GeneralInformation

Hostnames	sharevision.com static.88-198-26-114.clients.your-server.de
Domains	sharevision.com your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online AG
ISP	Hetzner Online GmbH
ASN	AS24940

WebTechnologies

JavaScript graphics

Kibana

Programming languages

Search engines

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-2183	6.4Grafana is an open-source platform for monitoring and observability. The option to send a test alert is not available from the user panel UI for users having the Viewer role. It is still possible for a user with the Viewer role to send a test alert using the API as the API does not check access to this function. This might enable malicious users to abuse the functionality by sending multiple alert messages to e-mail and Slack, spamming users, prepare Phishing attack or block SMTP server. Users may upgrade to version 9.5.3, 9.4.12, 9.3.15, 9.2.19 and 8.5.26 to receive a fix.
CVE-2023-1410	4.8Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have control over the Graphite data source in order to manipulate a function description and a Grafana admin needs to configure the data source, later a Grafana user needs to select a tampered function and hover over the description. Users may upgrade to version 8.5.22, 9.2.15 and 9.3.11 to receive a fix.
CVE-2023-0594	5.4Grafana is an open-source platform for monitoring and observability. Starting with the 7.0 branch, Grafana had a stored XSS vulnerability in the trace view visualization. The stored XSS vulnerability was possible due the value of a span's attributes/resources were not properly sanitized and this will be rendered when the span's attributes/resources are expanded. An attacker needs to have the Editor role in order to change the value of a trace view visualization to contain JavaScript. This means that vertical privilege escalation is possible, where a user with Editor role can change to a known password for a user having Admin role if the user with Admin role executes malicious JavaScript viewing a dashboard. Users may upgrade to version 8.5.21, 9.2.13 and 9.3.8 to receive a fix.
CVE-2023-0507	5.4Grafana is an open-source platform for monitoring and observability. Starting with the 8.1 branch, Grafana had a stored XSS vulnerability affecting the core plugin GeoMap. The stored XSS vulnerability was possible due to map attributions weren't properly sanitized and allowed arbitrary JavaScript to be executed in the context of the currently authorized user of the Grafana instance. An attacker needs to have the Editor role in order to change a panel to include a map attribution containing JavaScript. This means that vertical privilege escalation is possible, where a user with Editor role can change to a known password for a user having Admin role if the user with Admin role executes malicious JavaScript viewing a dashboard. Users may upgrade to version 8.5.21, 9.2.13 and 9.3.8 to receive a fix.
CVE-2022-39324	3.5Grafana is an open-source platform for monitoring and observability. Prior to versions 8.5.16 and 9.2.8, malicious user can create a snapshot and arbitrarily choose the `originalUrl` parameter by editing the query, thanks to a web proxy. When another user opens the URL of the snapshot, they will be presented with the regular web interface delivered by the trusted Grafana server. The `Open original dashboard` button no longer points to the to the real original dashboard but to the attacker’s injected URL. This issue is fixed in versions 8.5.16 and 9.2.8.
CVE-2022-39307	5.3Grafana is an open-source platform for monitoring and observability. When using the forget password on the login page, a POST request is made to the `/api/user/password/sent-reset-email` URL. When the username or email does not exist, a JSON response contains a “user not found” message. This leaks information to unauthenticated users and introduces a security risk. This issue has been patched in 9.2.4 and backported to 8.5.15. There are no known workarounds.
CVE-2022-39306	8.1Grafana is an open-source platform for monitoring and observability. Versions prior to 9.2.4, or 8.5.15 on the 8.X branch, are subject to Improper Input Validation. Grafana admins can invite other members to the organization they are an admin for. When admins add members to the organization, non existing users get an email invite, existing members are added directly to the organization. When an invite link is sent, it allows users to sign up with whatever username/email address the user chooses and become a member of the organization. This introduces a vulnerability which can be used with malicious intent. This issue is patched in version 9.2.4, and has been backported to 8.5.15. There are no known workarounds.
CVE-2022-39229	4.3Grafana is an open source data visualization platform for metrics, logs, and traces. Versions prior to 9.1.8 and 8.5.14 allow one user to block another user's login attempt by registering someone else'e email address as a username. A Grafana user’s username and email address are unique fields, that means no other user can have the same username or email address as another user. A user can have an email address as a username. However, the login system allows users to log in with either username or email address. Since Grafana allows a user to log in with either their username or email address, this creates an usual behavior where `user_1` can register with one email address and `user_2` can register their username as `user_1`’s email address. This prevents `user_1` logging into the application since `user_1`'s password won’t match with `user_2`'s email address. Versions 9.1.8 and 8.5.14 contain a patch. There are no workarounds for this issue.
CVE-2022-39201	7.5Grafana is an open source observability and data visualization platform. Starting with version 5.0.0-beta1 and prior to versions 8.5.14 and 9.1.8, Grafana could leak the authentication cookie of users to plugins. The vulnerability impacts data source and plugin proxy endpoints under certain conditions. The destination plugin could receive a user's Grafana authentication cookie. Versions 9.1.8 and 8.5.14 contain a patch for this issue. There are no known workarounds.
CVE-2022-36062	3.8Grafana is an open-source platform for monitoring and observability. In versions prior to 8.5.13, 9.0.9, and 9.1.6, Grafana is subject to Improper Preservation of Permissions resulting in privilege escalation on some folders where Admin is the only used permission. The vulnerability impacts Grafana instances where RBAC was disabled and enabled afterwards, as the migrations which are translating legacy folder permissions to RBAC permissions do not account for the scenario where the only user permission in the folder is Admin, as a result RBAC adds permissions for Editors and Viewers which allow them to edit and view folders accordingly. This issue has been patched in versions 8.5.13, 9.0.9, and 9.1.6. A workaround when the impacted folder/dashboard is known is to remove the additional permissions manually.
CVE-2022-35957	6.6Grafana is an open-source platform for monitoring and observability. Versions prior to 9.1.6 and 8.5.13 are vulnerable to an escalation from admin to server admin when auth proxy is used, allowing an admin to take over the server admin account and gain full control of the grafana instance. All installations should be upgraded as soon as possible. As a workaround deactivate auth proxy following the instructions at: https://grafana.com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/auth-proxy/
CVE-2022-31130	7.5Grafana is an open source observability and data visualization platform. Versions of Grafana for endpoints prior to 9.1.8 and 8.5.14 could leak authentication tokens to some destination plugins under some conditions. The vulnerability impacts data source and plugin proxy endpoints with authentication tokens. The destination plugin could receive a user's Grafana authentication token. Versions 9.1.8 and 8.5.14 contain a patch for this issue. As a workaround, do not use API keys, JWT authentication, or any HTTP Header based authentication.
CVE-2022-31123	7.8Grafana is an open source observability and data visualization platform. Versions prior to 9.1.8 and 8.5.14 are vulnerable to a bypass in the plugin signature verification. An attacker can convince a server admin to download and successfully run a malicious plugin even though unsigned plugins are not allowed. Versions 9.1.8 and 8.5.14 contain a patch for this issue. As a workaround, do not install plugins downloaded from untrusted sources.
CVE-2022-31107	7.5Grafana is an open-source platform for monitoring and observability. In versions 5.3 until 9.0.3, 8.5.9, 8.4.10, and 8.3.10, it is possible for a malicious user who has authorization to log into a Grafana instance via a configured OAuth IdP which provides a login name to take over the account of another user in that Grafana instance. This can occur when the malicious user is authorized to log in to Grafana via OAuth, the malicious user's external user id is not already associated with an account in Grafana, the malicious user's email address is not already associated with an account in Grafana, and the malicious user knows the Grafana username of the target user. If these conditions are met, the malicious user can set their username in the OAuth provider to that of the target user, then go through the OAuth flow to log in to Grafana. Due to the way that external and internal user accounts are linked together during login, if the conditions above are all met then the malicious user will be able to log in to the target user's Grafana account. Versions 9.0.3, 8.5.9, 8.4.10, and 8.3.10 contain a patch for this issue. As a workaround, concerned users can disable OAuth login to their Grafana instance, or ensure that all users authorized to log in via OAuth have a corresponding user account in Grafana linked to their email address.
CVE-2022-31097	8.7Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4.10, and 8.3.10 are vulnerable to stored cross-site scripting via the Unified Alerting feature of Grafana. An attacker can exploit this vulnerability to escalate privilege from editor to admin by tricking an authenticated admin to click on a link. Versions 9.0.3, 8.5.9, 8.4.10, and 8.3.10 contain a patch. As a workaround, it is possible to disable alerting or use legacy alerting.
CVE-2022-23552	5.4Grafana is an open-source platform for monitoring and observability. Starting with the 8.1 branch and prior to versions 8.5.16, 9.2.10, and 9.3.4, Grafana had a stored XSS vulnerability affecting the core plugin GeoMap. The stored XSS vulnerability was possible because SVG files weren't properly sanitized and allowed arbitrary JavaScript to be executed in the context of the currently authorized user of the Grafana instance. An attacker needs to have the Editor role in order to change a panel to include either an external URL to a SVG-file containing JavaScript, or use the `data:` scheme to load an inline SVG-file containing JavaScript. This means that vertical privilege escalation is possible, where a user with Editor role can change to a known password for a user having Admin role if the user with Admin role executes malicious JavaScript viewing a dashboard. Users may upgrade to version 8.5.16, 9.2.10, or 9.3.4 to receive a fix.
CVE-2022-23498	8.8Grafana is an open-source platform for monitoring and observability. When datasource query caching is enabled, Grafana caches all headers, including `grafana_session`. As a result, any user that queries a datasource where the caching is enabled can acquire another user’s session. To mitigate the vulnerability you can disable datasource query caching for all datasources. This issue has been patched in versions 9.2.10 and 9.3.4.
CVE-2022-21713	4.3Grafana is an open-source platform for monitoring and observability. Affected versions of Grafana expose multiple API endpoints which do not properly handle user authorization. `/teams/:teamId` will allow an authenticated attacker to view unintended data by querying for the specific team ID, `/teams/:search` will allow an authenticated attacker to search for teams and see the total number of available teams, including for those teams that the user does not have access to, and `/teams/:teamId/members` when editors_can_admin flag is enabled, an authenticated attacker can see unintended data by querying for the specific team ID. Users are advised to upgrade as soon as possible. There are no known workarounds for this issue.
CVE-2022-21703	8.8Grafana is an open-source platform for monitoring and observability. Affected versions are subject to a cross site request forgery vulnerability which allows attackers to elevate their privileges by mounting cross-origin attacks against authenticated high-privilege Grafana users (for example, Editors or Admins). An attacker can exploit this vulnerability for privilege escalation by tricking an authenticated user into inviting the attacker as a new user with high privileges. Users are advised to upgrade as soon as possible. There are no known workarounds for this issue.
CVE-2022-21702	5.4Grafana is an open-source platform for monitoring and observability. In affected versions an attacker could serve HTML content thru the Grafana datasource or plugin proxy and trick a user to visit this HTML page using a specially crafted link and execute a Cross-site Scripting (XSS) attack. The attacker could either compromise an existing datasource for a specific Grafana instance or either set up its own public service and instruct anyone to set it up in their Grafana instance. To be impacted, all of the following must be applicable. For the data source proxy: A Grafana HTTP-based datasource configured with Server as Access Mode and a URL set, the attacker has to be in control of the HTTP server serving the URL of above datasource, and a specially crafted link pointing at the attacker controlled data source must be clicked on by an authenticated user. For the plugin proxy: A Grafana HTTP-based app plugin configured and enabled with a URL set, the attacker has to be in control of the HTTP server serving the URL of above app, and a specially crafted link pointing at the attacker controlled plugin must be clocked on by an authenticated user. For the backend plugin resource: An attacker must be able to navigate an authenticated user to a compromised plugin through a crafted link. Users are advised to update to a patched version. There are no known workarounds for this vulnerability.

OpenPorts

22 80 111 443 3000 5601 9001 9002 9104

-415434364 | 2024-04-04T09:20:47.120904

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCTORRwTi5XRKWeGN0A44oXF
fzdIyojkrZQHdkclaRAfJHRYtFaHuQ4hL+0IEPqWyhOZTCXs5QftUhavFVjJhlE=
Fingerprint: 9f:ab:f1:d2:40:0a:15:65:4b:42:fe:12:40:e1:72:c8

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1637199859 | 2024-04-04T23:27:05.035125

80 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 04 Apr 2024 23:27:05 GMT
Content-Type: text/html
Content-Length: 615
Last-Modified: Tue, 11 Apr 2023 17:21:57 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "64359735-267"
Accept-Ranges: bytes

-1345205424 | 2024-04-16T03:18:59.686262

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-04-19T19:49:10.963973

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

1765360226 | 2024-04-19T02:01:16.213845

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx
Date: Fri, 19 Apr 2024 02:01:16 GMT
Content-Type: text/html
Content-Length: 548
Connection: keep-alive
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:13:40:2c:04:b3:88:85:60:a1:80:e0:4c:72:cb:3f:ca:2a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 31 00:36:00 2024 GMT
            Not After : Jun 29 00:35:59 2024 GMT
        Subject: CN=*.sharevision.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:a4:cc:cc:e1:b3:10:e7:7a:72:2b:05:60:36:89:
                    88:61:61:13:b5:75:61:db:35:5e:3a:74:7a:a6:01:
                    b6:58:03:0a:ad:33:1b:90:9a:3a:8f:7c:6a:35:3e:
                    10:36:d7:69:fd:f8:a5:00:c9:86:ec:0e:5e:b8:43:
                    f0:a4:3f:8c:55
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                2C:1A:02:93:CD:9A:C6:FC:AC:38:B5:CD:13:8C:F7:98:0D:04:E9:88
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.sharevision.com, DNS:sharevision.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 31 01:36:00.480 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:44:A8:4D:F1:38:7A:18:E1:D8:71:43:F6:
                                9F:BB:AC:BC:93:90:04:53:9C:F2:4E:30:99:46:D1:3D:
                                80:93:DB:B6:02:21:00:BA:93:E0:90:A7:94:C4:3C:CF:
                                CF:12:B5:E2:91:E5:F6:70:59:DF:5E:38:FD:84:03:1E:
                                FB:52:D0:8C:7D:40:E8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 31 01:36:00.444 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:05:A5:D0:FE:66:D3:0E:FE:C1:E4:E2:5A:
                                9E:9E:F6:33:5A:89:5E:D4:AA:90:3D:D0:76:81:F6:B6:
                                57:5D:7D:30:02:21:00:9D:48:38:EB:FC:28:74:B9:4D:
                                4F:30:40:AE:74:5C:97:93:11:98:9C:B6:3A:EB:59:C6:
                                49:30:5F:29:86:3D:B6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0d:fb:99:95:b3:6e:f3:21:57:7e:27:ba:cb:1a:70:03:da:d5:
        b1:97:98:0b:8d:e0:ee:1e:67:43:ea:a5:24:be:de:2c:c0:ee:
        44:be:2e:90:2c:10:c6:4f:4a:c4:6a:f3:95:a7:2d:e8:41:90:
        56:0b:2b:85:d3:6c:d9:7f:f4:82:55:90:97:52:8d:03:4f:ce:
        8b:b2:c1:fa:86:5f:b7:e5:19:04:2e:5d:c5:f4:d5:0d:9c:da:
        79:f8:7e:f0:ee:26:6f:0c:49:13:29:66:08:d8:e7:ff:47:a9:
        d5:db:f9:e6:30:00:64:04:78:78:83:4a:85:11:d5:6b:f7:4c:
        d5:9d:77:9e:c3:12:e9:d0:d2:97:65:56:b7:94:8b:2a:2a:1f:
        fd:91:bf:54:b5:b7:d7:39:cc:08:56:ba:35:2e:c4:c3:09:a8:
        c2:f3:89:7b:16:c5:67:c8:1a:57:8e:80:55:11:7f:ea:93:4c:
        84:aa:22:7e:73:c9:8a:4f:9d:9d:d6:4b:70:a8:80:3c:e8:9f:
        50:22:04:a5:a7:ba:cb:25:53:13:ab:61:20:c0:4d:cb:16:ed:
        43:36:6b:48:b7:31:16:16:7b:27:52:b2:ed:c1:66:12:e6:02:
        c4:6b:a8:b5:bf:6e:43:1d:cc:07:c0:05:e4:06:11:c1:07:e8:
        1d:67:a5:ee

1329810873 | 2024-04-11T11:17:49.034426

3000 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: text/html; charset=UTF-8
Expires: -1
Pragma: no-cache
X-Content-Type-Options: nosniff
X-Frame-Options: deny
X-Xss-Protection: 1; mode=block
Date: Thu, 11 Apr 2024 11:17:48 GMT
Transfer-Encoding: chunked

-17213027 | 2024-04-15T03:49:50.078111

5601 / tcp

HTTP/1.1 200 OK
content-security-policy: script-src 'unsafe-eval' 'self'; worker-src blob: 'self'; style-src 'unsafe-inline' 'self'
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
kbn-name: devel-kibana
kbn-license-sig: cdb1934daae586d4d6f17da07794434482ef034e8234520a56492c4c71ff921a
content-type: text/html; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate
content-length: 136329
vary: accept-encoding
accept-ranges: bytes
Date: Mon, 15 Apr 2024 03:49:50 GMT
Connection: keep-alive
Keep-Alive: timeout=120

-1387787173 | 2024-04-17T02:34:09.301821

9001 / tcp

HTTP/1.1 403 Forbidden
Content-Type: application/json
Portainer-Agent: 2.18.1
Portainer-Agent-Api-Version: 2
Portainer-Agent-Platform: 1
Date: Wed, 17 Apr 2024 02:34:09 GMT
Content-Length: 73

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            93:fd:ea:16:24:cb:ac:a0:3d:2d:13:59:4c:a5:a9:8c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: 
        Validity
            Not Before: Dec  8 15:48:59 2023 GMT
            Not After : Dec  8 15:48:59 2024 GMT
        Subject: 
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b6:ee:e6:b9:96:ce:e3:ed:03:d7:bd:c5:fb:77:
                    1a:b6:a1:19:1e:31:ee:3f:ed:b1:8b:bd:17:c5:09:
                    cb:93:a2:5a:2d:75:60:c3:9c:cb:3e:e0:b0:85:bb:
                    2b:6f:ad:ac:44:b5:9e:51:a7:ba:08:e4:71:86:7b:
                    5d:b4:bb:b9:a2:ec:97:b3:4b:c9:64:e3:28:f1:6c:
                    11:8d:82:39:f2:c7:1f:65:25:4b:54:b3:60:1c:64:
                    65:fc:bd:65:ad:04:e2:70:64:e5:7f:3f:b8:27:0f:
                    dd:1d:31:be:75:02:fa:f9:78:ad:d1:9c:43:6b:df:
                    db:4e:55:21:81:6c:12:83:bb:3a:9c:73:ff:2f:3b:
                    48:24:38:ac:a2:6f:98:70:1f:81:5d:94:89:a4:98:
                    6e:32:1b:2e:49:b9:56:4a:7b:92:43:2d:c1:00:54:
                    49:71:b2:0f:d2:39:a6:a8:bb:5c:34:a0:3c:59:f0:
                    4e:3e:0b:25:c7:d8:70:ef:25:35:57:21:65:10:75:
                    70:52:a1:88:71:3c:f3:10:ca:3d:8d:c6:22:00:98:
                    8b:61:be:69:e1:b7:23:6d:4d:b1:96:b8:d2:da:e3:
                    93:72:93:61:dc:71:e2:b2:d8:80:e5:df:31:2f:7f:
                    86:20:60:77:e1:ee:02:67:16:79:ea:51:37:2c:84:
                    87:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Alternative Name: critical
                DNS:localhost, IP Address:10.0.5.11
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        88:d1:e4:e4:e1:7c:da:fe:22:f6:53:d7:0e:58:4a:f8:79:0f:
        46:40:de:d6:6d:79:9a:d5:b0:fa:90:c1:d7:3c:7c:af:6c:09:
        d4:0e:2a:7a:ed:f9:80:52:51:b7:21:43:f3:04:14:d6:ba:00:
        a2:ce:ea:62:b9:1d:33:37:86:50:ae:6d:db:2e:5f:93:81:d2:
        3e:78:2b:57:59:b9:05:80:e9:2b:6a:2e:60:88:92:60:95:10:
        ca:cb:20:12:c3:44:aa:fc:5e:59:b0:43:c3:73:c6:58:32:63:
        89:08:bc:c3:c3:d5:9f:73:20:b3:61:38:1b:aa:77:84:78:07:
        b2:0d:db:9e:29:99:ad:b5:07:05:52:6b:7c:5f:1c:63:fa:bd:
        4b:b1:47:a5:aa:d6:91:f1:0f:af:a1:8c:52:59:07:b1:bb:9f:
        00:49:1c:8a:14:bf:74:80:de:05:49:17:c8:1e:e6:47:b1:e1:
        3c:00:88:0b:c8:8a:ee:64:7e:28:b4:d1:fe:11:73:bb:00:ec:
        ad:f6:df:9c:f6:c2:80:dc:0b:2d:14:1f:41:13:df:c5:63:7c:
        43:ca:82:e6:e7:a4:9e:bb:ab:0d:5c:2a:9a:e7:b2:82:97:bb:
        fc:b6:d0:d7:f4:a0:15:31:09:db:31:07:17:0d:53:ab:5f:60:
        a8:1c:e5:99

-1387787173 | 2024-04-19T12:17:59.685596

9002 / tcp

HTTP/1.1 403 Forbidden
Content-Type: application/json
Portainer-Agent: 2.19.3
Portainer-Agent-Api-Version: 2
Portainer-Agent-Platform: 1
Date: Fri, 19 Apr 2024 12:17:59 GMT
Content-Length: 73

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            c5:7d:39:35:59:49:5c:46:fd:95:44:7f:3d:33:a1:40
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: 
        Validity
            Not Before: Dec 15 17:37:31 2023 GMT
            Not After : Dec 15 17:37:31 2024 GMT
        Subject: 
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d6:cf:c1:c2:f0:57:52:31:4c:7c:d1:81:9b:a9:
                    ec:87:0e:58:b8:33:11:48:df:98:c6:59:e3:0c:01:
                    7b:b4:90:4e:30:77:a2:af:2d:9b:1c:de:19:a6:43:
                    a3:9b:36:75:45:de:e8:db:ee:fd:79:95:db:0d:23:
                    99:2d:8b:b1:cd:81:6e:bb:43:17:4a:bf:c0:f7:c2:
                    36:fd:f5:e2:f6:8a:42:02:1c:ad:55:23:11:9e:95:
                    22:43:ea:e6:8e:0e:42:23:28:98:b8:a0:c3:b0:f3:
                    72:17:94:2a:62:19:f4:93:90:78:b7:cd:0a:a5:52:
                    29:80:63:cc:41:78:19:db:b3:e3:17:f8:04:9a:af:
                    68:fc:8b:1a:bf:8e:1f:f9:9e:b4:0f:a3:34:68:bf:
                    a8:5b:32:21:5f:26:d7:e6:18:ac:f1:52:15:f4:a8:
                    92:16:54:1c:e6:a2:0c:a6:64:07:11:ee:d6:af:e2:
                    f0:30:e5:9b:d7:51:58:45:0b:d0:f4:3c:31:9a:9b:
                    f4:8b:0d:05:eb:25:29:3d:75:d4:27:e3:90:52:07:
                    31:57:66:d0:d9:6e:bf:6b:09:de:d1:0a:8d:41:1b:
                    e4:ac:0c:24:f0:23:4c:d9:31:11:8c:d8:ba:8a:64:
                    7c:e7:62:c6:d5:91:91:54:db:ce:53:ec:e0:49:c8:
                    5a:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Alternative Name: critical
                DNS:localhost, IP Address:10.0.7.15
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        69:cd:87:ec:af:c6:a9:7a:92:1b:18:28:78:8b:e6:33:a9:d1:
        d7:fd:c1:1b:c6:e2:be:d3:94:d4:bc:75:1b:e6:f9:d9:cf:b9:
        51:65:0d:12:5b:91:49:ce:f4:b7:ad:50:94:e3:30:c0:f5:35:
        31:db:f7:ea:29:52:81:3b:d6:12:f6:d7:a6:46:58:d7:84:26:
        1d:87:b2:cb:5c:9e:54:12:d1:68:90:bd:5b:ef:b8:d1:f2:c0:
        0d:c4:ce:ee:f9:76:8a:69:3e:5f:56:83:20:32:cd:1f:4b:e2:
        d9:17:a5:4c:bb:53:a5:39:df:43:30:43:51:50:66:d1:8c:de:
        34:b1:1a:3a:86:bb:b1:15:13:01:e1:3a:c7:5c:03:ac:07:7b:
        52:2e:68:e3:75:b6:73:46:8c:e8:85:2b:17:5f:aa:2b:b9:f5:
        78:e5:59:47:89:2b:e9:d4:a6:2a:4d:df:4d:06:d1:9e:b3:7a:
        b8:2b:8d:1b:fb:a8:cb:d2:cc:87:b6:7e:bc:66:33:3c:78:71:
        ba:22:a1:9d:e3:6c:fa:22:af:06:34:7a:eb:55:b2:30:9c:2b:
        ef:f7:18:eb:6b:83:a8:69:dc:e7:8d:2d:92:62:16:ea:00:89:
        88:cb:89:95:51:98:cd:27:ea:b8:9d:ed:15:28:03:de:a0:46:
        f4:c0:7a:ab

-1887088955 | 2024-03-25T13:59:02.637331

9104 / tcp

HTTP/1.1 200 OK
Date: Mon, 25 Mar 2024 13:59:02 GMT
Content-Length: 137
Content-Type: text/html; charset=utf-8

88.198.26.114

Last Seen: 2024-04-19

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-415434364 | 2024-04-04T09:20:47.120904
22 / tcp

OpenSSH8.9p1 Ubuntu-3

1637199859 | 2024-04-04T23:27:05.035125
80 / tcp

nginx

-1345205424 | 2024-04-16T03:18:59.686262
111 / tcp

-1345205424 | 2024-04-19T19:49:10.963973
111 / udp

1765360226 | 2024-04-19T02:01:16.213845
443 / tcp

nginx

1329810873 | 2024-04-11T11:17:49.034426
3000 / tcp

Grafana (Open Source)8.3.4

-17213027 | 2024-04-15T03:49:50.078111
5601 / tcp

-1387787173 | 2024-04-17T02:34:09.301821
9001 / tcp

-1387787173 | 2024-04-19T12:17:59.685596
9002 / tcp

-1887088955 | 2024-03-25T13:59:02.637331
9104 / tcp

Products

Pricing

Contact Us

88.198.26.114

Last Seen: 2024-04-19

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-415434364 | 2024-04-04T09:20:47.120904 22 / tcp

OpenSSH8.9p1 Ubuntu-3

1637199859 | 2024-04-04T23:27:05.035125 80 / tcp

nginx

-1345205424 | 2024-04-16T03:18:59.686262 111 / tcp

-1345205424 | 2024-04-19T19:49:10.963973 111 / udp

1765360226 | 2024-04-19T02:01:16.213845 443 / tcp

nginx

1329810873 | 2024-04-11T11:17:49.034426 3000 / tcp

Grafana (Open Source)8.3.4

-17213027 | 2024-04-15T03:49:50.078111 5601 / tcp

-1387787173 | 2024-04-17T02:34:09.301821 9001 / tcp

-1387787173 | 2024-04-19T12:17:59.685596 9002 / tcp

-1887088955 | 2024-03-25T13:59:02.637331 9104 / tcp

Products

Pricing

Contact Us

-415434364 | 2024-04-04T09:20:47.120904
22 / tcp

1637199859 | 2024-04-04T23:27:05.035125
80 / tcp

-1345205424 | 2024-04-16T03:18:59.686262
111 / tcp

-1345205424 | 2024-04-19T19:49:10.963973
111 / udp

1765360226 | 2024-04-19T02:01:16.213845
443 / tcp

1329810873 | 2024-04-11T11:17:49.034426
3000 / tcp

-17213027 | 2024-04-15T03:49:50.078111
5601 / tcp

-1387787173 | 2024-04-17T02:34:09.301821
9001 / tcp

-1387787173 | 2024-04-19T12:17:59.685596
9002 / tcp

-1887088955 | 2024-03-25T13:59:02.637331
9104 / tcp