GeneralInformation

Hostnames	mbn-1.com static.224.22.12.49.clients.your-server.de
Domains	mbn-1.com your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

64797515 | 2024-05-04T04:45:32.948742

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.19.6
Date: Sat, 04 May 2024 04:45:07 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://49.12.22.224/

366729008 | 2024-05-09T20:13:03.911477

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.19.6
Date: Thu, 09 May 2024 20:12:38 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 289
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:1d:df:7f:89:88:76:02:c0:bb:aa:34:b7:62:7f:0c:80:ca
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 23 19:07:43 2024 GMT
            Not After : Jul 22 19:07:42 2024 GMT
        Subject: CN=mbn-1.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (384 bit)
                pub:
                    04:bf:13:d7:8f:13:b2:00:40:38:74:1c:af:b1:bf:
                    79:0c:fc:53:05:5e:a0:e7:25:cd:55:a7:91:c1:aa:
                    97:a1:d5:74:da:47:7d:08:a6:1c:71:86:10:8c:af:
                    3e:2d:22:82:cd:99:cb:1a:04:37:b5:d0:43:9f:6e:
                    b6:a9:a1:db:45:e6:a3:ab:59:b6:24:9a:7e:da:5f:
                    de:41:f6:76:05:89:19:ea:fb:90:1f:8e:6c:30:6e:
                    5e:3a:20:4f:1d:bd:40
                ASN1 OID: secp384r1
                NIST CURVE: P-384
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8D:6B:B3:B5:11:2F:01:E2:90:98:5E:39:53:4F:AD:8B:D5:E6:D4:98
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.mbn-1.com, DNS:mbn-1.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 23 20:07:43.235 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:86:B5:C2:FC:1A:E9:8B:3B:96:19:50:
                                D6:33:89:F4:4F:22:29:CD:7F:2F:C4:EF:C5:FF:3F:99:
                                45:09:97:66:73:02:21:00:B4:F1:59:95:51:45:95:57:
                                50:6D:FC:EB:51:18:83:62:74:5B:C3:69:07:3C:91:44:
                                8D:3D:AE:D0:9F:A9:81:6F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 23 20:07:43.211 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:26:E1:8F:BA:8C:41:23:EC:D8:C5:D1:0E:
                                18:14:C2:1D:A7:2C:B0:5C:B6:E6:C4:AD:46:1D:B0:87:
                                4D:96:DA:E8:02:21:00:B0:0C:2B:35:D1:AE:DC:9F:B4:
                                BE:C6:C1:6B:01:52:37:D0:DE:36:E0:C5:AB:DB:CB:89:
                                74:2D:39:85:54:FD:01
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        97:9a:2b:f2:b9:f6:34:71:fd:61:fe:e1:86:4a:b3:c9:05:f6:
        42:96:70:f1:ec:4b:c5:f3:b0:49:be:5b:de:4a:9e:7e:09:34:
        e9:0f:1c:be:52:4a:b8:5e:01:7c:80:07:4b:0d:e3:6c:1a:57:
        a2:e7:60:12:f8:55:b2:86:27:88:d4:20:83:e2:f6:01:bb:07:
        a5:22:e6:5b:04:71:83:36:87:cd:2c:00:9c:71:38:e5:07:82:
        eb:51:e9:d4:6f:6a:4f:ad:fd:41:3d:55:47:67:58:80:fa:85:
        eb:57:cc:cf:46:bb:b2:db:b5:0e:14:0a:80:10:dc:f2:83:ad:
        a5:a1:10:f8:05:9a:9a:4b:1f:f2:4b:ee:3b:6e:a1:19:08:17:
        0a:07:e5:bc:ef:61:10:33:e4:35:dd:a2:17:0e:a3:55:91:5a:
        d0:99:aa:9c:72:e8:13:a7:c0:2c:04:7e:41:4d:f3:b0:b2:da:
        0a:7d:95:ed:44:26:6d:e8:e4:d3:ba:e2:d6:87:21:e3:93:31:
        f3:2b:14:12:48:43:88:03:74:0a:69:e8:91:a9:fb:ec:dd:47:
        62:42:7d:2d:2d:52:0e:1b:16:a7:44:ae:99:6d:c3:78:ff:cf:
        4a:1f:a6:31:f9:04:5e:f7:3d:9e:40:e5:c3:54:e6:99:0b:56:
        95:4c:98:a1

49.12.22.224

Last Seen: 2024-05-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

64797515 | 2024-05-04T04:45:32.948742
80 / tcp

nginx1.19.6

366729008 | 2024-05-09T20:13:03.911477
443 / tcp

nginx1.19.6

Products

Pricing

Contact Us

49.12.22.224

Last Seen: 2024-05-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

64797515 | 2024-05-04T04:45:32.948742 80 / tcp

nginx1.19.6

366729008 | 2024-05-09T20:13:03.911477 443 / tcp

nginx1.19.6

Products

Pricing

Contact Us

64797515 | 2024-05-04T04:45:32.948742
80 / tcp

366729008 | 2024-05-09T20:13:03.911477
443 / tcp