GeneralInformation

Cloud Provider	Tencent Cloud
Country	China
City	Beijing
Organization	Tencent cloud computing (Beijing) Co., Ltd.
ISP	Shenzhen Tencent Computer Systems Company Limited
ASN	AS45090
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 3306 8088 8089 8090

1884307710 | 2024-04-26T13:27:33.943741

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBAkdV/PKLeNpFFRjrrEl0VVy
+4YIa4T4jCZccUzQfjjf9obvAHGeacDdbtJkVArN9NbMMwOQT25syW2hHqwAQWI=
Fingerprint: e4:9e:02:bc:17:ba:cd:38:9d:a1:cb:e6:93:e9:4f:5f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

67574252 | 2024-05-11T05:40:48.684058

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 05:40:48 GMT
Content-Type: text/html
Content-Length: 662
Last-Modified: Sun, 07 Apr 2024 06:24:36 GMT
Connection: keep-alive
ETag: "66123c24-296"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes

2052354476 | 2024-05-08T03:27:16.588363

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.35-0ubuntu0.22.04.1
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: caching_sha2_password

483507827 | 2024-05-03T05:54:12.763662

8088 / tcp

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 05:54:12 GMT
Server: acl
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Length: 14
Connection: Keep-Alive

-1903314955 | 2024-05-12T22:20:28.980783

8089 / tcp

HTTP/1.1 401 Authorization Required
Date: Sun, 12 May 2024 22:20:28 GMT
Server: acl
Access-Control-Allow-Origin: *
Content-Type: text/xml; charset=utf-8
Content-Length: 12
Connection: Close

invalid sid!

1651973090 | 2024-05-15T08:22:49.875542

8090 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 15 May 2024 08:22:49 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

49.232.143.40

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1884307710 | 2024-04-26T13:27:33.943741
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

67574252 | 2024-05-11T05:40:48.684058
80 / tcp

nginx1.18.0

2052354476 | 2024-05-08T03:27:16.588363
3306 / tcp

MySQL8.0.35-0ubuntu0.22.04.1

483507827 | 2024-05-03T05:54:12.763662
8088 / tcp

-1903314955 | 2024-05-12T22:20:28.980783
8089 / tcp

1651973090 | 2024-05-15T08:22:49.875542
8090 / tcp

nginx1.18.0

Products

Pricing

Contact Us

49.232.143.40

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1884307710 | 2024-04-26T13:27:33.943741 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

67574252 | 2024-05-11T05:40:48.684058 80 / tcp

nginx1.18.0

2052354476 | 2024-05-08T03:27:16.588363 3306 / tcp

MySQL8.0.35-0ubuntu0.22.04.1

483507827 | 2024-05-03T05:54:12.763662 8088 / tcp

-1903314955 | 2024-05-12T22:20:28.980783 8089 / tcp

1651973090 | 2024-05-15T08:22:49.875542 8090 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1884307710 | 2024-04-26T13:27:33.943741
22 / tcp

67574252 | 2024-05-11T05:40:48.684058
80 / tcp

2052354476 | 2024-05-08T03:27:16.588363
3306 / tcp

483507827 | 2024-05-03T05:54:12.763662
8088 / tcp

-1903314955 | 2024-05-12T22:20:28.980783
8089 / tcp

1651973090 | 2024-05-15T08:22:49.875542
8090 / tcp