GeneralInformation

Hostnames	stage-mac.bcpapers.ca
Domains	bcpapers.ca
Cloud Provider	DigitalOcean
Cloud Region	de-he
Country	Germany
City	Frankfurt am Main
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-1177860115 | 2024-04-30T09:21:16.813180

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCk/AmPUX/D3hOkIguPf6hGK8Rgei/8G52U11VLqymkw+rR
jXbmLpIFJ5/aueJVerLHvl6KVbt+aF0VcMpgWe1sr0RMfq7feGCgLnOPbh9CTtLH2LT2OHrAA1u0
pl1qxUtjna+Sc7a22XVRbcpbcJQz2BFkFNxiJgPShIzm5C96PoDId86wzV6AqfoEUI4jTuLOeyWQ
tmUoyWN56LPHmstaI/hFhEFq6sGWwVtB3iyBsxxll85EkgJ0XC6MNAqICswYlxmMVdtBjaSkZMQt
Dg6qMh4GQeGm3xj/ualwKWg/jcO/H9n34h6pEbI85K0XiruOsTswknnc9mm/vBhU1IY6HyUfn9sm
uJH6irbT6gRHhmfL2mvCy0GunOUTOSj6Rh/OX3SJQHqkcNIY7BNW4IDnNh/rUzdGX1m27tUCzTvi
8lWklcD1EBvMwHVhrDCkd8lBEALxAnr5yN3/hE1KIaDSo1dDDQcOqpUr+LFrAGRQioBkFl/Fz4zX
qqyTkcUOtxU=
Fingerprint: 06:47:9a:f1:b1:19:c7:60:49:01:46:93:16:d2:69:e3

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-02T08:21:35.235966

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 02 May 2024 08:21:35 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sat, 14 Oct 2023 10:38:47 GMT
Connection: keep-alive
ETag: "652a6fb7-264"
Accept-Ranges: bytes

1651973090 | 2024-05-01T19:33:12.832615

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 01 May 2024 19:33:12 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sat, 14 Oct 2023 10:38:47 GMT
Connection: keep-alive
ETag: "652a6fb7-264"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:2b:db:44:38:d5:7d:31:f6:31:1b:92:96:de:f8:e6:d9:24
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 12 10:33:37 2024 GMT
            Not After : Jul 11 10:33:36 2024 GMT
        Subject: CN=stage-mac.bcpapers.ca
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:c3:15:a1:0d:cd:f7:bb:5d:9a:92:e9:5b:2b:49:
                    69:57:a9:23:88:2c:91:4c:e6:67:2e:f9:f3:9a:bd:
                    1a:d0:a9:8b:e1:c7:b1:21:12:dd:19:15:de:98:63:
                    24:5c:04:e1:2c:26:90:26:f8:99:1d:54:18:30:44:
                    38:99:4b:36:2d
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BA:EB:78:63:88:9E:AA:F4:E6:03:60:4F:FE:79:1C:2C:96:EE:C7:E5
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:stage-mac.bcpapers.ca
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 12 11:33:37.908 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FF:8D:A0:24:65:3F:70:D7:8B:68:93:
                                3B:49:BD:70:EE:4D:44:1E:45:5E:25:5D:86:55:EB:16:
                                CC:32:68:5D:CF:02:20:5E:CC:BB:D8:E2:13:D0:AB:59:
                                24:CB:85:01:7F:FE:F3:C4:B4:AA:A9:65:A7:2F:86:64:
                                83:27:6A:E3:85:7B:B8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr 12 11:33:38.109 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F2:79:12:AA:D7:78:D4:C4:F3:85:68:
                                FA:B9:AD:DD:50:C9:0E:CD:77:60:45:D1:D2:41:F6:22:
                                2C:12:80:51:5B:02:21:00:F2:2E:6D:BA:E5:4A:93:2F:
                                A2:52:11:3C:F5:79:4C:10:5C:A5:F9:3B:46:25:09:94:
                                8C:C2:CB:DE:81:FD:52:88
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4b:48:fa:72:7a:5a:92:e3:36:44:02:51:ab:f1:14:d9:66:e5:
        50:50:a4:9e:41:14:d9:8e:1d:eb:e9:80:18:c8:5b:2b:5a:2d:
        c4:28:ee:c0:ee:a8:a1:34:d5:98:97:e6:9c:bf:56:84:8e:5d:
        bc:d6:fe:ac:30:9d:06:79:42:6e:e6:96:ee:d7:dd:33:bd:c8:
        5a:9d:3e:ad:3a:f6:73:42:90:4b:f2:8b:19:41:df:c0:69:e4:
        d9:d5:13:a0:5b:73:eb:e4:7d:43:3a:d6:b2:d1:cf:51:f8:9e:
        9d:d0:89:00:a7:a5:46:dd:d2:c7:68:fc:c1:a9:c1:63:30:2c:
        77:56:27:20:8d:fe:1f:ed:26:90:b8:cd:d8:25:30:da:ca:c5:
        a2:54:0d:2d:14:fc:08:b3:5e:8b:2c:86:dc:00:bc:fc:40:e0:
        7a:c7:76:91:32:81:ac:b3:52:9d:90:ee:51:04:00:48:b7:85:
        9f:7d:aa:02:11:f5:52:0d:f3:f0:3e:a7:f5:28:7d:1e:da:0d:
        d1:ad:ab:90:e6:3b:3e:1a:e7:71:7e:a9:cc:ed:22:6b:e6:4e:
        f0:b7:45:31:1d:c6:5c:2d:9f:3d:62:94:16:cb:b9:b7:75:6e:
        06:d4:f8:00:53:46:ec:47:b8:db:21:32:fe:8c:59:f6:1e:d3:
        5f:f6:be:bc

46.101.133.137

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1177860115 | 2024-04-30T09:21:16.813180
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-05-02T08:21:35.235966
80 / tcp

nginx1.18.0

1651973090 | 2024-05-01T19:33:12.832615
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

46.101.133.137

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1177860115 | 2024-04-30T09:21:16.813180 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-05-02T08:21:35.235966 80 / tcp

nginx1.18.0

1651973090 | 2024-05-01T19:33:12.832615 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1177860115 | 2024-04-30T09:21:16.813180
22 / tcp

1651973090 | 2024-05-02T08:21:35.235966
80 / tcp

1651973090 | 2024-05-01T19:33:12.832615
443 / tcp