GeneralInformation

Hostnames	s.abla.io tableau.abla.io 51-159-25-214.lb.fr-par.scw.cloud
Domains	abla.io scw.cloud
Country	France
City	Paris
Organization	Scaleway
ISP	SCALEWAY S.A.S.
ASN	AS12876

WebTechnologies

JavaScript frameworks

React

Reverse proxies

Nginx1.18.0

Web servers

Nginx1.18.0

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

-643989375 | 2024-04-24T09:57:20.364472

80 / tcp

HTTP/1.1 302 Found
content-length: 0
location: https://51.159.25.214/
cache-control: no-cache

801739930 | 2024-05-01T14:28:22.616312

443 / tcp

HTTP/1.1 200 OK
server: nginx/1.18.0
date: Wed, 01 May 2024 14:28:22 GMT
content-type: text/html
content-length: 4480
last-modified: Fri, 14 Jul 2023 07:51:49 GMT
etag: "64b0fe95-1180"
accept-ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:e1:be:7a:7e:da:5c:ed:b0:4f:a4:4a:98:84:11:e1:36:98
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 29 13:37:53 2024 GMT
            Not After : May 29 13:37:52 2024 GMT
        Subject: CN=tableau.abla.io
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d1:7f:6a:75:f4:bc:ad:53:61:e4:b8:f9:f5:97:
                    b5:83:d2:59:fc:a1:9b:18:5f:f5:a7:ac:33:1a:f7:
                    d5:a8:ed:d4:fc:d4:07:4b:18:11:15:9b:8c:8c:e9:
                    d5:71:bb:c6:ee:a7:3f:bf:bd:24:88:a2:bf:48:af:
                    46:73:88:fe:bc:84:5c:cf:87:f1:ce:32:e3:a4:e6:
                    60:bf:b7:6f:0e:97:6a:85:8a:a1:46:17:e1:c4:28:
                    db:7d:84:a9:ea:d1:08:40:56:5e:e9:e5:4b:f6:3b:
                    56:ee:1a:16:c0:12:de:3d:0e:c7:0b:14:6f:a1:24:
                    63:b0:5c:9d:17:8f:82:f2:7e:89:56:36:4c:6c:bf:
                    52:36:e9:c0:b1:7b:23:9b:4a:53:3b:54:5a:1e:a3:
                    43:05:bb:4d:ab:92:c1:2b:cb:6f:92:e3:bf:94:17:
                    8b:df:20:4c:44:92:eb:84:ac:06:ed:90:b3:16:67:
                    a5:a8:87:d9:2a:e3:6b:fb:a9:1f:92:8a:b1:52:4b:
                    09:3e:a0:e3:98:7a:a8:69:8a:16:cd:4f:c3:f8:f6:
                    e0:cb:ba:0b:5c:9e:63:d4:0b:19:4e:46:07:45:03:
                    49:a5:a5:53:b7:c8:c1:0e:de:85:af:01:34:04:ba:
                    4f:56:8c:aa:ce:8c:76:bc:5d:87:3f:8e:ae:10:fc:
                    81:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                FD:D8:53:90:A1:B9:48:FB:E7:43:2A:8F:00:A8:65:F8:54:AD:79:21
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:s.abla.io, DNS:tableau.abla.io
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 29 14:37:54.246 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:4D:03:32:11:B2:50:21:11:85:4F:E3:FF:
                                DB:19:E2:EC:E4:9D:DB:D1:B4:7A:74:06:13:F2:24:E6:
                                19:B8:55:46:02:21:00:91:6C:7F:4F:F0:A3:B5:B0:1A:
                                C5:55:67:23:3D:90:21:00:55:CB:E9:DF:8D:6F:33:B2:
                                53:00:61:38:73:3C:EA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 29 14:37:54.240 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:5F:13:1C:D4:C2:33:5F:CE:41:EE:FE:E0:
                                BF:A3:9E:FB:94:F9:EE:2B:21:82:98:8C:4A:EA:D6:D5:
                                0B:21:AD:27:02:20:79:65:E5:27:94:7E:43:DB:A3:B1:
                                F2:0F:4A:B1:FE:39:80:91:23:4A:32:1A:68:06:C1:C6:
                                66:A4:A0:62:EC:73
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        01:aa:a5:bb:e5:4e:47:ea:83:57:7b:48:12:a2:f3:ff:1f:7b:
        4c:e8:b7:cf:ed:79:2f:fe:03:01:53:ea:31:50:6a:9e:a1:6f:
        71:05:58:2d:71:c2:cb:e7:34:01:3b:64:fe:64:f0:04:9e:ff:
        0a:2d:48:16:93:36:a6:7c:c2:5d:a7:a4:86:66:16:67:a8:f7:
        da:d2:05:a2:1c:83:58:7e:f9:87:af:75:f5:d1:92:98:a0:aa:
        f6:74:c8:a1:88:01:f1:d7:4f:77:b9:b8:8f:1e:cc:c9:29:55:
        79:3b:fe:09:b0:1f:f1:49:d8:e0:73:40:1c:10:96:d8:86:96:
        1f:1e:34:4b:2d:02:67:3b:ac:f8:ae:17:7d:70:20:d0:07:c5:
        d6:6c:e2:29:11:bd:bb:d0:66:4c:d9:22:89:3e:d0:41:c9:03:
        87:9b:90:fe:a3:f1:26:ce:06:3c:7c:7e:20:97:02:8a:54:66:
        6c:2b:d7:b4:ef:10:00:83:fa:34:a8:a5:32:93:c1:f2:1d:cf:
        ac:d0:f2:83:dd:0d:ff:6b:4c:fb:bf:f2:45:99:84:2d:cb:e2:
        45:b2:23:dd:47:bf:7f:f0:57:c4:8d:6d:1e:ed:cc:81:39:a3:
        9b:ed:c3:0d:4d:90:99:fd:1b:c0:41:b5:27:dd:57:ef:66:0c:
        99:8b:dc:4a

51.159.25.214

Last Seen: 2024-05-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-643989375 | 2024-04-24T09:57:20.364472
80 / tcp

801739930 | 2024-05-01T14:28:22.616312
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

51.159.25.214

Last Seen: 2024-05-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-643989375 | 2024-04-24T09:57:20.364472 80 / tcp

801739930 | 2024-05-01T14:28:22.616312 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-643989375 | 2024-04-24T09:57:20.364472
80 / tcp

801739930 | 2024-05-01T14:28:22.616312
443 / tcp