GeneralInformation

Hostnames	mnogo.travel
Domains	mnogo.travel
Country	Russian Federation
City	Moscow
Organization	Selectel Ltd. Customer bgp subnet.
ISP	OOO "Network of data-centers "Selectel"
ASN	AS50340

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

53 80 443 4369

1200914699 | 2024-06-05T23:48:32.810540

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 05 Jun 2024 23:48:29 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding

1200914699 | 2024-06-06T11:01:12.793085

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 06 Jun 2024 11:01:12 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:68:5c:e7:1a:7f:b6:d7:99:76:b1:9e:e9:c8:00:3f:5a:24
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 21 03:18:25 2024 GMT
            Not After : Jul 20 03:18:24 2024 GMT
        Subject: CN=*.mnogo.travel
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:8b:3b:fe:5a:63:71:55:d3:e1:8e:d2:2b:3d:5d:
                    8f:d3:e1:73:73:30:f0:d5:79:2b:a0:3d:de:ad:54:
                    2b:3a:c0:79:5e:bc:31:9d:fb:e5:51:54:26:85:95:
                    6c:b7:0e:c5:bc:69:35:7a:49:a0:fb:aa:52:db:e2:
                    9b:45:c4:43:d5
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                46:F2:26:B3:C4:2A:A0:2A:C2:D0:01:82:A8:F2:31:C4:56:B3:AE:E9
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.mnogo.travel, DNS:mnogo.travel
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 21 04:18:25.804 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:58:CA:77:B7:07:99:4D:12:85:01:0E:BF:
                                FE:5B:5E:C2:EC:F2:E6:FA:E6:C0:02:ED:CE:2F:CF:08:
                                A8:E5:1E:61:02:20:54:7D:D2:E3:1B:38:38:1F:42:CE:
                                CC:5A:90:A3:2B:E3:BC:5E:15:B6:27:9D:01:0D:96:1C:
                                BE:F9:37:51:27:36
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 21 04:18:25.877 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A6:DB:E6:88:0F:78:34:03:CC:88:50:
                                59:DC:E2:E2:D8:94:4B:EC:4E:F9:95:89:6A:06:FC:AE:
                                A6:23:C9:8B:E1:02:21:00:9A:80:69:5C:07:8E:F5:C1:
                                28:E3:DC:A4:FE:AE:03:6C:98:DA:8C:A6:84:20:68:D9:
                                4C:57:DA:00:A7:20:06:38
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b3:5f:51:5e:8a:bd:ed:52:fa:e9:f6:96:f2:ca:b4:52:a6:e9:
        3c:62:c0:e3:76:63:7d:46:33:55:83:a9:cb:23:eb:e5:11:7c:
        b6:76:bf:0b:e0:79:1a:d3:96:fe:f5:ed:61:c1:b4:4b:80:61:
        60:70:33:2c:9c:31:79:e4:a4:93:19:8c:be:90:bc:83:2a:3a:
        1d:d4:b5:f0:03:dd:28:32:a9:de:37:fb:7c:d0:58:76:43:e6:
        bc:13:ce:e3:46:4f:87:13:fb:03:89:36:f7:92:8e:60:8f:40:
        50:9d:d3:0d:f3:6f:5b:df:92:ad:c6:e3:60:ac:dc:67:13:64:
        2f:e7:d5:8e:00:e1:24:1c:95:0c:36:30:b6:9d:a8:d2:8f:6a:
        c6:13:2e:fc:df:83:db:fd:b1:e1:0c:f2:6d:a1:77:da:f5:aa:
        b5:b6:cc:e9:8f:f8:dc:18:d6:00:6f:8a:2e:20:fa:b5:d9:b0:
        dc:f2:59:6d:e5:b0:54:08:6b:ef:bf:d0:20:36:fe:b8:e1:92:
        3c:c0:f8:30:a2:57:e8:1f:b2:17:af:7c:da:5b:bd:c4:bb:cb:
        31:b5:89:3d:ec:2c:b4:c2:b9:5f:62:df:f1:ad:db:a6:8f:be:
        48:91:7a:7f:19:80:9d:8a:45:e1:b0:6a:9a:7e:9b:63:45:7d:
        6c:e6:53:fa

50704379 | 2024-05-11T04:02:29.976343

4369 / tcp

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

92.53.110.122

Last Seen: 2024-06-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1200914699 | 2024-06-05T23:48:32.810540
80 / tcp

nginx1.20.1

1200914699 | 2024-06-06T11:01:12.793085
443 / tcp

nginx1.20.1

50704379 | 2024-05-11T04:02:29.976343
4369 / tcp

Erlang Port Mapper Daemon

Products

Pricing

Contact Us

92.53.110.122

Last Seen: 2024-06-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1200914699 | 2024-06-05T23:48:32.810540 80 / tcp

nginx1.20.1

1200914699 | 2024-06-06T11:01:12.793085 443 / tcp

nginx1.20.1

50704379 | 2024-05-11T04:02:29.976343 4369 / tcp

Erlang Port Mapper Daemon

Products

Pricing

Contact Us

1200914699 | 2024-06-05T23:48:32.810540
80 / tcp

1200914699 | 2024-06-06T11:01:12.793085
443 / tcp

50704379 | 2024-05-11T04:02:29.976343
4369 / tcp