Hostnames |
mkustov.fvds.ru test.gelikonservice.ru www.test.gelikonservice.ru |
Domains | fvds.ru gelikonservice.ru |
Country | Russian Federation |
City | Moscow |
Organization | JSC IOT |
ISP | JSC IOT |
ASN | AS29182 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
1203301794 | 2024-05-12T08:06:23.27131422 / tcp
SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC/EPndSrj/6Y4MButaOxoG0paAZNu3Xban99F7m6FWt5qn AmpVcdzU9STRWFUJhpAwwt0pIk54UF8U9n+A3MsW7gJuCKZ8qpUQHCBru4Mzxm53SHf9Vz0y0zDQ Vo92+ztHKIy93hiPb692CvhhgZXrrPTCuTHK5pSOBwbkvLNewBZC9+2sy7vD/uYoRyCqM8FFxJzN RpkhBxSU68QNW8hL8vBxgr5wqwqG/Egl4Y8k6uEzX+LzZKFXvydOJbM6LYlNXWazf0A/JIkZGpl8 wOPX+4RSLXaYNUhFV/fgAjTSX2cPSkQySRGbdH8EoBWDASCGWIY7S7IAPCzErfK8U3NnehW5c5Cj VYr6P5s0rEhqYc1FehrCEKzC17A3bIvJHmYtBuCUwxd919rUsPr7lvLpVA0bPahIeSjev4do8jtL N3+lbt6JBpryf6c97Ghqi9BQmFiQnVXkuMSO9h8sY67RIGRFDKiS60hwm4M/D5bijht0hNuXdNgj /hj9DkvY/ic= Fingerprint: a8:55:ba:08:fa:e5:27:57:2f:d6:38:c0:e7:21:ff:e4 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
677579724 | 2024-05-13T12:46:56.54295480 / tcp
HTTP/1.1 404 Not Found Server: nginx/1.18.0 (Ubuntu) Date: Mon, 13 May 2024 12:46:56 GMT Content-Type: text/html Content-Length: 564 Connection: keep-alive
-1559002615 | 2024-05-07T22:08:28.040677443 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Tue, 07 May 2024 22:08:27 GMT Content-Type: text/html Content-Length: 862 Connection: keep-alive Last-Modified: Tue, 07 May 2024 09:48:09 GMT ETag: "6639f8d9-35e" Accept-Ranges: bytes
Certificate: Data: Version: 3 (0x2) Serial Number: 03:67:d2:3c:03:29:77:e6:95:f8:ba:88:ad:58:40:89:b3:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 5 09:40:55 2024 GMT Not After : Jul 4 09:40:54 2024 GMT Subject: CN=test.gelikonservice.ru Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c6:31:71:bf:84:fc:c1:e8:9f:15:4e:79:82:84: 64:2c:25:26:a1:fc:b4:ca:8f:91:c6:7d:12:e0:59: 9e:6e:de:d0:02:28:c3:15:71:28:c8:31:34:f9:ad: 16:27:90:b1:b9:eb:49:a1:88:5d:a3:51:39:d2:f9: d0:65:3f:b9:87:a4:06:4c:0e:fc:24:f7:f6:95:8b: 28:c6:13:fd:3c:70:88:2a:de:84:56:6d:ba:75:ce: 64:2f:d4:0a:2c:c2:fe:eb:6c:96:4c:41:04:5c:38: 0c:7d:15:5d:a6:7f:12:3d:d9:a4:a5:6d:44:1e:fb: 4d:f6:0c:4a:b5:bb:10:1a:a3:68:ca:24:a1:ad:0e: 5f:d5:b7:f0:a2:20:3a:70:39:90:24:0f:af:e8:fd: f9:b5:97:d6:51:94:6d:6f:f8:6d:fa:2f:31:37:ba: a9:b1:e8:62:4d:26:03:e6:c4:77:da:6f:e7:c2:bd: cf:7d:71:11:cb:26:2d:f5:f4:24:17:d1:1e:3c:55: 0f:2c:0b:77:1d:b8:34:9d:7d:b6:63:5f:da:e7:bd: a2:05:6f:53:74:de:1f:c8:ae:e8:04:89:70:b6:c0: 11:60:8f:5a:7c:25:43:f7:2d:5f:18:ee:cb:9e:64: eb:cf:7b:99:fc:f4:d9:e6:c0:15:2c:98:c0:eb:cf: c6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 8C:D4:CE:EC:89:F1:06:F9:3A:A2:7C:34:89:C6:B0:7D:97:67:A0:36 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:test.gelikonservice.ru, DNS:www.test.gelikonservice.ru X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Apr 5 10:40:55.181 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:C2:E5:0A:37:8A:38:8C:42:ED:BB:4B: 71:93:50:F9:D8:66:B2:59:E8:99:5F:69:E2:E5:9F:45: C7:24:E8:37:4F:02:21:00:DA:52:5C:8B:61:66:E3:73: 0D:29:52:A6:1C:EC:0F:06:C4:CE:9D:E4:34:73:59:1D: 85:66:9D:28:3D:4F:1C:96 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32: 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C Timestamp : Apr 5 10:40:55.367 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:89:A4:5E:1D:15:21:07:4A:94:94:56: 58:D7:5B:03:C6:29:47:53:C5:09:9F:9F:17:6E:02:66: A1:5B:EE:5F:45:02:21:00:F6:18:77:06:A1:B2:C9:CB: 34:E3:8B:00:9A:11:97:67:EC:89:FE:D4:55:3E:DA:EB: 16:B0:17:F1:36:BC:00:A0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:4a:82:8f:1e:f7:d6:f1:fc:fa:05:02:e7:d3:95:5b:36:02: 1f:4a:18:b2:6d:1a:47:43:ad:60:95:15:02:c7:8e:74:64:7d: eb:fa:5a:24:fc:e9:1b:73:d9:de:62:40:d8:16:60:91:d4:c1: 65:76:59:22:f4:44:96:0b:26:b4:a6:ba:a8:ef:b5:96:fb:60: 6b:fd:f9:82:5a:15:a6:8d:22:e4:b3:94:d0:d9:c6:aa:8e:dc: 44:19:d0:98:11:f3:f7:73:30:74:d0:2d:37:90:cd:9c:d9:28: 0e:bf:0d:bd:94:73:34:0e:e3:c8:e3:e3:7d:a4:3d:92:dc:76: cf:17:80:24:22:79:ca:ff:66:60:04:db:35:3f:b9:66:e2:b1: 98:39:f8:b1:9e:68:2d:d6:74:89:1b:98:40:e4:0e:e9:44:34: 96:26:23:1e:03:bf:d0:73:03:53:b9:74:90:cd:e0:20:e8:69: 8e:39:40:9c:9f:43:1c:b0:95:92:80:a6:be:7b:b5:a6:37:05: 82:c7:e0:c9:51:14:7e:f1:18:6c:0c:32:1a:33:0b:5b:f5:42: bf:e6:cb:a1:f0:0a:a5:15:73:f1:cf:ea:21:4a:a8:45:bf:2f: ff:a3:cd:83:6b:3e:7f:47:bc:3f:4d:c2:a2:80:88:a1:6f:c2: 8a:7c:31:7f
-583826916 | 2024-05-13T13:21:20.6522808080 / tcp
HTTP/1.1 200 OK Server: nginx/1.25.5 Date: Mon, 13 May 2024 13:21:20 GMT Content-Type: text/html Content-Length: 862 Last-Modified: Wed, 08 May 2024 11:42:49 GMT Connection: keep-alive ETag: "663b6539-35e" Accept-Ranges: bytes
-1932731684 | 2024-05-08T10:23:43.4044849000 / tcp
HTTP/1.1 400 Bad Request Server: gunicorn Date: Wed, 08 May 2024 10:23:43 GMT Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=utf-8 Vary: Origin X-Content-Type-Options: nosniff Referrer-Policy: same-origin Cross-Origin-Opener-Policy: same-origin EF48 <!DOCTYPE html> <html lang="en"> <head> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <meta name="robots" content="NONE,NOARCHIVE"> <title>DisallowedHost at /</title> <style type="text/css"> html * { padding:0; margin:0; } body * { padding:10px 20px; } body * * { padding:0; } body { font:small sans-serif; background-color:#fff; color:#000; } body>div { border-bottom:1px solid #ddd; } h1 { font-weight:normal; } h2 { margin-bottom:.8em; } h3 { margin:1em 0 .5em 0; } h4 { margin:0 0 .5em 0; font-weight: normal; } code, pre { font-size: 100%; white-space: pre-wrap; word-break: break-word; } summary { cursor: pointer; } table { border:1px solid #ccc; border-collapse: collapse; width:100%; background:white; } tbody td, tbody th { vertical-align:top; padding:2px 3px; } thead th { padding:1px 6px 1px 3px; background:#fefefe; text-align:left; font-weight:normal; font-size:11px; border:1px solid #ddd; } tbody th { width:12em; text-align:right; color:#666; padding-right:.5em; } table.vars { margin:5px 10px 2px 40px; width: auto; } table.vars td, table.req td { font-family:monospace; } table td.code { width:100%; } table td.code pre { overflow:hidden; } table.source th { color:#666; } table.source td { font-family:monospace; white-space:pre; border-bottom:1px solid #eee; } ul.traceback { list-style-type:none; color: #222; } ul.traceback li.cause { word-break: break-word; } ul.traceback li.frame { padding-bottom:1em; color:#4f4f4f; } ul.traceback li.user { background-color:#e0e0e0; color:#000 } div.context { padding:10px 0; overflow:hidden; } div.context ol { padding-left:30px; margin:0 10px; list-style-position: inside; } div.context ol li { font-family:monospace; white-space:pre; color:#777; cursor:pointer; padding-left: 2px; } div.context ol li pre { display:inline; } div.context ol.context-line li { color:#464646; background-color:#dfdfdf; padding: 3px 2px; } div.context ol.context-line li span { position:absolute; right:32px; } .user div.context ol.context-line li { background-color:#bbb; color:#000; } .user div.context ol li { color:#666; } div.commands, summary.commands { margin-left: 40px; } div.commands a, summary.commands { color:#555; text-decoration:none; } .user div.commands a { color: black; } #summary { background: #ffc; } #summary h2 { font-weight: normal; color: #666; } #explanation { background:#eee; } #template, #template-not-exist { background:#f6f6f6; } #template-not-exist ul { margin: 0 0 10px 20px; } #template-not-exist .postmortem-section { margin-bottom: 3px; } #unicode-hint { background:#eee; } #traceback { background:#eee; } #requestinfo { background:#f6f6f6; padding-left:120px; } #summary table { border:none; background:transparent; } #requestinfo h2, #requestinfo h3 { position:relative; margin-left:-100px; } #requestinfo h3 { margin-bottom:-1em; } .error { background: #ffc; } .specific { color:#cc3300; font-weight:bold; } h2 span.commands { font-size:.7em; font-weight:normal; } span.commands a:link {color:#5E5694;} pre.exception_value { font-family: sans-serif; color: #575757; font-size: 1.5em; margin: 10px 0 10px 0; } .append-bottom { margin-bottom: 10px; } .fname { user-select: all; } </style> <script> function hideAll(elems) { for (var e = 0; e < elems.length; e++) { elems[e].style.display = 'none'; } } window.onload = function() { hideAll(document.querySelectorAll('ol.pre-context')); hideAll(document.querySelectorAll('ol.post-context')); hideAll(document.querySelectorAll('div.pastebin')); } function toggle() { for (var i = 0; i < arguments.length; i++) { var e = document.getElementById(arguments[i]); if (e) { e.style.display = e.style.display == 'none' ? 'block': 'none'; } } return false; } function switchPastebinFriendly(link) { s1 = "Switch to copy-and-paste view"; s2 = "Switch back to interactive view"; link.textContent = link.textContent.trim() == s1 ? s2: s1; toggle('browserTraceback', 'pastebinTraceback'); return false; } </script> </head> <body> <div id="summary"> <h1>DisallowedHost at /</h1> <pre class="exception_value">Invalid HTTP_HOST header: '92.63.192.10'. You may need to add '92.63.192.10' to ALLOWED_HOSTS.</pre> <table class="meta"> <tr> <th>Request Method:</th> <td>GET</td> </tr> <tr> <th>Request URL:</th> <td>http://92.63.192.10/</td> </tr> <tr> <th>Django Version:</th> <td>4.1.3