GeneralInformation

Hostnames	zedxexchangeapi.com www.zedxexchangeapi.com
Domains	zedxexchangeapi.com
Cloud Provider	DigitalOcean
Cloud Region	in-ka
Country	India
City	Doddaballapura
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8080

-1880151872 | 2024-05-29T08:54:24.734232

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.7
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFJasXdMKMmFS07mbFsUYzK+
YeUPV52C+UV+/xgaAdOCsqrb/pXVh9p4yobvcBMnvZf5ZzfhAXMa1U2u+GKiXgQ=
Fingerprint: 14:d8:b4:d4:bf:62:21:99:f0:2c:23:36:14:fe:48:6f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-22T14:41:56.525772

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 22 May 2024 14:41:56 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sat, 27 Apr 2024 07:44:06 GMT
Connection: keep-alive
ETag: "662cacc6-264"
Accept-Ranges: bytes

-1060095501 | 2024-05-31T22:47:10.696117

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 31 May 2024 22:47:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
Vary: Origin, Accept-Encoding
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            79:15:72:74:1e:2c:3f:17:54:7f:83:64:c1:a2:8c:54
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Apr 27 00:00:00 2024 GMT
            Not After : Apr 27 23:59:59 2025 GMT
        Subject: CN=zedxexchangeapi.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d3:b5:70:4d:be:18:ff:b9:7a:a7:ce:ba:bf:ba:
                    58:46:20:6b:35:4c:86:ca:3c:ba:64:ef:30:ab:46:
                    6c:0a:2a:a8:a1:c2:4d:cf:06:df:74:b6:e6:5a:1a:
                    e0:b1:6f:ed:66:de:ac:4d:3b:06:9c:0c:4b:0e:12:
                    df:17:3d:10:84:ec:65:c5:28:cd:bc:5b:02:e0:5d:
                    54:57:c9:6f:7e:79:4f:ed:ff:3a:b1:93:af:bd:38:
                    9f:c8:29:3f:2e:dc:62:b9:38:8f:e5:92:76:5e:33:
                    51:a8:85:bd:72:cd:50:3a:ea:25:7c:b4:0a:2a:8e:
                    50:25:60:ff:1a:eb:cf:e2:68:ba:23:84:29:18:09:
                    e7:5e:25:2c:66:3e:a6:c5:ae:c0:ea:83:c0:e9:01:
                    b9:19:0d:39:98:bc:63:55:92:c4:6b:86:9b:20:0d:
                    de:94:08:57:31:86:45:c8:d3:8a:a0:c0:1d:13:39:
                    aa:33:49:8d:4e:f4:da:51:9f:46:4f:1a:bc:e8:e5:
                    af:8f:e3:15:63:6e:df:1c:4c:32:b4:57:e8:b1:0f:
                    f6:f5:b2:3b:e9:94:15:41:2e:09:38:28:56:a9:a9:
                    5b:62:29:9d:7b:6a:6c:0c:7e:a0:35:38:75:19:fc:
                    71:fb:90:6f:79:57:a6:16:11:f3:f1:0c:06:1a:b1:
                    f0:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                6D:47:3C:F3:79:68:F2:E2:BF:D3:C7:0F:41:F5:06:A0:C0:23:F7:43
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:zedxexchangeapi.com, DNS:www.zedxexchangeapi.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Apr 27 09:31:33.896 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:91:EE:5B:B8:3E:92:19:8C:D0:A0:BD:
                                E7:91:E8:1E:B5:26:91:2D:CB:C3:DE:FC:F9:C7:81:37:
                                9C:EB:F9:57:4D:02:20:71:F2:D1:37:71:D3:70:B8:39:
                                AB:0B:34:C8:FE:58:60:42:C0:E3:BC:A8:FA:BC:BD:C1:
                                9F:6C:57:A8:CA:BE:60
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Apr 27 09:31:33.863 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D4:A6:50:C5:CA:FA:51:4C:BD:7C:04:
                                0D:86:FC:CE:FD:A7:B2:D4:E0:45:F8:B8:03:DE:80:38:
                                2A:7C:39:4B:BE:02:20:63:F7:16:B2:93:E4:7E:7E:8F:
                                A9:73:A2:7E:9A:F8:33:DE:74:19:91:6A:75:40:C8:F5:
                                3C:28:CD:F3:74:AA:29
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Apr 27 09:31:33.863 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:15:CB:FA:0D:C3:66:43:3F:5B:D5:D5:4E:
                                6C:AA:C6:02:63:3C:99:9E:E1:4E:B5:82:62:B9:0A:DA:
                                5C:8D:EC:47:02:20:55:F4:3A:A6:37:F9:44:45:CD:78:
                                E3:B4:D3:64:39:BA:0F:71:9B:CC:98:7E:6F:E1:79:40:
                                9D:5F:17:D7:4B:1F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        00:65:32:fb:93:92:1d:ba:22:43:15:93:ce:4b:66:07:e0:ec:
        dd:b4:af:66:49:51:8a:d0:0f:28:68:e6:48:f6:9d:f6:ab:79:
        46:a6:7f:3d:f0:50:aa:81:6b:e7:b7:35:e3:b4:fd:cc:e3:2d:
        b2:f6:e9:13:5a:86:6d:2c:2c:b1:f4:a1:0f:1a:9c:da:aa:90:
        54:eb:d8:e3:9b:74:ed:9e:40:7d:35:5b:70:e8:da:e9:61:5d:
        c0:5a:d9:87:6d:db:02:70:c3:64:06:c0:00:ed:8a:ca:c8:aa:
        56:f1:b5:a4:3c:e2:63:fe:b3:78:58:40:95:e5:f4:f8:10:40:
        ce:3e:4c:e1:e3:81:7a:c8:36:fd:6c:16:cd:b7:4c:90:6a:9e:
        8c:63:8d:ae:88:69:47:3c:8e:8f:6e:c6:25:35:df:33:1c:ee:
        79:40:6e:b5:cb:33:dd:cf:c4:cc:a4:b8:f0:5c:58:df:69:68:
        06:bd:11:9a:2a:82:2b:b2:31:20:e5:c3:d4:a6:ec:01:24:b6:
        59:8b:30:d6:4c:94:fa:b1:09:15:5a:2e:2d:4e:d4:cd:d3:28:
        0f:21:09:4e:23:19:53:6f:30:47:97:84:48:7c:7b:a7:ba:d1:
        89:c9:c7:ee:7a:4d:b5:4f:7c:b5:5d:17:30:0a:05:a9:38:f1:
        40:ac:79:1c

-1060095501 | 2024-06-01T14:19:44.707486

8080 / tcp

HTTP/1.1 404 Not Found
Vary: Origin, Accept-Encoding
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Sat, 01 Jun 2024 14:19:44 GMT
Connection: keep-alive
Keep-Alive: timeout=5

64.227.146.37

Last Seen: 2024-06-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1880151872 | 2024-05-29T08:54:24.734232
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

1651973090 | 2024-05-22T14:41:56.525772
80 / tcp

nginx1.18.0

-1060095501 | 2024-05-31T22:47:10.696117
443 / tcp

nginx1.18.0

-1060095501 | 2024-06-01T14:19:44.707486
8080 / tcp

Products

Pricing

Contact Us

64.227.146.37

Last Seen: 2024-06-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1880151872 | 2024-05-29T08:54:24.734232 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

1651973090 | 2024-05-22T14:41:56.525772 80 / tcp

nginx1.18.0

-1060095501 | 2024-05-31T22:47:10.696117 443 / tcp

nginx1.18.0

-1060095501 | 2024-06-01T14:19:44.707486 8080 / tcp

Products

Pricing

Contact Us

-1880151872 | 2024-05-29T08:54:24.734232
22 / tcp

1651973090 | 2024-05-22T14:41:56.525772
80 / tcp

-1060095501 | 2024-05-31T22:47:10.696117
443 / tcp

-1060095501 | 2024-06-01T14:19:44.707486
8080 / tcp