GeneralInformation

Hostnames	panel.dev.yourcx.io panel.yourcx.io
Domains	yourcx.io
Country	Poland
City	Warsaw
Organization	OVH Sp. z o. o.
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

725480060 | 2024-04-12T09:56:38.801360

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDGTjJwps52ktUheSa3xyu+NLmyFzef+8P72YyXjpyL64nl
Wr0uYYLZtnqWGUlGCCi+WhRNnMeB2yD1/7+m8uD05EyqeMaF7CrC6aM8R6D/83RQIOdTg11IOyPl
Kb0qqRsqgK22XUwaCu/4Wp7hiM5HOsMaXRvlB5qnfDTRhdNM+z4oMZSaoCaNikraXKJeWKtTkNHj
Xt6wt5jXCLRzFy939GuVTf1SdQauRVk3wpW+p8M+b+dhBcOZ0YNw2Lirj1sYgy1xw2zHDzHOuquk
nvyt18Un07L4z4lToutCKczlcUb4YOL1z/uPgm4zjER/kKO8k7Kl2cq/O+xj4z0I/3hR
Fingerprint: 67:cb:90:d0:78:16:ed:dc:96:31:8b:c7:10:ea:16:19

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-03-31T07:53:05.525391

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 31 Mar 2024 07:53:05 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Thu, 28 Dec 2017 16:37:58 GMT
Connection: keep-alive
ETag: "5a451de6-264"
Accept-Ranges: bytes

-2115534743 | 2024-04-18T19:16:13.361728

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Thu, 18 Apr 2024 19:16:12 GMT
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:3b:28:80:8e:cd:3a:a9:0e:22:1c:5f:cb:93:31:f0:34:73
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  2 11:16:24 2024 GMT
            Not After : May 31 11:16:23 2024 GMT
        Subject: CN=panel.dev.yourcx.io
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ae:f4:9a:9a:72:22:c0:45:7d:5c:22:bc:ea:9f:
                    c1:dd:ac:51:53:13:8f:ca:3c:b7:ac:68:95:06:e2:
                    16:f7:84:79:85:01:d3:72:ef:58:ad:b1:c5:64:45:
                    86:64:b7:9d:a9:fc:26:ec:c5:8c:07:bd:5c:ba:85:
                    f2:bc:dd:5f:b8:09:6b:2f:a7:22:25:b5:84:af:b4:
                    f4:b7:b1:1e:31:4f:55:41:8b:4c:56:35:74:03:2b:
                    ca:f6:15:b8:5c:d8:c4:bc:af:09:8d:65:d2:2a:4f:
                    c4:2d:7a:44:38:3b:34:2d:50:95:67:91:53:1c:8a:
                    68:3e:bc:2f:61:aa:58:c6:bc:5d:8d:7b:3d:a3:37:
                    22:b9:9b:cd:75:64:97:0c:50:d7:73:02:31:d3:0b:
                    b9:92:0a:2a:97:fb:42:7b:db:fa:03:6a:c7:77:4c:
                    d3:93:66:5a:a7:14:4c:d3:c6:8f:64:2b:9a:c3:f1:
                    34:85:b8:9a:22:79:1e:a6:03:09:c9:ca:8e:87:11:
                    e3:eb:cb:31:47:b9:4a:78:46:a3:74:9a:1a:21:ec:
                    26:cd:0d:fe:c3:f9:03:33:1b:b2:6a:50:a5:16:bd:
                    80:48:69:ee:62:8b:83:71:42:59:11:99:97:3e:7a:
                    c6:d6:2c:f7:d8:af:06:cf:78:86:08:66:66:82:d8:
                    58:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                12:5F:D5:DE:C9:7B:D0:CB:CB:5C:6A:C6:E7:01:A9:95:B2:C4:D3:37
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:panel.dev.yourcx.io
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar  2 12:16:25.030 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:75:AE:1E:03:54:C2:12:80:CD:2E:6A:8F:
                                3B:E7:75:37:36:19:87:F5:2E:F7:F9:F3:FF:08:93:5D:
                                22:FA:08:9A:02:21:00:DC:95:1E:FC:84:98:CC:34:BA:
                                11:90:EA:A8:A9:44:04:4C:82:E3:8F:3B:CB:18:44:04:
                                6B:9B:74:FF:15:56:A9
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar  2 12:16:25.517 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:78:D2:5C:20:75:0F:05:BE:BA:47:42:42:
                                94:23:ED:D0:29:2C:96:D9:75:FA:3F:B7:7A:6C:32:9B:
                                27:C2:AA:71:02:20:73:39:82:35:74:D6:5F:86:EF:17:
                                FE:C0:95:0E:4E:36:68:30:9B:83:01:0B:9A:98:81:37:
                                8C:81:3C:9C:93:9E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7a:2d:bf:0c:21:8b:4b:b8:a3:74:d6:21:01:b6:df:f0:4d:76:
        b7:ae:0c:36:22:b7:97:29:0a:67:1d:c8:5f:7b:28:1e:4b:3f:
        82:b1:46:b3:3e:98:15:b3:9f:0e:47:11:a9:46:bc:48:cc:e7:
        50:fd:c6:c5:82:e5:5e:e9:f2:9a:26:fe:ef:b3:6c:63:8f:bc:
        ed:fb:60:8d:3a:44:bf:14:af:3a:93:0f:de:f5:68:04:d9:ee:
        7c:52:1f:f7:b2:29:17:29:57:d1:af:4e:23:ee:17:49:29:f1:
        1b:7c:bb:04:30:d8:20:97:14:0b:3f:d9:bf:06:14:58:0c:a6:
        96:d4:91:86:6c:1c:26:56:a6:ea:5f:dc:2e:52:93:46:4d:dc:
        1e:54:09:1e:be:7e:39:57:18:75:c6:1f:33:c4:63:5c:a2:c6:
        c9:31:d3:eb:3b:56:c9:2d:90:96:b7:73:1f:14:f2:16:c4:39:
        f9:4a:c0:5d:e3:75:fb:a1:db:2f:1b:54:76:85:c4:42:45:3a:
        e9:d0:5d:d4:d8:22:d4:54:8a:b6:09:51:44:1d:4f:0c:08:48:
        d2:a1:05:cc:49:14:2c:67:43:0d:25:e5:f6:d7:a9:c2:a4:45:
        1c:5f:63:10:ba:22:5a:a1:d3:09:88:e5:43:6a:59:78:87:b7:
        d0:91:80:a4

54.37.131.31

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

725480060 | 2024-04-12T09:56:38.801360
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1651973090 | 2024-03-31T07:53:05.525391
80 / tcp

nginx1.18.0

-2115534743 | 2024-04-18T19:16:13.361728
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

54.37.131.31

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

725480060 | 2024-04-12T09:56:38.801360 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1651973090 | 2024-03-31T07:53:05.525391 80 / tcp

nginx1.18.0

-2115534743 | 2024-04-18T19:16:13.361728 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

725480060 | 2024-04-12T09:56:38.801360
22 / tcp

1651973090 | 2024-03-31T07:53:05.525391
80 / tcp

-2115534743 | 2024-04-18T19:16:13.361728
443 / tcp