GeneralInformation

Hostnames	t.adline.com static.209.225.21.65.clients.your-server.de
Domains	adline.com your-server.de
Country	Finland
City	Helsinki
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2022-37454	9.8The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.
CVE-2022-31630	7.1In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information.
CVE-2022-31629	6.5In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.
CVE-2022-31628	5.5In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2013-2220	Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2007-3205	The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

22 80 443 8090

-1067411162 | 2024-04-18T12:24:09.716104

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDZQXPta33V48JmmXRqW/On8xHtCNDP6p+b/Dcjpa9hbWlA
br9v4QNQb6kDGXKtKhlBPnlLmCrMIfHlLoTaafDUmHjmRrVdKv7iO3xI1FOH+Tvl0OHuHy5WIb4e
KwbfXSHHHqbCdOgfiuUQOE3zdNei03FQQvVt2KuUJX8j7HUnBixT7llVr23UaF4uK2WldIImMeZS
vhTsK2VcpO8dv8hGNMyHYE2895rrkK6hRKlvUw22jJQu5EX2j+2yFU4e9JRuKPmJCWS/YqyYhipy
6ozCvuB0nUvgFBpPBz5nOyuudEKpr5wVZuB92EiHJj1HsSMqCTKnJFnxJmXPMre2S077Ff6Eyqk8
dpSS3TVP4FgyiTobTRIIIRVFCXIrdxeNrur+SVGHvSNJU6uOCQ7S2oe+6Bo1+IGQKdZ90bXWf/36
E3y7jZBKoCGMp5lGlhYvH4TNewBdAmQNleo4nPNp7Ezcxijh6PI/XtUtOm9ojkxhgHf3YSmUTET9
3cWwefBvGB0=
Fingerprint: b4:aa:ee:f7:3b:f2:e5:30:e4:d1:44:62:9a:e2:81:9a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-12T14:40:16.086455

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 12 Apr 2024 14:40:16 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 25 Aug 2021 12:36:49 GMT
Connection: keep-alive
ETag: "61263961-264"
Accept-Ranges: bytes

-1683053783 | 2024-04-15T16:49:28.903113

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 16:49:28 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:13:ef:83:f9:43:f4:7c:a4:4d:11:b8:5f:c8:57:74:45:f6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 16 05:25:28 2024 GMT
            Not After : May 16 05:25:27 2024 GMT
        Subject: CN=t.adline.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b2:da:98:c2:ea:0b:df:13:08:2e:ea:ca:ce:be:
                    26:51:8d:39:bd:a2:cf:6f:6f:80:c8:75:28:44:1f:
                    eb:bf:30:06:74:06:91:32:fa:dc:77:03:84:0b:ec:
                    86:5f:ea:d8:e7:f1:f8:09:1c:c2:eb:65:4f:7b:7b:
                    99:da:65:6e:f3:6d:72:3c:ac:f6:2e:46:c5:f7:fe:
                    fc:46:a5:59:2b:76:9c:54:7c:35:42:d9:3c:6b:1e:
                    0c:5a:60:a3:42:a6:8d:8b:e5:75:c8:3e:c9:2f:9a:
                    6a:51:fd:97:6c:0a:b4:00:8b:56:59:5d:2e:e7:f4:
                    53:cb:32:c6:fa:a1:b9:14:49:85:da:1b:58:01:39:
                    09:12:4e:33:78:74:32:c8:e5:e9:98:ed:d2:aa:0b:
                    68:2f:ed:b4:0b:a9:a2:54:9b:8e:91:df:c6:64:89:
                    44:86:73:44:68:b1:97:51:5f:68:84:d6:c8:3e:12:
                    aa:9e:50:c3:5d:ab:2c:1b:40:73:c8:85:b5:1d:86:
                    a8:a6:d3:70:68:ef:8a:6c:ab:f1:2c:bf:85:49:47:
                    af:50:80:ed:b5:a1:bf:b4:f1:b4:80:c0:04:a2:70:
                    38:05:33:f8:4e:bf:56:ed:e0:22:f6:ec:3f:e8:8d:
                    a9:f9:11:97:b4:25:bb:38:38:95:f5:76:45:49:49:
                    ed:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                28:74:EE:01:46:0D:F4:50:8A:C0:54:76:77:81:A5:CD:09:11:48:68
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:t.adline.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 16 06:25:28.938 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CA:DA:97:24:9A:23:73:6E:2D:A9:74:
                                02:23:6B:74:9A:88:A7:80:93:B7:BA:0D:9C:AA:9B:C4:
                                07:89:25:B2:4A:02:21:00:95:19:71:09:A2:E4:32:78:
                                CE:CF:DB:77:DD:14:8E:09:0A:B0:CE:00:5C:35:D4:97:
                                9F:DD:68:2F:B4:E7:91:7A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 16 06:25:29.298 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:47:A5:42:16:9C:30:DD:9D:86:33:36:52:
                                9A:07:0F:18:5F:DE:0B:79:82:0D:61:DB:24:A8:A2:4C:
                                E1:C2:5E:62:02:20:60:97:9F:40:AE:27:BA:41:7F:0B:
                                DF:03:A5:58:1B:C4:62:5D:00:F7:17:0D:9C:8F:B9:7C:
                                19:EF:52:5F:CE:FF
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4c:29:dd:b8:f7:ca:9b:03:35:b9:3d:d4:64:cc:77:4e:a6:e1:
        b9:bc:30:d2:6a:32:9c:bc:f1:36:d4:cc:6d:2d:54:91:7d:c8:
        1d:2a:a7:15:e1:c6:6b:dc:bc:cb:65:78:8e:5e:16:66:3c:62:
        fd:ad:3f:ca:49:f0:88:f9:45:fc:4b:49:dd:63:40:97:32:99:
        44:ad:42:2c:15:f3:3b:56:0a:f4:65:6b:52:78:17:09:3c:93:
        26:60:3c:10:58:2a:11:31:b5:e6:53:42:1b:4f:7a:15:77:60:
        d1:fd:45:6a:24:96:1b:46:58:b1:74:0f:65:12:6e:da:11:73:
        11:a2:2a:4e:fd:b9:1e:92:49:9a:70:8d:9b:de:1b:da:b2:08:
        a2:12:2c:63:f7:1a:13:d8:54:27:e6:a9:30:6f:c4:46:58:b6:
        78:94:9b:94:a6:8c:0d:f0:0d:93:ad:66:c7:8d:44:ff:b0:8a:
        db:be:c3:40:38:54:58:1f:3c:bb:7e:aa:9a:d8:9e:7b:6c:66:
        00:a5:ba:92:ef:e5:51:fa:69:69:4b:4f:e2:5c:07:94:dc:90:
        1a:28:67:78:24:d6:84:76:d7:15:75:b1:c0:9e:dc:e7:1f:d3:
        89:a1:63:00:24:fc:dd:95:06:32:39:fc:03:58:7a:ee:8f:cc:
        2d:5e:a3:1d

-1683053783 | 2024-04-16T16:09:08.403372

8090 / tcp

HTTP/1.1 404 Not Found
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Date: Tue, 16 Apr 2024 16:09:08 GMT

65.21.225.209

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1067411162 | 2024-04-18T12:24:09.716104
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.2

1651973090 | 2024-04-12T14:40:16.086455
80 / tcp

nginx1.18.0

-1683053783 | 2024-04-15T16:49:28.903113
443 / tcp

nginx1.18.0

-1683053783 | 2024-04-16T16:09:08.403372
8090 / tcp

nginx

Products

Pricing

Contact Us

65.21.225.209

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1067411162 | 2024-04-18T12:24:09.716104 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.2

1651973090 | 2024-04-12T14:40:16.086455 80 / tcp

nginx1.18.0

-1683053783 | 2024-04-15T16:49:28.903113 443 / tcp

nginx1.18.0

-1683053783 | 2024-04-16T16:09:08.403372 8090 / tcp

nginx

Products

Pricing

Contact Us

-1067411162 | 2024-04-18T12:24:09.716104
22 / tcp

1651973090 | 2024-04-12T14:40:16.086455
80 / tcp

-1683053783 | 2024-04-15T16:49:28.903113
443 / tcp

-1683053783 | 2024-04-16T16:09:08.403372
8090 / tcp