GeneralInformation

Hostnames	catchall.cryptoweb.fr hst103-hperf.cryptoweb.fr
Domains	cryptoweb.fr
Country	France
City	Strasbourg
Organization	OVH SAS
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

1000842813 | 2024-04-17T03:41:19.010333

80 / tcp

HTTP/1.1 418 
Server: nginx/1.18.0
Date: Wed, 17 Apr 2024 03:41:18 GMT
Content-Type: text/html
Content-Length: 834
ETag: "6077ee6c-342"

1000842813 | 2024-04-23T02:26:49.042806

443 / tcp

HTTP/1.1 418 
Server: nginx/1.18.0
Date: Tue, 23 Apr 2024 02:26:48 GMT
Content-Type: text/html
Content-Length: 834
Connection: keep-alive
ETag: "6077ee6c-342"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:70:13:36:e5:a0:5a:33:a0:d5:34:25:f2:fa:6b:4c:07:6f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 23 20:59:48 2024 GMT
            Not After : Jun 21 20:59:47 2024 GMT
        Subject: CN=catchall.cryptoweb.fr
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cb:53:ba:d3:5e:68:74:26:9d:43:76:ce:ab:67:
                    1c:73:55:db:77:26:15:aa:94:d4:db:8f:7e:f9:6d:
                    1b:fe:5d:9a:47:58:07:8d:81:97:64:e7:55:79:2e:
                    ec:d3:cf:72:e3:04:b3:9b:28:81:1c:58:a5:9f:21:
                    6e:cb:3d:9a:da:fd:d4:11:b0:8b:7c:74:1c:ce:31:
                    26:d5:b4:86:8b:70:62:f3:46:f1:88:b1:fa:03:28:
                    88:d8:3f:7f:82:19:20:39:fa:cd:e2:20:58:a4:43:
                    e8:c2:2c:8d:87:36:87:ce:82:f7:ae:d0:44:5f:7e:
                    6d:d5:b2:9d:b0:86:fc:92:db:bb:13:cf:f6:21:e2:
                    30:d6:79:a8:d1:dc:68:dc:1b:8f:aa:f4:77:7e:a6:
                    d1:29:e5:c1:70:9b:bc:02:ad:e4:60:c5:78:7d:ff:
                    ac:70:f4:46:1c:70:73:20:2f:44:a8:50:68:4d:49:
                    b7:cc:29:24:f9:6b:25:c2:37:c3:1f:40:2f:76:82:
                    8b:61:dd:eb:e8:e3:1d:e4:97:02:30:c7:64:31:1a:
                    17:62:45:96:10:53:32:83:b3:15:2e:e1:5a:c3:6e:
                    ad:80:cf:e4:7d:2c:8d:11:90:e8:ef:d4:c5:8f:16:
                    c1:ac:48:65:9f:3a:f3:85:05:e2:55:d3:bf:35:bb:
                    f2:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                75:FF:F0:1D:F9:83:8E:71:C6:BA:1F:83:DC:E7:00:38:49:76:DE:56
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:catchall.cryptoweb.fr
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 23 21:59:48.398 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:1A:9B:E5:BB:50:D9:5D:1C:4B:16:44:38:
                                1D:34:04:E3:54:15:88:0B:5F:35:51:B0:EF:9D:E4:E9:
                                5D:BA:C9:2B:02:21:00:AD:6D:C3:BC:DA:61:5F:33:75:
                                57:56:9C:9F:AD:80:6E:25:94:A0:1C:D4:07:76:C7:05:
                                F5:68:D3:31:09:DA:E3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 23 21:59:48.391 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C9:8B:0B:83:55:BB:C2:B1:E8:39:19:
                                55:29:95:85:99:8D:83:F3:67:4D:0E:51:1B:BF:8B:CD:
                                08:56:07:14:38:02:20:56:C9:D7:1F:06:16:A2:DF:CB:
                                2D:D5:80:9E:B1:53:B4:49:FC:22:5E:DB:D6:C3:65:1E:
                                33:8C:3A:92:17:C8:C5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b4:a4:04:e8:c5:84:c1:91:fe:92:43:17:6f:19:d9:bb:6c:20:
        57:98:2f:09:1e:b9:8e:a1:a4:bf:d0:d0:3b:e3:8f:d2:34:35:
        74:66:54:7b:76:2a:82:e4:60:2f:4c:bf:04:31:e6:06:0d:82:
        4d:43:97:d5:72:7e:44:96:fc:62:7c:db:a3:d6:51:27:d4:1b:
        63:c3:0c:41:19:45:0f:23:5a:6b:63:44:0f:4f:0e:f0:ae:8d:
        87:e2:98:e4:b1:ba:50:eb:ce:ed:f8:0a:07:b1:3f:88:0a:29:
        be:a8:6e:c9:81:f4:93:3a:87:77:6f:d3:38:e3:b4:c7:2d:cf:
        8d:2e:2c:ba:39:1e:53:c9:53:48:81:90:1b:d4:d6:69:18:3c:
        fc:9d:12:aa:62:53:74:69:b6:e4:78:b4:0a:61:6f:85:d8:43:
        31:4f:b8:ac:1e:51:9e:44:fb:d9:24:5a:a3:3b:ce:e2:2b:69:
        a7:92:bf:c6:ce:c9:fb:08:9b:92:91:44:74:b9:23:62:c1:fe:
        54:3f:a4:a4:60:44:af:5a:de:35:41:03:d9:d6:c4:35:19:39:
        a9:28:ca:bf:1d:6d:c1:a0:00:ce:65:af:f2:e4:20:8f:f2:bb:
        89:04:f9:76:ea:8e:fa:b5:6e:ea:de:06:63:31:e7:93:50:c5:
        77:1e:30:72

51.210.154.48

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1000842813 | 2024-04-17T03:41:19.010333
80 / tcp

nginx1.18.0

1000842813 | 2024-04-23T02:26:49.042806
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

51.210.154.48

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1000842813 | 2024-04-17T03:41:19.010333 80 / tcp

nginx1.18.0

1000842813 | 2024-04-23T02:26:49.042806 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1000842813 | 2024-04-17T03:41:19.010333
80 / tcp

1000842813 | 2024-04-23T02:26:49.042806
443 / tcp