GeneralInformation

Hostnames	api.kildetoftwine.dk static.89.139.9.5.clients.your-server.de
Domains	kildetoftwine.dk your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 4369 5672 33060

589765266 | 2024-04-13T21:41:02.688001

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 13 Apr 2024 21:41:02 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://api.kildetoftwine.dk/

869281729 | 2024-04-13T21:41:05.730175

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 13 Apr 2024 21:41:05 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:cb:30:fb:af:85:3c:9c:b2:26:44:fe:a0:40:cc:03:e0:45
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  9 23:53:05 2024 GMT
            Not After : Jul  8 23:53:04 2024 GMT
        Subject: CN=api.kildetoftwine.dk
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:aa:2c:7d:f8:f6:46:7d:b8:15:b0:1b:3d:27:29:
                    16:1f:40:57:38:17:ae:8f:91:81:cb:4a:ce:d4:78:
                    25:13:5d:02:cd:9f:ed:40:e5:6d:bb:bd:23:08:da:
                    9c:5f:18:67:66:73:af:19:0e:9f:ed:50:ff:c2:15:
                    94:17:45:cb:e9:1a:cc:d9:4c:a4:fe:27:42:42:7c:
                    cf:c4:f7:9f:b2:67:0e:72:61:bf:61:c2:4c:37:13:
                    72:3c:7b:56:c3:f3:92:1e:c7:c6:11:80:7b:eb:d9:
                    14:d3:4d:27:c0:d4:92:fb:30:33:0d:d7:da:4c:7c:
                    09:3d:40:e8:b2:f1:64:34:16:71:58:74:5c:5f:4e:
                    89:9c:97:59:01:b3:9b:2c:c8:3c:bb:76:70:68:84:
                    2f:59:bb:63:29:60:7b:45:3c:cb:10:21:d3:38:80:
                    ef:12:39:ae:25:53:fa:d3:21:b3:6c:6e:5c:d5:2c:
                    1b:6d:83:55:56:a3:98:fd:2a:0f:db:7e:c3:25:13:
                    4f:29:51:5a:9b:e2:91:df:f0:ba:8b:bc:8e:8d:b4:
                    64:6d:3e:e8:e1:d2:cb:3a:97:fa:59:58:6e:20:07:
                    53:0d:d6:69:db:f7:78:91:4e:6e:c5:47:89:3d:8f:
                    40:f8:e1:1d:06:62:6f:c0:cf:f9:e9:47:7c:b0:41:
                    f1:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                12:42:0F:12:EC:75:C1:2E:41:E0:96:19:AF:7B:9B:7A:19:79:A1:42
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.kildetoftwine.dk
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 10 00:53:05.616 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0D:EC:A8:F3:B1:35:53:BB:65:10:4E:B5:
                                D7:78:B3:AA:67:2C:E6:77:84:67:E5:B8:AE:7A:3F:63:
                                00:78:5B:18:02:21:00:DD:A0:4F:E9:27:60:CD:D4:DC:
                                EE:0D:02:AB:FD:19:D6:37:15:11:41:AD:7E:B4:87:84:
                                63:4B:71:ED:37:FD:C5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 10 00:53:05.652 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FD:88:9B:6C:26:75:1A:32:9F:40:D9:
                                A4:AA:18:B4:22:4D:4B:D4:2A:97:68:4D:F2:47:E1:3C:
                                BD:26:1F:F1:81:02:21:00:80:FF:A9:4C:CF:C2:2A:0E:
                                33:FC:EC:90:8E:03:43:89:8E:FA:3B:94:A3:9E:52:1F:
                                F1:0C:69:07:7C:25:E3:CE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        20:41:8f:ca:97:94:6b:22:ea:59:39:cc:3b:57:d2:30:58:84:
        6c:89:39:c2:14:97:3e:52:d4:02:82:35:fd:0c:7c:ff:ba:5d:
        41:93:8c:e1:3f:68:6e:d7:76:bf:3d:ce:1d:b8:93:60:35:8f:
        5c:bc:38:42:ea:74:66:d0:9b:60:0f:95:02:48:c1:e4:cf:39:
        d0:01:2d:98:f2:08:6b:d2:b8:21:3c:d5:20:3f:55:60:a9:55:
        a7:39:60:d7:b9:90:a6:33:3a:8d:e2:af:93:e9:a0:86:35:02:
        2c:40:a9:38:c2:0c:d7:e5:89:e4:d8:e8:ef:1b:7d:4d:94:e1:
        e1:2d:38:57:03:0d:6e:f9:56:9c:42:b3:94:0e:30:c9:73:59:
        e5:d8:e1:72:fd:46:06:bc:b4:64:45:34:5c:b8:f1:dc:53:6d:
        f3:1f:1f:19:ca:58:00:40:ba:ee:40:47:c7:8d:47:b0:df:fc:
        b8:c5:c0:2c:ba:0a:20:0a:fc:44:0d:61:30:3b:ce:fb:48:60:
        e2:99:71:2c:7d:af:59:57:2d:87:47:89:68:34:d8:22:0c:dc:
        9c:cc:fc:d0:01:78:dc:a5:74:04:b6:e1:40:1a:a8:30:86:d6:
        a9:a6:8e:a1:5f:4a:09:15:03:da:98:73:c7:06:ef:09:29:17:
        a0:7d:ec:8f

50704379 | 2024-04-17T00:13:13.495296

4369 / tcp

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

-1653901229 | 2024-04-17T00:13:14.813229

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.11.13
  Platform: Erlang/OTP 25.3
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

-795948505 | 2024-04-13T16:01:35.654485

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

5.9.139.89

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

589765266 | 2024-04-13T21:41:02.688001
80 / tcp

nginx1.18.0

869281729 | 2024-04-13T21:41:05.730175
443 / tcp

nginx1.18.0

50704379 | 2024-04-17T00:13:13.495296
4369 / tcp

Erlang Port Mapper Daemon

-1653901229 | 2024-04-17T00:13:14.813229
5672 / tcp

RabbitMQ3.11.13

-795948505 | 2024-04-13T16:01:35.654485
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

5.9.139.89

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

589765266 | 2024-04-13T21:41:02.688001 80 / tcp

nginx1.18.0

869281729 | 2024-04-13T21:41:05.730175 443 / tcp

nginx1.18.0

50704379 | 2024-04-17T00:13:13.495296 4369 / tcp

Erlang Port Mapper Daemon

-1653901229 | 2024-04-17T00:13:14.813229 5672 / tcp

RabbitMQ3.11.13

-795948505 | 2024-04-13T16:01:35.654485 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

589765266 | 2024-04-13T21:41:02.688001
80 / tcp

869281729 | 2024-04-13T21:41:05.730175
443 / tcp

50704379 | 2024-04-17T00:13:13.495296
4369 / tcp

-1653901229 | 2024-04-17T00:13:14.813229
5672 / tcp

-795948505 | 2024-04-13T16:01:35.654485
33060 / tcp