GeneralInformation

Hostnames	245-117-158-51.instances.scw.cloud
Domains	scw.cloud
Country	France
City	Paris
Organization	Scaleway
ISP	SCALEWAY S.A.S.
ASN	AS12876

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-46118

RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API and cause target node to be terminated by an "out-of-memory killer"-like mechanism. This vulnerability has been patched in versions 3.11.24 and 3.12.7.

CVE-2022-31008

RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker (link) state. The encryption key used to encrypt the URI was seeded with a predictable secret. This means that in case of certain exceptions related to Shovel and Federation plugins, reasonably easily deobfuscatable data could appear in the node log. Patched versions correctly use a cluster-wide secret for that purpose. This issue has been addressed and Patched versions: `3.10.2`, `3.9.18`, `3.8.32` are available. Users unable to upgrade should disable the Shovel and Federation plugins.

OpenPorts

22 4369 5672

336849363 | 2024-05-14T16:50:08.174250

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.6
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDKOeI+3+MNeSFh7LH9E1LMLqiln/AXhS5gC86esci4nkRv
2T85JfHtcGnfM/EaqYvcm+ZB483IoVSNvXFv7eVZLUTVboElBnFUsTr+G39C6zpv2LnzGQgWehNT
oG/2y8bWZTbWR2gjU44GhKP2TJdIIGLfrHcfGzmxcM9fhLW2+qorVRQyKEZM0l+DbyMhluPs9rmW
7iGZ0q+2zY62XSpbZRT5T3CkSxcdpIDF0BKtjrAlNWn+XunkcJiSIPZlqocM16js6LVdpWwjOyk9
/OmXfkNHMfgm4yb81r/c79/SD4APnKqqcrVeY+6coSqxuOxTT7vmOE9X6dc6KWzShktN
Fingerprint: b5:32:21:b4:31:4c:f5:58:fc:20:f5:4e:f6:af:6b:e0

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

50704379 | 2024-05-30T17:56:20.479767

4369 / tcp

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

-616425431 | 2024-06-01T09:26:17.359965

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.9.13
  Platform: Erlang/OTP 24.2.2
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

51.158.117.245

Last Seen: 2024-06-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

336849363 | 2024-05-14T16:50:08.174250
22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.6

50704379 | 2024-05-30T17:56:20.479767
4369 / tcp

Erlang Port Mapper Daemon

-616425431 | 2024-06-01T09:26:17.359965
5672 / tcp

RabbitMQ3.9.13

Products

Pricing

Contact Us

51.158.117.245

Last Seen: 2024-06-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

336849363 | 2024-05-14T16:50:08.174250 22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.6

50704379 | 2024-05-30T17:56:20.479767 4369 / tcp

Erlang Port Mapper Daemon

-616425431 | 2024-06-01T09:26:17.359965 5672 / tcp

RabbitMQ3.9.13

Products

Pricing

Contact Us

336849363 | 2024-05-14T16:50:08.174250
22 / tcp

50704379 | 2024-05-30T17:56:20.479767
4369 / tcp

-616425431 | 2024-06-01T09:26:17.359965
5672 / tcp