GeneralInformation

Hostnames	37-97-152-118.colo.transip.net api.wheelshare.nl
Domains	transip.net wheelshare.nl
Country	Netherlands
City	Amsterdam
Organization	Signet B.V.
ISP	Signet B.V.
ASN	AS20857
Operating System	Linux

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-147316306 | 2024-04-23T23:52:04.398910

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCuaMDj09i4rHTeOxjLhRvgBvcjnKA81HZvu0Ks35Jn3nM5
PaqtOhGBnMhlyKHgPz5S3rIy9MuybKKV9RRoREcXhrHhWrnA/hU33ORlcL9BEgTpKVRClIxpuWRP
WNBMXMBKbzZPHEdrI23MoEBtpSXEHcjgatEF4JNyVmUaIteE5jpEfZY5IB/lM6ew0lPJndTxeBwC
e9Wc5xtsnukjs5MIFeHCqTeHh9oI8OP2GhkJGcE+JYVCs5/ZnsYDZ9jIcP8pIn3FSiT3T8gji5Vi
PsjEtJJ/SwpQNzJ5Jjhc9O7SvZ6WFcxRkPV4HLZbr1gEWsPcRCAeyjpBG9A+AFeHjpwnXIdVMO4r
Rn60h31hAKg25JbIuPTcnHX8CQlY1SGKnN1ZLYEKRelNSXHC28TiYynmj/YGbVGJXylj1HLhHYZ9
Nf0ZgxNkxN0sai7cFteL2EobhHivBS3cJ0S1LXhoIwbRduBodY4sfHJYUpv66eIDhFCXUUaDoknN
9XGOTnABp40=
Fingerprint: 61:a8:3f:3a:cd:73:e5:59:63:5e:1a:10:ee:30:fb:64

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

150502314 | 2024-04-03T02:12:12.283850

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Wed, 03 Apr 2024 02:12:12 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 90
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"5a-0kOCgnGn7jfUzkptm8osFdZVOvc"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:90:bc:02:67:a8:25:4f:83:41:25:5a:9b:5a:66:c6:9e:e5
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 18 17:07:26 2024 GMT
            Not After : Jun 16 17:07:25 2024 GMT
        Subject: CN=api.wheelshare.nl
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cd:3c:29:fa:1e:c3:44:6b:2d:a2:53:dc:05:d4:
                    f8:10:fe:bc:bb:f0:df:e2:ff:fa:ce:24:a6:3b:f5:
                    f5:06:24:90:44:33:d5:38:db:42:56:74:63:8c:ea:
                    5c:a6:d5:7c:3c:ae:1a:d0:3d:96:64:04:0a:52:6e:
                    c4:5b:ca:3f:b3:af:58:7e:fa:51:17:c8:5c:7e:05:
                    12:2f:51:07:ea:59:0d:ec:a4:5d:41:fa:32:77:bb:
                    16:48:85:28:f5:df:e9:4f:43:2e:fd:b9:03:ab:c2:
                    0f:fa:d1:7d:16:13:9f:5d:d8:23:57:b7:df:b8:c6:
                    2f:f2:1c:16:ab:7a:5b:d3:ff:8d:b8:e6:f2:15:a3:
                    d7:e4:09:6c:c1:5a:82:d1:e9:d3:90:dc:fb:52:23:
                    5a:81:14:36:e7:af:60:4f:16:cc:8b:9d:91:58:e8:
                    c3:84:8a:99:d3:21:98:dd:a9:dc:2c:66:af:31:c5:
                    97:c6:3f:af:f5:88:9a:9f:f2:fa:46:67:ab:91:5d:
                    df:6c:c5:6d:0d:18:85:b4:15:d6:93:2b:1e:cb:db:
                    d1:4a:fb:aa:5d:5c:7b:4e:a2:ce:e6:3e:95:a8:13:
                    8d:f6:1b:ed:b5:bf:16:6a:8e:22:b3:2a:b8:8f:cd:
                    46:d5:82:1a:7b:44:fc:2a:6b:a1:01:70:6f:3f:d0:
                    4c:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                AE:E1:CE:89:3B:49:26:9D:D4:48:F9:B1:6F:0A:49:09:39:8A:AE:5E
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.wheelshare.nl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 18 18:07:26.154 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:ED:F7:C1:FE:37:D7:97:31:DB:D3:82:
                                3E:67:2C:D9:8C:EA:F7:C0:80:39:34:F5:3A:99:7C:D4:
                                E5:0F:0F:B7:09:02:20:69:56:03:35:4F:43:2C:BD:A9:
                                81:2B:72:A9:46:CB:E8:21:0B:BB:4E:D6:8E:19:7F:A7:
                                87:0F:C2:6D:4D:9E:8E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 18 18:07:26.222 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D3:B5:20:39:DA:85:57:EE:25:77:7A:
                                80:1C:60:14:A4:AF:45:6B:C3:D0:2F:26:4C:71:93:A6:
                                B9:5F:4B:23:A6:02:20:40:6F:47:48:25:F7:1A:74:2A:
                                4C:42:35:76:62:3D:67:AB:E1:DB:21:9D:90:53:50:DE:
                                5C:76:D7:17:93:39:5D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        61:b7:f8:e8:3f:35:a1:45:6d:fa:55:e9:c1:45:94:05:50:9f:
        e6:2b:e8:90:cc:f6:cc:e3:41:fa:4e:bb:dd:58:f0:a0:41:60:
        ec:09:b6:30:87:56:d6:49:2c:b2:e6:ac:d5:ee:60:dc:ba:71:
        dd:da:f9:04:ac:5e:8b:84:2e:e4:62:b5:eb:93:3b:8a:ed:c8:
        ee:3c:fd:92:a1:fa:b8:1e:4d:01:3b:17:86:66:65:21:03:1c:
        7a:e1:e9:10:84:40:91:43:e8:3d:93:78:7a:cb:14:37:ec:09:
        c3:5a:09:45:85:a3:76:45:81:0d:31:0d:48:f8:79:c3:c7:11:
        56:8a:a9:5f:c7:bc:bb:73:1a:11:7d:38:68:d3:5f:45:de:0d:
        0c:99:23:20:6d:43:88:76:b2:98:8c:a7:82:21:b1:2d:96:8e:
        8b:a2:a2:bd:b5:b7:b1:b2:66:10:84:19:95:19:ad:1e:54:0a:
        8e:04:6a:b9:d8:db:ab:7a:93:61:72:4b:7c:d2:bc:77:99:ca:
        35:48:c8:0a:a4:ae:e6:41:53:aa:d3:6b:89:42:a0:53:71:00:
        b0:79:c1:d1:2b:da:21:73:cf:0c:35:48:d6:c0:f3:d6:ce:1b:
        0c:a1:21:55:f4:d5:e2:6b:de:6a:35:0b:32:07:e0:a5:ad:cc:
        40:92:30:2b

37.97.152.118

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-147316306 | 2024-04-23T23:52:04.398910
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

150502314 | 2024-04-03T02:12:12.283850
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

37.97.152.118

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-147316306 | 2024-04-23T23:52:04.398910 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

150502314 | 2024-04-03T02:12:12.283850 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-147316306 | 2024-04-23T23:52:04.398910
22 / tcp

150502314 | 2024-04-03T02:12:12.283850
443 / tcp