GeneralInformation

Hostnames	firstinspires.org static-64-222-71-155.burl.east.myfairpoint.net
Domains	firstinspires.org myfairpoint.net
Country	United States
City	Gorham
Organization	MAGIC HAT BREWING CO
ISP	Consolidated Communications, Inc.
ASN	AS13977

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-46674	An issue was identified that allowed the unsafe deserialization of java objects from hadoop or spark configuration properties that could have been modified by authenticated users. Elastic would like to thank Yakov Shafranovich, with Amazon Web Services for reporting this issue.
CVE-2023-46673	It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.
CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-31419	A flaw was discovered in Elasticsearch, affecting the _search API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service.
CVE-2023-31418	An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and we have no indication that the issue is known or that it is being exploited in the wild.
CVE-2023-31417	Elasticsearch generally filters out sensitive information and credentials before logging to the audit log. It was found that this filtering was not applied when requests to Elasticsearch use certain deprecated URIs for APIs. The impact of this flaw is that sensitive information such as passwords and tokens might be printed in cleartext in Elasticsearch audit logs. Note that audit logging is disabled by default and needs to be explicitly enabled and even when audit logging is enabled, request bodies that could contain sensitive information are not printed to the audit log unless explicitly configured.
CVE-2022-23708	4.0A flaw was discovered in Elasticsearch 7.17.0’s upgrade assistant, in which upgrading from version 6.x to 7.x would disable the in-built protections on the security index, allowing authenticated users with “*” index permissions access to this index.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-9516	6.8Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.
CVE-2019-9513	7.8Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
CVE-2019-9511	7.8Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

443

-1412097656 | 2024-05-12T14:57:06.614705

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.0
Date: Sun, 12 May 2024 14:52:23 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 526
Connection: keep-alive
X-elastic-product: Elasticsearch
Warning: 299 Elasticsearch-7.16.3-4e6e4eab2297e949ec994e688dad46290d018022 "Elasticsearch built-in security features are not enabled. Without authentication, your cluster could be accessible to anyone. See https://www.elastic.co/guide/en/elasticsearch/reference/7.16/security-minimal-setup.html to enable security."
Access-Control-Allow-Origin: *


Elastic:
  Total Size: 413.07 MB
  Total Docs: 2,846,574
  Indices:
    contacts_v1 (138.96 KB)
    contacts_v2 (153.41 KB)
    countries_v1 (41.96 KB)
    countries_v2 (42.37 KB)
    events_v1 (17.75 MB)
    events_v2 (972.65 KB)
    grants_v1 (124.86 KB)
    grants_v2 (24.53 KB)
    internships_v1 (236.0 B)
    internships_v2 (3.3 KB)
    mentors_v1 (22.31 KB)
    mentors_v2 (24.51 KB)
    regions_v1 (3.56 MB)
    regions_v2 (2.26 MB)
    scholarships_v1 (141.01 KB)
    scholarships_v2 (185.27 KB)
    seasons_v1 (18.68 KB)
    seasons_v2 (17.53 KB)
    states_v1 (757.03 KB)
    states_v2 (748.59 KB)
    teams_v1 (329.56 MB)
    teams_v2 (25.45 MB)
    .geoip_databases (31.14 MB)

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3539748802211452286 (0x311fb6c7fded957e)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
        Validity
            Not Before: Aug 14 16:40:26 2023 GMT
            Not After : Sep 14 16:40:26 2024 GMT
        Subject: CN=*.firstinspires.org
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d4:2e:3e:94:70:06:d2:77:3f:c0:05:7a:32:ad:
                    25:5a:cd:fb:15:b9:3d:39:f1:b0:ac:13:3d:60:3d:
                    cf:2e:92:78:48:3f:da:69:13:6e:5b:77:26:1d:62:
                    46:00:48:ef:84:69:6f:ca:7e:e5:f9:7b:ad:2a:d6:
                    7e:73:4d:e9:df:7e:2b:8e:b5:74:f4:34:54:58:2a:
                    9c:c2:92:65:7a:14:3d:1c:4d:87:2c:dc:85:00:33:
                    e2:d0:15:d1:10:92:20:14:17:52:74:78:64:54:4a:
                    67:75:f2:94:c7:bc:07:1e:36:50:6b:4c:43:a0:e8:
                    6b:75:9d:b9:ce:aa:2d:95:5d:76:31:ce:c9:83:bf:
                    11:bf:7e:f8:65:0d:93:b6:3a:ff:86:d6:00:fd:1f:
                    0b:1b:54:02:df:bd:e1:4f:88:a3:ce:6a:20:81:dc:
                    0e:86:f2:a7:db:91:23:ea:e5:bb:73:eb:f8:73:f5:
                    1b:b2:1d:ee:2f:29:25:be:1d:ce:20:ab:d0:c4:b7:
                    54:2c:24:82:44:24:01:d8:d5:a7:9d:5a:46:cf:fe:
                    39:60:e2:ac:da:35:40:b9:4c:50:29:80:0a:8b:87:
                    9f:80:78:47:3b:86:aa:64:55:e4:5a:0f:81:dd:52:
                    11:c3:fd:ab:ac:69:79:82:17:88:0c:20:2c:f9:b0:
                    66:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.godaddy.com/gdig2s1-8319.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114413.1.7.23.1
                  CPS: http://certificates.godaddy.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.godaddy.com/
                CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
            X509v3 Authority Key Identifier: 
                40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
            X509v3 Subject Alternative Name: 
                DNS:*.firstinspires.org, DNS:firstinspires.org
            X509v3 Subject Key Identifier: 
                BA:C2:D8:90:CE:9F:EE:61:10:B8:6B:74:53:59:CA:B9:6C:0A:36:5E
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Aug 14 16:40:26.857 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:77:4A:8B:0C:74:5B:F8:26:A9:54:F1:55:
                                9A:EC:5C:5E:29:7A:AA:7C:CA:40:E2:4C:F6:D3:B7:AD:
                                FF:FE:C2:77:02:21:00:EA:2A:55:5E:3F:72:D3:7C:B3:
                                0F:7C:DF:A5:71:7F:76:7A:32:68:10:C5:3E:4A:A6:FB:
                                CE:36:75:CB:52:76:6D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Aug 14 16:40:27.169 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:0D:8E:25:CE:E3:5F:8A:C1:37:06:55:1B:
                                63:EE:66:FF:DF:C9:B0:2D:B2:D4:CC:E1:0C:C3:01:2B:
                                D7:4E:35:B5:02:20:32:C2:8E:C8:F6:5A:4D:09:42:AE:
                                28:74:2F:E1:A9:6B:E5:99:5C:36:64:78:D5:F2:45:7A:
                                35:C1:9D:AE:80:AC
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Aug 14 16:40:27.311 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:51:8F:7A:69:F7:65:C4:B6:4B:FE:69:9D:
                                42:04:6E:54:34:88:DE:34:CA:31:1B:F9:A4:28:CF:27:
                                74:B5:DA:41:02:20:22:BB:0E:A2:E6:63:BA:D5:62:F8:
                                83:5E:2C:28:7F:FF:02:4B:28:67:DB:3E:4F:57:14:BA:
                                36:B1:D2:D0:06:77
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9f:0d:ca:47:21:a6:b5:fe:98:74:93:d4:e2:84:b4:1c:cc:c1:
        c1:0e:46:94:e5:e1:27:9c:83:f9:f0:57:77:89:68:bc:ba:f7:
        c3:f3:62:da:43:a3:ea:dd:07:6a:05:db:95:74:54:1d:37:55:
        92:c3:9e:31:b8:69:b3:d4:71:8b:a1:fc:a2:2c:44:78:4b:22:
        09:fd:42:11:8f:5d:af:37:1d:88:a7:52:35:72:da:ac:fd:04:
        c7:4d:b2:33:01:70:3f:0b:fd:b1:c0:66:be:a0:b9:2f:47:5a:
        5f:4d:0a:76:1f:e8:76:3c:a3:95:23:79:9f:27:23:8b:66:bf:
        11:18:ec:b8:f7:5d:84:bb:b5:ae:a4:44:6b:ea:ee:67:e0:42:
        41:9a:05:c0:ec:e4:dd:80:0d:b8:7c:77:2a:0b:72:42:a5:e7:
        1c:1a:a0:fb:21:cc:2e:2e:60:5d:68:b2:80:c7:5f:da:af:39:
        ba:d8:0a:95:51:87:ae:5e:d1:cd:20:e7:7b:f5:b9:c8:71:8c:
        13:b9:00:42:ac:a8:12:65:01:ea:1c:2c:76:fd:84:af:6d:5a:
        fe:61:69:f0:aa:41:a2:52:e5:96:a0:50:2e:be:20:7a:dd:0e:
        14:b3:2c:23:47:3a:20:b8:5d:4c:79:6c:f7:38:50:05:8b:79:
        42:8b:6d:e0

64.222.71.155

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1412097656 | 2024-05-12T14:57:06.614705
443 / tcp

Elastic7.16.3

Products

Pricing

Contact Us

64.222.71.155

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1412097656 | 2024-05-12T14:57:06.614705 443 / tcp

Elastic7.16.3

Products

Pricing

Contact Us

-1412097656 | 2024-05-12T14:57:06.614705
443 / tcp