Hostnames | gaz-connect.ru |
Domains | gaz-connect.ru |
Country | Russian Federation |
City | Moscow |
Organization | Reg.Ru Hosting |
ISP | "Domain names registrar REG.RU", Ltd |
ASN | AS197695 |
Operating System | Ubuntu |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
1841808371 | 2024-04-26T21:57:05.65417480 / tcp
HTTP/1.1 503 Service Temporarily Unavailable Server: nginx/1.18.0 (Ubuntu) Date: Fri, 26 Apr 2024 21:57:05 GMT Content-Type: text/html Content-Length: 608 Connection: keep-alive
1841808371 | 2024-04-20T03:29:45.858637443 / tcp
HTTP/1.1 503 Service Temporarily Unavailable Server: nginx/1.18.0 (Ubuntu) Date: Sat, 20 Apr 2024 03:29:45 GMT Content-Type: text/html Content-Length: 608 Connection: keep-alive
Certificate: Data: Version: 3 (0x2) Serial Number: 29:1e:0e:23:8f:17:0e:59:4d:9b:11:2f Signature Algorithm: sha256WithRSAEncryption Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020 Validity Not Before: Oct 2 06:48:37 2023 GMT Not After : Nov 2 06:48:36 2024 GMT Subject: CN=*.gaz-connect.ru Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ae:50:24:88:a9:53:41:e9:a2:a2:5c:b9:cb:26: 79:5f:ef:86:7a:ac:80:cd:88:fd:5f:d1:38:c2:09: e1:98:41:b5:2a:54:50:f7:25:cd:b3:b8:d6:9f:91: 93:d2:2f:e4:49:5d:c9:2c:8c:5a:19:16:76:48:a7: f6:a8:01:75:c1:d6:73:f9:fc:4c:c7:66:53:9e:aa: 44:62:46:c1:0b:10:13:30:21:3d:60:8e:ad:d7:00: 38:7d:d5:6a:fc:50:36:9c:50:93:3e:cd:d2:90:1e: ae:d9:dc:9e:ea:8b:a8:07:75:ad:d6:99:ac:2f:54: e2:b3:19:41:95:f5:01:5e:84:e3:5a:55:26:9b:66: 7a:a5:63:a2:1c:78:a2:a8:26:73:66:f3:0f:bd:fc: 06:27:d5:c7:83:6e:16:1f:3e:85:d3:38:28:67:76: f7:7d:39:29:92:6a:4d:b6:37:08:e8:fe:05:07:13: 96:cb:bb:71:8f:a0:f4:fd:3c:35:4b:17:6e:d1:d8: bd:26:6f:c6:91:21:91:d4:b8:12:5e:bf:2d:31:53: 6c:02:51:1e:9a:11:c0:ea:ca:83:c5:a8:16:c6:ed: 6f:a2:86:ec:01:6d:73:28:b6:61:0c:9d:e8:8d:fe: be:06:e9:ce:bb:1e:1a:3e:11:93:67:06:f6:df:74: 6b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE Authority Information Access: CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020 X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.4146.1.10 CPS: https://www.globalsign.com/repository/ Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl X509v3 Subject Alternative Name: DNS:*.gaz-connect.ru, DNS:gaz-connect.ru X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Authority Key Identifier: 0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C X509v3 Subject Key Identifier: 08:9B:3A:D7:DE:7D:95:EF:11:47:67:73:DF:06:FF:64:F6:52:AA:28 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 2 06:48:39.308 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:57:D1:4F:57:12:EB:30:4A:F7:21:4A:1E: 06:73:CC:A8:94:F4:B0:59:7C:4D:AB:1A:CA:BA:3C:D8: 88:B1:4F:08:02:21:00:BB:9C:6D:29:EC:A1:CD:5C:BB: 44:79:E1:7B:6B:D1:58:AE:4E:0F:7E:89:2A:36:12:99: C2:06:1B:56:CD:22:B2 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Oct 2 06:48:39.318 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:59:4D:E3:19:F5:20:67:9C:89:82:B7:5C: 02:37:68:5B:EE:E1:5F:0C:85:92:F8:66:E8:E5:D9:05: 33:FD:23:70:02:20:19:5E:1E:3E:68:98:B3:A3:CD:9B: 73:74:12:B2:54:37:AD:DE:69:B8:A3:D8:8D:DA:5B:03: 4E:65:8C:05:D3:26 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 2 06:48:39.348 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:2F:54:F6:AC:7D:0D:C8:FD:7D:2B:3E:0E: EF:6A:13:57:57:28:77:8D:51:C6:9F:6D:BB:FA:51:9B: 1C:5C:CD:88:02:21:00:CC:31:5B:5E:06:C7:2E:B1:1C: 7F:39:51:4C:0B:71:67:5B:88:F7:38:EB:4A:0F:AC:6A: A9:40:1E:F3:8A:58:6B Signature Algorithm: sha256WithRSAEncryption Signature Value: 95:88:b5:89:b6:c6:bb:56:18:15:d6:3b:b4:b7:35:a7:04:9e: 52:84:bd:9b:a4:32:e2:6b:05:06:11:5b:04:89:46:ec:48:a4: 49:76:9d:b6:08:46:b4:f8:41:7d:3e:e0:2d:de:f0:71:b6:0f: 55:9d:ce:ab:dd:a2:0f:ab:89:bd:58:a7:a0:b4:73:fc:a9:a6: f7:c3:08:11:c9:cf:45:2d:d5:d7:4d:b5:d1:9a:58:50:d4:50: 0a:a2:d4:d4:97:db:06:ce:d6:a7:f6:99:6d:53:e5:82:57:87: 88:37:12:41:4d:08:b6:37:14:e9:e0:f4:c2:3b:97:77:ca:04: 2b:cb:c0:6c:b4:a9:0a:28:05:b5:1b:71:e5:0a:8e:45:6b:cf: 7a:68:3c:ec:34:1d:81:ff:31:f1:a1:34:8c:5d:92:d6:2a:c8: 27:19:4f:9a:82:7d:2f:95:a9:c6:b3:12:94:cb:6e:ee:2e:fc: b8:52:b8:d1:e9:77:4a:da:a1:d9:7c:bb:55:43:26:46:fe:ab: d2:f5:a6:03:80:be:74:3b:55:0b:60:ac:4c:7b:1c:f9:48:6a: c8:3c:bd:b0:cc:bb:9d:ea:65:ad:1f:5a:e4:0d:79:8f:5c:c9: 22:8b:b4:4b:fd:c0:35:47:02:16:13:b1:d4:db:72:53:16:2e: 54:d9:4c:d5
-752647675 | 2024-04-24T12:01:36.2129277443 / tcp
HTTP/1.1 200 OK Server: nginx Date: Wed, 24 Apr 2024 12:01:36 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 24 Apr 2024 12:01:36 GMT Set-Cookie: PHPSESSID=8d7fa9d95e7674914bbe3f3d41db698b; path=/; HttpOnly Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache X-Frame-Options: SAMEORIGIN 1ecb <!DOCTYPE html> <html lang="en"> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="stylesheet" href="/vendor/bootstrap/css/bootstrap.min.css" type="text/css"> <link rel="stylesheet" href="/css/login.css?v=1643658823" type="text/css"> <title>pfSense - Login</title> <script type="text/javascript"> //<![CDATA{ var events = events || []; //]]> </script> <script type="text/javascript">if (top != self) {top.location.href = self.location.href;}</script><script type="text/javascript">var csrfMagicToken = "sid:e979f375f7ced7a7af3820bb98dc8bd001c6983b,1713960096;ip:8b53f683cf790b7804f0a652ede2c7ecc314444a,1713960096";var csrfMagicName = "__csrf_magic";</script><script src="/csrf/csrf-magic.js" type="text/javascript"></script></head> <body id="login" > <div id="total"> <header> <div id="headerrow"> <div class="row"> <!-- Header left logo box --> <div class="col-sm-4"> <div id="logodiv" style="text-align:center" class="nowarning"> <svg id="logo" role="img" aria-labelledby="pfsense-logo" x="0px" y="0px" viewBox="0 0 282.8 84.2"> <title id="pfsense-logo-svg">pfSense Logo</title> <path class="logo-st0" d="M27.8,57.7c2.9,0,5.4-0.9,7.5-2.6c2.1-1.7,3.6-4,4.4-6.8c0.8-2.8,0.6-5.1-0.5-6.8c-1.1-1.7-3.2-2.6-6.1-2.6 c-2.9,0-5.4,0.9-7.5,2.6c-2.1,1.7-3.5,4-4.3,6.8c-0.8,2.8-0.7,5.1,0.5,6.8C22.8,56.9,24.8,57.7,27.8,57.7"/> <path class="logo-st0" d="M115.1,46.6c-1.5-0.8-3-1.4-4.7-1.8c-1.7-0.4-3.2-0.7-4.7-1.1c-1.5-0.3-2.7-0.7-3.6-1.1c-0.9-0.4-1.4-1.1-1.4-2 c0-1.1,0.5-1.9,1.4-2.4c0.9-0.5,1.9-0.7,2.8-0.7c2.8,0,5,1,6.7,3.1l7-7c-1.7-1.8-3.9-3.1-6.4-3.8c-2.5-0.7-5-1.1-7.4-1.1 c-1.9,0-3.9,0.2-5.7,0.7c-1.9,0.5-3.6,1.2-5,2.3c-1.5,1-2.6,2.3-3.5,3.9c-0.9,1.6-1.3,3.5-1.3,5.7c0,2.3,0.5,4.2,1.4,5.6 c0.9,1.4,2.1,2.5,3.6,3.3c1.5,0.8,3,1.3,4.7,1.7c1.7,0.4,3.2,0.7,4.7,1.1c1.5,0.3,2.7,0.7,3.6,1.2c0.9,0.5,1.4,1.2,1.4,2.2 c0,1-0.5,1.7-1.6,2.1c-1.1,0.4-2.3,0.6-3.6,0.6c-1.7,0-3.3-0.3-4.6-1c-1.3-0.7-2.5-1.7-3.6-3l-7,7.7c1.8,1.9,4.1,3.2,6.7,3.9 c2.7,0.7,5.3,1.1,7.9,1.1c2,0,4-0.2,6.1-0.6c2-0.4,3.9-1,5.5-2c1.6-0.9,3-2.2,4-3.8c1-1.6,1.6-3.5,1.6-5.9c0-2.3-0.5-4.2-1.4-5.6 C117.7,48.6,116.5,47.4,115.1,46.6"/> <path class="logo-st0" d="M156.3,34.1c-1.5-1.7-3.3-3-5.5-3.9c-2.2-0.9-4.6-1.4-7.2-1.4c-2.9,0-5.6,0.5-8.1,1.4c-2.5,0.9-4.7,2.2-6.6,3.9 c-1.9,1.7-3.3,3.8-4.4,6.2c-1.1,2.4-1.6,5.1-1.6,8c0,3,0.5,5.6,1.6,8c1.1,2.4,2.5,4.5,4.4,6.2c1.9,1.7,4.1,3,6.6,3.9 c2.5,0.9,5.2,1.4,8.1,1.4c3,0,5.9-0.6,8.7-1.9c2.8-1.3,5.1-3.1,7-5.4l-8-5.9c-1,1.3-2.1,2.4-3.4,3.3c-1.3,0.8-2.9,1.3-4.8,1.3 c-2.2,0-4.1-0.7-5.7-2c-1.5-1.3-2.5-3.1-3-5.2H161v-3.6c0-3-0.4-5.6-1.2-8C159,37.9,157.8,35.8,156.3,34.1 M134.3,44.1 c0.1-0.9,0.3-1.8,0.7-2.6c0.4-0.8,0.9-1.6,1.6-2.2c0.7-0.6,1.5-1.2,2.5-1.6c1-0.4,2.1-0.6,3.4-0.6c2.1,0,3.8,0.7,5.1,2.1 c1.3,1.4,2,3,1.9,5H134.3z"/> <path class="logo-st0" d="M198.3,33.8c-1-1.6-2.4-2.8-4.2-3.7c-1.8-0.9-4.1-1.3-7-1.3c-1.4,0-2.7,0.2-3.8,0.5c-1.2,0.4-2.2,0.8-3.1,1.4 c-0.9,0.6-1.7,1.2-2.4,1.9c-0.7,0.7-1.2,1.4-1.5,2.1H176v-5.1h-11v37.2h11.5V48.4c0-1.2,0.1-2.4,0.2-3.5c0.2-1.1,0.5-2.1,1-3 c0.5-0.9,1.2-1.6,2.1-2.1c0.9-0.5,2.1-0.8,3.6-0.8c1.5,0,2.6,0.3,3.4,0.9c0.8,0.6,1.4,1.4,1.8,2.4c0.4,1,0.6,2,0.7,3.2 c0.1,1.1,0.1,2.3,0.1,3.3v18.2h11.5V46.4c0-2.5-0.2-4.8-0.5-7C199.9,37.3,199.3,35.4,198.3,33.8"/> <path class="logo-st0" d="M231.5,46.6c-1.5-0.8-3-1.4-4.7-1.8c-1.7-0.4-3.2-0.7-4.7-1.1c-1.5-0.3-2.7-0.7-3.6-1.1c-0.9-0.4-1.4-1.1-1.4-2 c0-1.1,0.5-1.9,1.4-2.4c0.9-0.5,1.9-0.7,2.8-0.7c2.8,0,5,1,6.7,3.1l7-7c-1.7-1.8-3.9-3.1-6.4-3.8c-2.5-0.7-5-1.1-7.4-1.1 c-1.9,0-3.9,0.2-5.7,0.7c-1.9,0.5-3.6,1.2-5,2.3c-1.5,1-2.6,2.3-3.5,3.9c-0.9,1.6-1.3,3.5-1.3,5.7c0,2.3,0.5,4.2,1.4,5.6 c0.9,1.4,2.1,2.5,3.6,3.3c1.5,0.8,3,1.3,4.7,1.7c1.7,0.4,3.2,0.7,4.7,1.1c1.5,0.3,2.7,0.7,3.6,1.2c0.9,0.5,1.4,1.2,1.4,2.2 c0,1-0.5,1.7-1.6,2.1c-1.1,0.4-2.3,0.6-3.6,0.6c-1.7,0-3.3-0.3-4.6-1c-1.3-0.7-2.5-1.7-3.6-3l-7,7.7c1.8,1.9,4.1,3.2,6.7,3.9 c2.7,0.7,5.3,1.1,7.9,1.1c2,0,4-0.2,6.1-0.6c2-0.4,3.9-1,5.5-2c1.6-0.9,3-2.2,4-3.8c1-1.6,1.6-3.5,1.6-5.9c0-2.3-0.5-4.2-1.4-5.6 C234.1,48.6,232.9,47.4,231.5,46.6"/> <path class="logo-st0" d="M277.4,51.9v-4.2c-0.1-2.7-0.5-5.2-1.2-7.4c-0.8-2.4-2-4.5-3.5-6.2c-1.5-1.7-3.3-3-5.5-3.9 c-2.2-0.9-4.6-1.4-7.2-1.4c-2.9,0-5.6,0.5-8.1,1.4c-2.5,0.9-4.7,2.2-6.6,3.9c-1.9,1.7-3.3,3.8-4.4,6.2c-1.1,2.4-1.6,5.1-1.6,8 c0,3,0.5,5.6,1.6,8c1.1,2.4,2.5,4.5,4.4,6.2c1.9,1.7,4.1,3,6.6,3.9c2.5,0.9,5.2,1.4,8.1,1.4c3,0,5.9-0.6,8.7-1.9 c2.8-1.3,5.1-3.1,7-5.4l-8-5.9c-1,1.3-2.1,2.4-3.4,3.3c-1.3,0.8-2.9,1.3-4.8,1.3c-2.2,0-4.1-0.7-5.7-2c-1.5-1.3-2.5-3.1-3-5.2H277.4 z M250.7,44.1c0.1-0.9,0.3-1.8,0.7-2.6c0.4-0.8,0.9-1.6,1.6-2.2c0.7-0.6,1.5-1.2,2.5-1.6c1-0.4,2.1-0.6,3.4-0.6 c2.1,0,3.8,0.7,
199333125 | 2024-04-15T10:32:15.1432548080 / tcp
HTTP/1.1 400 Bad Request Server: nginx Date: Mon, 15 Apr 2024 10:32:15 GMT Content-Type: text/html Content-Length: 650 Connection: close