GeneralInformation

Hostnames	api.bankless.cz 45.77.140.8.vultrusercontent.com
Domains	bankless.cz vultrusercontent.com
Cloud Provider	Vultr
Country	Germany
City	Frankfurt am Main
Organization	Vultr Holdings, LLC
ISP	The Constant Company, LLC
ASN	AS20473

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 4040

612533936 | 2024-04-30T21:07:17.667624

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDwww1vpS5lWHFpOTNaBbogzSOuTmyUix2Jb2TEtGHimbJp
34aJEpsZyeXwtKRdbpzAvVEHF70YHopUfTpsIsw8jPOKMaMpnPLa8Hul7XJYf2mpORo+PAalXCgh
vz1/Dld6nprPFcBXfAtzeDjn4nqglJkHuI12igf/PMCky+2S+QlXgwTVUIeoaE4Gtm/qb7jkmhHA
mTGWq5FJIUeQ5HuMdq84HPz5qpzPrXhrkfyEwZGADyX5hqNVXlGy0ywjjwtTu+TqwR6KhuzlhIOF
L0qV1+r825qZyDaYOIyO00SgQT4ATxCoiSG+ZMDgDEvAw466lD6ph4l69vRyfBs3CKLA8fJXFLFR
xY7iDA8Ia/oHvpKk+0Om0wHTtqHfrFsA1QhWuViOPNU8X+xB/dFC6RSQaaw7FGsBKT7rnRp5xz2i
381rIw0n6UXcJAmy9KrR1RsVgz+0zqZQBunCDtlSoOj3Q4YLOCewMD7FlCSEenpXJB09me3qBXxy
/OuQdvcdoe8=
Fingerprint: ad:bd:1f:ad:7f:8d:be:f4:74:1a:0b:2b:2b:4e:9d:00

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

780672404 | 2024-04-28T19:19:12.838519

80 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 28 Apr 2024 19:19:12 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

780672404 | 2024-05-05T02:05:50.414263

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 May 2024 02:05:50 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:ed:c0:e7:e4:18:d2:45:52:af:a1:b6:d4:08:a3:4e:1d:1a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  7 23:12:08 2024 GMT
            Not After : Jun  5 23:12:07 2024 GMT
        Subject: CN=api.bankless.cz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e3:c1:db:1d:d7:df:90:a8:f1:6a:41:cd:0e:b2:
                    ff:5c:be:cf:c4:01:a2:26:ea:2a:46:57:77:ae:d8:
                    7c:eb:6f:45:79:10:99:7e:aa:51:04:bd:bf:34:b0:
                    61:5f:4a:50:3a:54:c4:62:a0:81:89:61:d1:56:74:
                    3e:0f:2f:a3:9e:5f:02:e0:f3:78:ca:8a:fb:e6:34:
                    b2:aa:28:da:7d:b1:9d:9e:bb:6f:87:1b:a6:e3:cf:
                    fd:e0:7e:7e:a8:1e:e2:38:01:8c:de:af:3c:c9:70:
                    10:f9:54:1a:9e:a9:8f:54:6d:a1:98:d4:fe:45:b2:
                    24:e3:c3:2f:10:b8:1c:1e:8b:10:f3:22:e8:b3:b6:
                    a7:9d:51:38:70:6f:84:29:93:8c:b9:22:76:0f:f2:
                    85:2f:e9:90:91:07:cb:91:f2:e5:82:14:e1:99:92:
                    73:c3:82:89:fc:47:c8:55:17:f9:a6:85:2b:37:f0:
                    e2:2c:59:95:02:5f:c1:76:b9:51:65:d1:dd:a9:02:
                    e0:7d:06:63:db:a0:c1:a9:a8:f1:de:6a:10:0f:06:
                    af:35:96:f3:eb:e6:45:18:bf:07:32:95:7b:51:73:
                    08:9b:e1:01:fd:d2:f3:b8:50:1c:44:24:b2:b3:df:
                    b3:34:21:1b:60:3c:6e:81:61:7f:0f:7b:84:75:79:
                    90:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                5C:C2:A9:E9:A9:68:98:AE:75:75:87:34:0B:46:6F:84:EC:FA:02:38
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.bankless.cz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar  8 00:12:08.439 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:90:0D:6A:84:7C:59:01:A5:4B:8E:3E:
                                A3:E0:AA:DC:3B:D3:A8:A0:5B:87:0B:9A:F4:48:9A:D5:
                                F9:CC:71:31:8D:02:21:00:BA:F7:D7:16:6A:25:EA:7C:
                                26:44:88:9A:F6:C1:4B:0F:19:E8:8A:7B:2D:A6:37:02:
                                08:75:06:27:8E:5E:8C:95
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar  8 00:12:08.439 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D0:55:1C:48:76:C3:6A:7F:2E:76:6E:
                                60:89:7A:C7:64:B9:8F:E4:1E:D0:0E:50:6F:C1:FD:E3:
                                D5:51:DF:3B:6E:02:20:36:2E:D3:D8:7D:4D:85:DB:BE:
                                B4:66:78:98:C2:D1:AA:E1:F0:0F:DF:F6:6A:5C:D0:01:
                                E5:A9:5B:83:4D:85:36
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2f:4e:09:f8:81:ae:b3:98:bf:3f:38:ed:57:3c:79:e8:5b:8c:
        7f:8c:dc:6d:eb:03:96:82:b0:59:c6:c5:0d:56:85:04:5f:99:
        8f:2e:7e:0c:60:d7:86:e1:e9:14:35:4d:fb:bb:ae:c4:97:63:
        dc:30:96:fc:6f:eb:0c:03:10:4a:83:57:7d:45:64:3e:1b:cb:
        d3:29:8e:69:8a:7a:04:be:ee:b4:e7:33:2c:34:e4:4c:ee:67:
        2d:9b:89:23:de:49:c4:ae:ed:89:fb:40:4b:c8:95:03:f1:a6:
        f2:89:e0:a1:dc:1f:13:4b:89:7d:d5:5b:df:9a:12:13:94:33:
        22:33:26:65:d9:fb:52:d8:91:7b:89:1a:1d:46:c8:9a:4a:66:
        a8:65:0e:23:46:10:bd:46:f5:33:fd:35:c8:06:e0:5e:96:a2:
        72:57:49:12:23:c2:7f:43:b5:ca:bf:4b:95:5d:df:3e:fb:a5:
        7a:e8:12:84:8e:12:7b:c4:fe:d0:c0:85:32:08:86:4e:be:62:
        ad:32:11:12:65:8e:a1:64:11:36:46:02:45:06:2a:71:ae:48:
        40:4b:2d:5a:09:f2:7b:ed:0f:bb:43:ed:e4:a7:26:df:31:da:
        a1:09:6e:96:a0:16:c8:c3:77:2e:31:aa:dd:a2:b2:b3:f7:30:
        ff:fb:9f:5e

-1060095501 | 2024-05-05T20:33:35.708985

4040 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Sun, 05 May 2024 20:33:35 GMT
Connection: keep-alive
Keep-Alive: timeout=5

45.77.140.8

Last Seen: 2024-05-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

612533936 | 2024-04-30T21:07:17.667624
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.2

780672404 | 2024-04-28T19:19:12.838519
80 / tcp

nginx1.18.0

780672404 | 2024-05-05T02:05:50.414263
443 / tcp

nginx1.18.0

-1060095501 | 2024-05-05T20:33:35.708985
4040 / tcp

Products

Pricing

Contact Us

45.77.140.8

Last Seen: 2024-05-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

612533936 | 2024-04-30T21:07:17.667624 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.2

780672404 | 2024-04-28T19:19:12.838519 80 / tcp

nginx1.18.0

780672404 | 2024-05-05T02:05:50.414263 443 / tcp

nginx1.18.0

-1060095501 | 2024-05-05T20:33:35.708985 4040 / tcp

Products

Pricing

Contact Us

612533936 | 2024-04-30T21:07:17.667624
22 / tcp

780672404 | 2024-04-28T19:19:12.838519
80 / tcp

780672404 | 2024-05-05T02:05:50.414263
443 / tcp

-1060095501 | 2024-05-05T20:33:35.708985
4040 / tcp