GeneralInformation

Hostnames	cloud.sielsrls.it web.nettuno.vhosting-it.com
Domains	sielsrls.it vhosting-it.com
Country	Italy
City	Milan
Organization	Servereasy Srl
ISP	Servereasy Srl
ASN	AS60798

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 137 443 445

-1889589272 | 2024-04-23T09:57:25.505358

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDcF93/GV0uHn2k5md94fi/7lP0xmaAA7j3H3Fx4DUmCuMi
1hBzJVF9aDHze6wXpRsIBKhTrBItPZ98ZLtm8/Q7dP7KmvoOmA/uwdMt/HVcyNVR1Y/b59woVb1K
g2szMKL/sEEhw6381L3aa+Ma4kNXA3bikol654fuY64zE2I7IQ2NgGcaQcBj82cAtnQdnt4Xtc2n
Y4yygusEBfLCPfALPH0J+d805QWXkbyPEhy5kQqE9ObDLjZjM/rFfIwhqpp+iswfD7I9YECVU6wV
aXCbze1TEN0MElJbZzBCKEtb0D1QkK5bc5wqg+wuK0fbSfYN8w7gHL+TExdaluqJ4cMDadASEr8o
KMeyjz80o4T9u+DuyYRKRvSWO25g/FQgSFh504TapCrL9Hp8mi6/a6rPHazRxYneIUwkuR6EbpA5
qPKLBLMpfAv+pxECiT+2fdTZG1n3sS74xsbjegkeEMfxgfYhmlJ4Ern+J8pGAdi4+hrjRO/qvoS/
b/Ks5RDtS3c=
Fingerprint: e5:f3:8b:ba:06:17:68:17:98:95:c1:61:fd:7d:6c:74

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

2131621363 | 2024-04-23T01:51:56.375608

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 23 Apr 2024 01:51:56 GMT
Content-Type: text/html
Content-Length: 5
Last-Modified: Fri, 09 Feb 2024 17:37:04 GMT
Connection: keep-alive
ETag: "65c662c0-5"
Accept-Ranges: bytes

1006759738 | 2024-04-18T04:20:27.510416

137 / udp

NetBIOS Response:
  Server Name: UBUNTU
  MAC Address: 00:00:00:00:00:00
  Names:
    UBUNTU <0x0>
    UBUNTU <0x3>
    UBUNTU <0x20>
    \x01\x02__MSBROWSE__\x02 <0x1>
    WORKGROUP <0x0>
    WORKGROUP <0x1d>
    WORKGROUP <0x1e>

-1326951984 | 2024-04-22T21:47:39.636762

443 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 21:47:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: oc_sessionPassphrase=3BsNgjS%2F7PGuMTxR7HpANcz46Bz0yzBdz1pjRJB%2Bx3DMg4%2BIGzfO58hi6HABRaqN8TC2xiz5CidPLkWXS2aFVu26lqa%2FaUWcOfuUxyhaEta8EaQP0xod%2BprGEFI0f2yG; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: ocue3osezhc9=nc47ga54eliq16r67gfvqb13p7; path=/; secure; HttpOnly; SameSite=Lax
Content-Security-Policy: default-src 'self'; script-src 'self' 'nonce-TlFoRFJwRmZrYitYV3NyYXBqSjRiWndTcWJWd0VGV1V5L2dSajY5bEFWcz06ZWxBSktkY093ZGZHSUpqdXhWNUFQdEppL09RWWVBWDZwNWNvNXBrdU1YUT0='; style-src 'self' 'unsafe-inline'; frame-src *; img-src * data: blob:; font-src 'self' data:; media-src *; connect-src *; object-src 'none'; base-uri 'self';
Set-Cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax
Set-Cookie: __Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
Referrer-Policy: no-referrer
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: none
X-XSS-Protection: 1; mode=block

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:0e:69:c1:0c:a8:0c:42:66:3b:c5:bc:de:d8:90:14:42:17
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  6 13:52:20 2024 GMT
            Not After : Jul  5 13:52:19 2024 GMT
        Subject: CN=cloud.sielsrls.it
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:41:d7:ac:30:8d:12:b9:f4:26:da:6f:00:39:
                    66:3d:56:91:d3:6f:0c:2b:9b:a7:64:43:56:56:53:
                    8f:fa:16:28:3f:0d:c5:b7:95:88:a1:1e:6a:a9:f6:
                    8d:ef:e2:e2:9c:48:61:e0:b3:6c:86:d3:db:a5:ec:
                    1e:4e:1c:c9:b5:55:d6:fb:27:2a:22:af:20:76:10:
                    ba:28:43:fd:28:78:9e:10:49:d5:70:5c:1a:6f:f9:
                    54:b1:80:79:96:62:30:90:18:4b:13:ec:46:f3:3c:
                    52:7e:aa:28:7e:35:10:b1:6c:7c:5d:01:ea:8d:06:
                    6f:29:22:4a:7b:56:88:3e:d3:81:be:f7:33:9a:b6:
                    16:eb:89:29:5b:de:3b:c9:98:09:ff:90:f0:4c:27:
                    19:6d:71:95:7f:bc:26:68:e9:94:43:15:f8:aa:44:
                    c2:a6:2b:7b:cd:84:49:6c:eb:bc:90:50:2d:c0:39:
                    f2:e1:52:6e:67:6c:51:b2:bc:4c:08:b0:c1:c9:a3:
                    0f:7d:27:ae:b0:a6:22:f1:72:fb:53:80:41:92:1d:
                    24:0d:4c:ee:b1:32:88:1d:44:c7:e5:28:ef:6d:13:
                    4d:a4:7d:5b:80:16:7c:01:49:c8:78:92:a3:2e:1b:
                    c9:59:8b:12:82:96:f9:9c:fa:9f:38:f0:65:89:88:
                    e4:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                0F:D8:B9:0F:65:0B:37:53:39:56:8A:38:85:34:0D:A3:96:A9:D4:3D
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cloud.sielsrls.it
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  6 14:52:20.615 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D7:84:82:A1:84:61:0B:0B:DE:1D:13:
                                3F:61:EF:69:E8:8B:36:19:EF:49:09:44:81:ED:37:BD:
                                D6:11:E7:04:91:02:20:07:90:E0:65:22:91:87:25:ED:
                                C9:DE:AF:46:5D:96:B6:4E:E6:A0:1B:ED:46:E9:24:FC:
                                C8:C4:9D:6F:C2:87:81
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  6 14:52:20.616 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9B:80:CB:30:23:30:18:9E:F6:C9:32:
                                9B:33:BD:FA:E5:0F:54:95:7D:74:B5:10:AD:DE:F1:89:
                                BE:86:C9:16:6E:02:20:5B:28:68:5D:B9:62:E1:71:00:
                                32:91:E3:36:9F:87:A7:7B:C1:C7:90:31:6C:8A:D6:EB:
                                AA:DF:80:5E:DD:63:C7
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        81:ba:cf:b6:fc:58:41:31:2c:33:22:57:31:f3:03:05:7f:7a:
        b9:68:62:2f:48:2f:50:ab:ac:14:1c:dd:94:21:e5:c2:5b:88:
        4b:b3:f4:57:4b:1d:6b:71:e2:f1:47:61:6a:75:f3:56:18:e9:
        bd:78:d1:a9:42:fa:b5:ae:5d:ba:b3:cf:dd:84:fc:9a:fd:f4:
        55:f7:5d:81:23:9b:ce:ba:f6:24:06:90:a1:27:c7:54:7a:64:
        a9:c1:d2:a6:dc:73:e9:ce:bf:0f:c6:fd:de:72:1b:49:a9:e2:
        e3:b7:2c:94:44:d9:bd:5d:49:eb:1b:da:77:fd:20:c4:88:bf:
        e5:aa:e9:28:15:18:70:da:66:69:5a:e7:c3:9c:a9:53:be:bc:
        05:98:19:28:d5:9c:23:ec:0e:60:2e:e6:ba:61:81:96:e5:60:
        20:07:b1:18:ba:42:fe:dc:d0:a3:81:ab:7d:1e:dc:2b:c7:37:
        21:fb:86:e0:05:a6:a7:1e:cf:44:8a:1f:dc:7d:91:66:1c:f6:
        e4:01:e6:1e:da:58:51:d7:6b:82:f0:e9:22:bb:1c:76:78:9f:
        f1:6e:19:12:d5:dd:6a:54:47:84:42:cd:af:c8:91:a0:82:4b:
        a5:e7:70:71:aa:8f:c5:b4:b4:fa:ab:c8:f3:ef:30:60:84:f2:
        01:0a:f8:9b

1357631660 | 2024-04-13T05:19:34.199818

445 / tcp

SMB Status:
  Authentication: disabled
  SMB Version: 2
  Capabilities: raw-mode

Shares
Name                 Type       Comments
------------------------------------------------------------------------
print$               Disk       Printer Drivers
SHARED               Disk       PMS files
IPC$                 IPC        IPC Service (ubuntu server (Samba, Ubuntu))

45.14.185.43

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1889589272 | 2024-04-23T09:57:25.505358
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

2131621363 | 2024-04-23T01:51:56.375608
80 / tcp

nginx1.18.0

1006759738 | 2024-04-18T04:20:27.510416
137 / udp

-1326951984 | 2024-04-22T21:47:39.636762
443 / tcp

Nextcloud

1357631660 | 2024-04-13T05:19:34.199818
445 / tcp

Products

Pricing

Contact Us

45.14.185.43

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1889589272 | 2024-04-23T09:57:25.505358 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

2131621363 | 2024-04-23T01:51:56.375608 80 / tcp

nginx1.18.0

1006759738 | 2024-04-18T04:20:27.510416 137 / udp

-1326951984 | 2024-04-22T21:47:39.636762 443 / tcp

Nextcloud

1357631660 | 2024-04-13T05:19:34.199818 445 / tcp

Products

Pricing

Contact Us

-1889589272 | 2024-04-23T09:57:25.505358
22 / tcp

2131621363 | 2024-04-23T01:51:56.375608
80 / tcp

1006759738 | 2024-04-18T04:20:27.510416
137 / udp

-1326951984 | 2024-04-22T21:47:39.636762
443 / tcp

1357631660 | 2024-04-13T05:19:34.199818
445 / tcp