GeneralInformation

Hostnames	leadgeneration.mywire.org a243d783-54df-43dd-ae5d-f531f6507696.nl-ams-1.baremetal.scw.cloud
Domains	mywire.org scw.cloud
Country	Netherlands
City	Haarlem
Organization	Scaleway - Amsterdam, Netherlands
ISP	SCALEWAY S.A.S.
ASN	AS12876
Operating System	Ubuntu

WebTechnologies

Programming languages

Python

Web servers

Uvicorn

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

53 80 443 3000 8000

-2116973816 | 2024-05-11T01:44:47.977582

53 / tcp

9.18.18-0ubuntu0.22.04.2-Ubuntu
Resolver name: em-trusting-boyd

-2116973816 | 2024-05-20T06:09:33.500861

53 / udp

9.18.18-0ubuntu0.22.04.2-Ubuntu
Resolver name: em-trusting-boyd

1651973090 | 2024-05-20T21:40:04.765180

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 20 May 2024 21:40:04 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 07 Feb 2024 17:14:42 GMT
Connection: keep-alive
ETag: "65c3ba82-264"
Accept-Ranges: bytes

-1382787123 | 2024-05-16T21:34:11.557273

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 16 May 2024 21:34:10 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 14
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:f6:73:38:9e:e2:06:a5:4c:d1:95:b0:90:75:fb:74:75:63
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  7 19:20:50 2024 GMT
            Not After : Jul  6 19:20:49 2024 GMT
        Subject: CN=leadgeneration.mywire.org
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cd:e8:0a:67:c8:bb:6f:0c:05:e0:66:f0:32:66:
                    f0:e5:20:f3:06:f7:be:ca:5d:f5:61:bd:d7:46:4f:
                    7d:4a:b8:a1:d3:04:d1:62:32:81:72:05:b7:12:a7:
                    77:b3:a2:73:0f:a9:e1:54:e7:d8:33:d3:89:75:5c:
                    07:d9:af:87:e7:c0:e5:a8:4a:28:94:0c:ee:3e:6d:
                    85:b5:9c:5f:63:13:73:c7:08:fd:8d:f4:28:ef:80:
                    9e:40:be:19:14:e9:79:5b:db:59:f4:3f:e6:5b:b7:
                    3c:71:d4:be:84:39:c2:c3:4b:7a:31:ca:fd:c9:51:
                    8d:ae:4b:46:e2:0a:6b:50:85:e8:8a:16:e3:10:8f:
                    d6:12:a4:42:a5:5e:c6:89:e1:12:75:12:3b:12:6c:
                    33:1a:a6:e0:4d:82:69:ce:ec:63:d1:e7:05:61:f9:
                    f0:6e:43:9b:de:6c:4c:83:41:01:6a:96:df:77:c8:
                    d9:93:13:5d:a1:e0:72:d3:ae:55:e7:3f:d7:75:2c:
                    41:df:0b:b8:d2:8c:eb:58:a9:7e:7e:01:ea:2c:cd:
                    00:8c:f4:42:24:f5:b4:86:ef:8b:2c:c6:4d:88:68:
                    30:c5:88:8e:23:89:11:7f:94:84:d5:7e:c0:4d:f7:
                    2e:c6:7b:65:50:67:28:87:30:b8:57:62:ef:5f:8a:
                    06:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                00:1C:E8:E0:28:03:E4:19:C7:5E:5B:E4:47:03:97:C3:70:2C:A5:0F
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:leadgeneration.mywire.org
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  7 20:20:50.178 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:50:63:65:C6:49:2D:0A:AF:B1:4A:98:04:
                                77:5D:B1:21:0D:76:D6:8A:17:0C:24:A5:E4:13:1E:06:
                                24:1D:BB:4A:02:20:0F:B2:3C:AA:CF:9F:3A:7D:B8:81:
                                82:A7:6D:DD:04:E9:D8:D3:AF:3C:C8:19:BA:91:77:17:
                                9D:53:65:40:63:1A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr  7 20:20:50.213 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C1:13:EF:5F:B3:A0:08:4E:23:92:B4:
                                2F:D0:A2:37:90:71:00:53:7C:E4:9C:85:15:C4:1D:5F:
                                D9:53:66:9D:F8:02:21:00:8B:F5:E9:8D:BD:46:BE:12:
                                E7:8B:30:BD:B5:81:D3:C8:7A:A8:3C:B6:09:98:79:15:
                                D6:26:01:35:59:8B:75:54
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a9:2d:0f:25:04:c7:4a:09:2f:ba:ff:f6:e1:29:b7:8c:43:5b:
        a6:31:5a:c5:16:05:f1:45:51:af:0a:7d:8c:84:82:89:7c:7d:
        98:6a:cf:4b:3e:01:ec:06:3f:38:bf:dc:34:86:25:03:0b:e7:
        7c:2c:9f:0b:c8:9f:b5:89:d6:43:90:f9:89:af:c0:56:ef:e7:
        aa:4a:b5:e8:cf:25:fa:78:61:5f:3f:3f:7e:5b:23:8c:6d:06:
        36:49:38:8b:c2:1d:66:db:11:ec:09:41:fd:f3:cf:93:4b:86:
        dd:43:85:0c:8c:80:d9:64:23:3a:94:76:c1:db:42:3e:fd:f4:
        d5:b2:e3:14:52:8b:d7:dd:70:4f:03:6b:b6:7a:44:91:4a:ea:
        8d:23:a8:b5:5a:3f:7d:fd:0c:68:08:e5:d7:95:11:e2:2c:b6:
        f1:85:0b:f3:a9:ff:c2:7f:37:b9:67:8b:d2:a9:0c:59:b6:e5:
        f1:27:ea:c7:44:09:e2:e1:d9:b1:83:5f:65:4d:59:96:a4:bd:
        d8:7d:aa:4d:42:b7:c5:f9:91:6e:b1:64:cc:67:d3:5d:a5:d2:
        48:4b:97:1f:c9:cd:cc:f0:a1:a8:f2:2d:f1:da:f2:5d:00:9f:
        83:48:5c:50:15:90:05:c0:e8:79:f1:0c:fe:99:d1:f8:72:17:
        7d:d3:cd:52

246342327 | 2024-05-20T19:39:22.176176

3000 / tcp

HTTP/1.1 200 OK
Cache-Control: no-store
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
X-Frame-Options: deny
X-Xss-Protection: 1; mode=block
Date: Mon, 20 May 2024 19:39:22 GMT
Transfer-Encoding: chunked

-166216652 | 2024-05-20T16:39:30.798620

8000 / tcp

HTTP/1.1 404 Not Found
date: Mon, 20 May 2024 16:39:29 GMT
server: uvicorn
content-length: 22
content-type: application/json

51.158.200.152

Last Seen: 2024-05-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2116973816 | 2024-05-11T01:44:47.977582
53 / tcp

-2116973816 | 2024-05-20T06:09:33.500861
53 / udp

1651973090 | 2024-05-20T21:40:04.765180
80 / tcp

nginx1.18.0

-1382787123 | 2024-05-16T21:34:11.557273
443 / tcp

nginx1.18.0

246342327 | 2024-05-20T19:39:22.176176
3000 / tcp

Grafana (Open Source)10.0.10

-166216652 | 2024-05-20T16:39:30.798620
8000 / tcp

Products

Pricing

Contact Us

51.158.200.152

Last Seen: 2024-05-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2116973816 | 2024-05-11T01:44:47.977582 53 / tcp

-2116973816 | 2024-05-20T06:09:33.500861 53 / udp

1651973090 | 2024-05-20T21:40:04.765180 80 / tcp

nginx1.18.0

-1382787123 | 2024-05-16T21:34:11.557273 443 / tcp

nginx1.18.0

246342327 | 2024-05-20T19:39:22.176176 3000 / tcp

Grafana (Open Source)10.0.10

-166216652 | 2024-05-20T16:39:30.798620 8000 / tcp

Products

Pricing

Contact Us

-2116973816 | 2024-05-11T01:44:47.977582
53 / tcp

-2116973816 | 2024-05-20T06:09:33.500861
53 / udp

1651973090 | 2024-05-20T21:40:04.765180
80 / tcp

-1382787123 | 2024-05-16T21:34:11.557273
443 / tcp

246342327 | 2024-05-20T19:39:22.176176
3000 / tcp

-166216652 | 2024-05-20T16:39:30.798620
8000 / tcp