GeneralInformation

Hostnames	nazk.gov.ua 91.142.175.20.sitel.com.ua
Domains	nazk.gov.ua sitel.com.ua
Country	Ukraine
City	Ukrainka
Organization	Sitel Ltd
ISP	Sitel Ltd
ASN	AS28994
Operating System	Ubuntu

WebTechnologies

Analytics

JavaScript libraries

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

589765266 | 2024-04-18T00:04:55.362801

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 18 Apr 2024 00:04:57 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://91.142.175.20/

-1715193770 | 2024-04-24T08:51:34.154363

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 24 Apr 2024 08:51:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: _csrf=9bd077f5c38f7212f8afc168965787f9662331a9bf81c988f50078148d29adc0a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22uFT-4qvsxS0vk2FF0qP_KJ-WTQm1xRi9%22%3B%7D; path=/; secure; HttpOnly; SameSite=Strict
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1c:71:d9:63:95:de:96:54:8d:4b:42:fd:29:d7:1a:fb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: May 18 00:00:00 2023 GMT
            Not After : May 19 23:59:59 2024 GMT
        Subject: CN=*.nazk.gov.ua
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f9:0f:ce:ff:a8:d7:84:cb:7f:aa:04:c3:b1:ff:
                    b9:29:77:4d:67:2f:cb:54:86:a4:0e:8f:ae:78:f7:
                    de:64:0e:22:8e:e6:37:f0:e7:9a:fe:b0:fb:8e:eb:
                    cb:59:9a:58:c0:d5:33:bb:86:2d:27:8e:fc:7b:42:
                    56:de:72:48:04:94:0a:fc:78:76:b3:cf:13:7e:67:
                    0c:0f:aa:9d:81:4b:17:e1:ea:d2:42:f2:d8:be:a3:
                    94:ab:82:16:e6:ea:6e:b6:72:71:2e:59:01:f0:ac:
                    67:48:ca:09:a2:97:e7:e0:89:a7:01:ec:84:39:64:
                    f0:98:b4:9a:7c:5e:fe:16:09:71:04:a2:9b:39:e1:
                    b7:01:d7:c9:ba:e0:4b:b8:f8:f6:af:9b:8c:b1:e1:
                    80:27:5e:8e:79:96:6b:bb:35:6f:c1:ca:48:ad:48:
                    75:54:39:87:3a:cd:c6:52:73:40:01:4a:4d:8e:00:
                    3b:3b:bb:e7:41:08:40:e1:88:9a:39:e7:b6:c9:ec:
                    7f:b4:0a:b9:8d:b3:dd:e3:56:58:7e:35:2e:45:1a:
                    fd:58:25:a6:c4:72:79:3c:d0:69:7e:96:1d:28:31:
                    15:b7:5c:bc:b0:02:d2:ab:55:e4:a6:c9:fe:5a:73:
                    97:c4:97:02:96:0e:b9:06:b3:c5:2a:39:af:06:fe:
                    ff:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                1B:43:EC:BF:78:AB:D2:F3:47:4D:F0:17:F0:DA:4E:40:C5:F5:B0:D8
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.nazk.gov.ua, DNS:nazk.gov.ua
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : May 18 17:19:43.606 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:84:26:CF:6C:2D:48:82:C4:99:56:94:
                                BD:66:5B:12:4D:5F:F8:15:83:5E:F3:AD:1D:E0:09:E0:
                                31:1F:96:6F:13:02:21:00:DE:35:2F:34:31:0C:35:7F:
                                FC:D0:DE:2E:22:45:FE:2C:18:FE:CC:F4:DF:ED:5C:3E:
                                E8:94:54:7C:01:F4:3E:8D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : May 18 17:19:43.690 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:48:B2:0E:AE:C5:28:32:39:00:F5:9C:8D:
                                05:6C:43:13:18:6F:90:E0:55:BA:F1:8E:8E:C0:4A:55:
                                D0:09:B5:47:02:20:3A:39:97:C0:D6:17:B0:2D:3A:BC:
                                7B:DD:C1:8B:95:D7:61:7F:93:F1:B7:7E:08:C3:8C:57:
                                2C:2D:9F:3E:4B:EB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : May 18 17:19:43.650 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FA:BD:86:6B:01:70:B0:03:8D:2C:59:
                                D6:22:6D:E0:F2:AC:D3:21:6A:CB:CA:DB:71:A8:15:00:
                                A9:51:66:83:9B:02:20:4B:E0:26:A4:1B:2B:FF:EB:ED:
                                45:9A:68:59:AF:AF:5C:F8:AE:C3:87:99:7D:A6:CC:3E:
                                80:4F:78:56:C0:90:A6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a7:1b:fb:ac:14:a3:e0:18:66:5e:79:01:8d:5b:c9:53:76:ee:
        49:78:79:e6:a0:93:9f:22:c7:2c:5e:44:2e:2d:5c:2b:69:d5:
        8f:4d:e4:2e:59:ea:b8:d8:b7:0f:15:b0:ad:4d:6d:ba:89:eb:
        75:94:15:eb:a5:14:5c:84:e8:90:97:d0:61:fb:e3:56:ca:c4:
        5f:9f:01:55:8a:10:87:f6:bf:17:81:e5:4d:cd:4d:35:b9:8c:
        7e:b3:b2:1e:39:86:e3:28:f8:6e:45:58:31:a8:c0:c5:aa:2f:
        ac:59:2b:f4:28:21:cf:13:19:08:a8:98:ee:f9:5a:29:44:15:
        7e:6e:43:07:97:9c:f1:7a:50:9e:d5:a0:67:83:68:c0:ac:34:
        96:59:4a:48:17:13:af:4b:18:84:95:0c:b0:b4:e5:c8:5f:63:
        80:b1:8b:57:8a:7b:c1:39:c0:b1:8d:9c:05:95:36:27:fb:87:
        3e:3b:e1:95:63:5c:74:61:cc:01:83:1c:f7:60:72:b5:31:a3:
        7e:74:84:af:5e:b1:3f:49:83:84:52:77:ae:6e:43:3c:fd:79:
        05:e5:6c:60:f5:9b:18:28:db:07:cb:42:31:4d:e0:76:46:1e:
        23:1e:42:b8:70:57:40:21:64:d6:63:52:90:3e:fb:b9:6c:0e:
        6b:2a:6c:de

91.142.175.20

Last Seen: 2024-04-24

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

589765266 | 2024-04-18T00:04:55.362801
80 / tcp

nginx1.18.0

-1715193770 | 2024-04-24T08:51:34.154363
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

91.142.175.20

Last Seen: 2024-04-24

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

589765266 | 2024-04-18T00:04:55.362801 80 / tcp

nginx1.18.0

-1715193770 | 2024-04-24T08:51:34.154363 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

589765266 | 2024-04-18T00:04:55.362801
80 / tcp

-1715193770 | 2024-04-24T08:51:34.154363
443 / tcp