GeneralInformation

Hostnames	wirwettenpartners.com static.5.114.9.5.clients.your-server.de
Domains	wirwettenpartners.com your-server.de
Country	Germany
City	Falkenstein
Organization	Wir-Wetten Limited
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 9100

1732194152 | 2024-04-03T19:22:08.244632

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDRxuVdXhWk7w04RGL3UmvrpMdhChQSFhpNYyxXofbvp7vh
q361t5F8lRpgLIJzaWC2r2GL+48SadLqD+VM7JWhTM0nUH/zW4jTx1u9J5ppWDuu+XMPkglcfEMk
03TA2UCJNJT21YK3wj/LoQvwr7J94XZ1LLEpE2nRDyMJIrQothZYcZEIVYnYnGtfZ0H1ITrdfCTW
CReE3icvOdmjpL7kMvV5O0OTo+iKBV044IkNd55HDFrsaeJF36AqlfFa5Y0aSR+X5HL6iukI9x6p
ZDhh8gcSwq+M9BzjAEKXbIsdn4gusEUpfY+JPX2K+MUcxr2lwDsWr3+yqUYrGf7h0UOGTLidKtOP
FyiSp9CbQdZ4UtwDAf6Kli0L/zG8/zj0I75FBUMLBZpQVwnnnhkg6IfyxpWIsh4BmH6ESWmS8rsw
OliWyV8ZbjO9ESnZne83xYZ1jPTRqq5Qs95wAkTHP+B6Nb+nRLYfFZ/UhadyrLu/mrIUmz7JFaK+
t1ZbTZ9KqeE=
Fingerprint: e2:86:30:8f:e4:b3:48:03:21:c0:a5:b1:0c:48:e0:c3

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-01T15:13:44.728178

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 01 May 2024 15:13:44 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

677579724 | 2024-04-25T19:11:38.062362

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 25 Apr 2024 19:11:37 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:32:e7:8c:31:00:b2:ff:8f:0f:9c:ee:51:49:cb:f0:b1:17
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 27 09:30:54 2024 GMT
            Not After : May 27 09:30:53 2024 GMT
        Subject: CN=*.wirwettenpartners.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cc:e1:ff:e1:db:48:52:37:4d:fa:48:01:43:12:
                    d1:a7:2e:44:eb:a1:67:1b:93:37:d7:b6:32:3f:ca:
                    70:48:74:37:58:48:7b:c6:47:6f:f8:8d:f6:ce:f5:
                    5e:17:23:92:1d:de:44:35:1a:58:e1:05:5a:22:8e:
                    a6:7f:92:2c:46:fa:e1:61:fc:26:c2:88:49:ab:60:
                    65:56:1b:f8:1a:cb:19:73:10:5d:ea:3c:c2:ee:d7:
                    77:96:61:16:2a:bc:79:b7:19:13:e7:3f:38:7e:fc:
                    da:cf:d5:31:9b:84:fc:76:e6:27:0c:ec:e6:65:c1:
                    e9:8c:c9:a4:64:71:b9:a9:8f:9a:72:aa:65:64:7b:
                    43:63:61:6e:08:1d:71:1d:8c:d1:b9:b2:a6:d1:24:
                    f0:a3:24:08:9b:9f:9c:73:88:aa:0c:8c:47:56:00:
                    5c:a6:74:6e:f6:2b:70:a6:03:70:62:16:d9:fa:f2:
                    59:47:c3:5b:74:ee:f8:72:72:70:97:74:99:e7:0e:
                    27:6a:10:0d:60:4a:98:f2:ce:22:78:8a:52:42:5d:
                    fd:14:4e:f3:eb:be:fd:4e:3d:8e:29:a7:c8:62:ff:
                    6e:ad:1f:9d:2b:67:17:c5:a0:2b:50:92:a7:b5:51:
                    d9:21:97:66:6c:8b:5a:4d:01:88:13:e7:82:36:24:
                    30:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                5C:6C:2F:2A:4C:46:04:09:2F:AA:B7:42:6D:FD:BB:E6:FD:13:D6:76
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.wirwettenpartners.com, DNS:wirwettenpartners.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 27 10:30:54.638 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9E:BF:05:8B:A7:6F:69:FF:18:2A:B2:
                                99:CB:E8:C6:D7:6A:70:CE:0B:E7:6E:CE:09:8B:BF:51:
                                AF:54:F0:D4:AD:02:20:57:A5:28:4C:42:4A:E0:F0:B8:
                                B6:44:D8:BF:1F:06:F1:8F:A3:BE:45:89:EE:EC:FF:04:
                                98:28:E0:08:B7:F8:AD
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Feb 27 10:30:55.241 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E5:36:0F:65:79:92:F1:86:96:93:99:
                                BC:2D:B4:8C:65:36:23:CB:9A:B4:58:C0:C4:AE:C7:93:
                                B7:2F:45:A0:A4:02:21:00:BE:88:C5:51:52:D9:FD:BF:
                                1F:B3:78:A4:30:4A:69:4C:53:C4:ED:46:69:F5:9E:E4:
                                B7:1C:F1:9B:7B:FB:FF:9E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        64:18:3c:b6:49:25:42:fc:61:b8:9a:64:23:68:42:29:ed:11:
        fd:73:9a:09:01:6f:8a:e5:27:9f:b0:a7:78:6f:0d:ab:4f:b6:
        01:f8:59:db:9f:3c:45:e8:f9:4d:92:4b:c5:36:58:3a:9e:cd:
        45:a1:b5:65:2e:6f:4e:1f:22:bc:4d:95:d3:a1:d1:2e:ce:2e:
        3e:1c:e4:1d:f6:ba:82:03:10:dc:c7:04:ca:eb:e7:70:43:ed:
        09:d9:1f:bc:95:af:3f:9c:d2:ac:3a:94:d9:26:34:d7:43:25:
        45:8e:06:a1:a3:57:19:fb:1d:a9:56:99:dd:51:68:41:40:1e:
        9b:52:11:08:ff:3a:4e:06:9e:ad:27:4b:82:2a:85:86:89:0c:
        41:aa:c1:bd:f2:a2:5a:0d:80:68:9b:7b:00:0f:64:ad:57:f2:
        d5:7b:ce:d5:1d:82:91:a4:59:77:b1:be:f6:91:12:64:77:3b:
        40:2c:27:1e:ad:d3:4c:99:ef:e3:8a:4e:37:fc:45:56:ca:9a:
        39:1b:c7:57:97:37:f4:f7:de:38:22:62:ec:6b:76:e4:ef:db:
        45:38:54:dd:ce:0e:62:f2:4b:54:77:bc:cd:dc:45:4a:79:7c:
        d9:e9:1c:4d:00:d9:64:fb:7b:9b:2b:84:4f:62:41:4e:46:5a:
        2b:8b:ad:c0

441980573 | 2024-04-05T10:04:43.563166

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: debian/sid
    goversion: go1.13.8
    revision: 0.18.1+ds-2ubuntu0.1
    version: 0.18.1+ds
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: ww3x-wp-300
    release: 5.10.0-27-amd64
    sysname: Linux
    version: #1 SMP Debian 5.10.205-2 (2023-12-31)
  node_network_info:
    lo:
      address: 00:00:00:00:00:00
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    eth1:
      address: aa:fe:20:13:d0:c2
      broadcast: ff:ff:ff:ff:ff:ff
      device: eth1
      duplex: full
      operstate: up
    eth0:
      address: 66:ac:1f:82:49:1a
      broadcast: ff:ff:ff:ff:ff:ff
      device: eth0
      duplex: full
      operstate: up

MAC Addresses

66:AC:1F:82:49:1A
    Unknown
AA:FE:20:13:D0:C2
    Unknown

5.9.114.5

Last Seen: 2024-05-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1732194152 | 2024-04-03T19:22:08.244632
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-01T15:13:44.728178
80 / tcp

nginx1.18.0

677579724 | 2024-04-25T19:11:38.062362
443 / tcp

nginx1.18.0

441980573 | 2024-04-05T10:04:43.563166
9100 / tcp

Prometheus Node Exporter0.18.1+ds

Products

Pricing

Contact Us

5.9.114.5

Last Seen: 2024-05-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1732194152 | 2024-04-03T19:22:08.244632 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-01T15:13:44.728178 80 / tcp

nginx1.18.0

677579724 | 2024-04-25T19:11:38.062362 443 / tcp

nginx1.18.0

441980573 | 2024-04-05T10:04:43.563166 9100 / tcp

Prometheus Node Exporter0.18.1+ds

Products

Pricing

Contact Us

1732194152 | 2024-04-03T19:22:08.244632
22 / tcp

677579724 | 2024-05-01T15:13:44.728178
80 / tcp

677579724 | 2024-04-25T19:11:38.062362
443 / tcp

441980573 | 2024-04-05T10:04:43.563166
9100 / tcp