127090
8080 / tcp

Apache Tomcat/Coyote JSP engine1.1

373912545 | 2024-05-15T08:06:45.627312
20000 / tcp

nginx1.19.2

Products

Pricing

Contact Us

36.7.84.196

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

128385691 | 2024-05-11T22:07:45.888313 80 / tcp

nginx1.19.2

80480342 | 2024-05-16T23:56:51.687268 161 / udp

-224868621 | 2024-04-23T23:41:06.215782 443 / tcp

nginx1.19.2

-302267296 | 2024-05-17T12:40:13.477305 5000 / tcp

nginx

-302267296 | 2024-05-14T19:04:19.473713 5001 / tcp

nginx

-1098580137 | 2024-05-06T10:42:47.600193 7001 / tcp

-1759155114 | 2024-05-02T19:02:06.904040 7547 / tcp

-1563286352 | 2024-04-23T21:04:09.127090 8080 / tcp

Apache Tomcat/Coyote JSP engine1.1

373912545 | 2024-05-15T08:06:45.627312 20000 / tcp

nginx1.19.2

Products

Pricing

Contact Us

128385691 | 2024-05-11T22:07:45.888313
80 / tcp

80480342 | 2024-05-16T23:56:51.687268
161 / udp

-224868621 | 2024-04-23T23:41:06.215782
443 / tcp

-302267296 | 2024-05-17T12:40:13.477305
5000 / tcp

-302267296 | 2024-05-14T19:04:19.473713
5001 / tcp

-1098580137 | 2024-05-06T10:42:47.600193
7001 / tcp

-1759155114 | 2024-05-02T19:02:06.904040
7547 / tcp

-1563286352 | 2024-04-23T21:04:09.127090
8080 / tcp

373912545 | 2024-05-15T08:06:45.627312
20000 / tcp