GeneralInformation

Hostnames	cdn3.caltat.com static.66.109.217.95.clients.your-server.de
Domains	caltat.com your-server.de
Country	Finland
City	Helsinki
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443 8080 9100

1773095441 | 2024-04-25T08:06:48.724751

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDTqp2GBqcM6blchRm9PlO3CgoBDfnzSjguuOtXcgchDM/l
3A1S9eWOn5ag5lNkemSe/ukTzyE1hwCQMJ3q/L3P7g5k0F8csSArRVj7Oz8bYUVUIVkDPSXQYx9u
ldOY/STBrwOF533dyHIpPDZn0PyDSYNxneAlI0E8g4t40w9kEB8cf5RrRHLZ2axEs1fkyd2stqkq
t+qoenZQWKfKicz5Hm+jh9S3iUJkAaE/TM3Ix6cEgoJRIU1ZlxwpTkYp1KmgGiZ4QX3qjtbGO+WQ
SezVgI41t5s3uhlNd6F5Xrre94M6UG95U+c/IivJQ8y8OQrsXBB7felox36WznynlJQz0JJlIB2n
43XPpGcnJ+2r8n86y8VD4+DEhhkO/TMlSGYpju2hdf3oSjUV1sZepskdiFeLmRxZgamRc/AvClnf
aM/szd9sejn4XyMjrgk8IAQGe/gJMqujM7vUCyc4SuEml56j2xDJdsLtExCbt7SAgjtru3BMFTrq
gdUdivgYa/E=
Fingerprint: 92:a6:59:01:e0:eb:8c:f3:85:4e:14:0d:13:ab:2c:13

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1810453357 | 2024-04-24T08:53:50.954861

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 24 Apr 2024 08:53:50 GMT
Content-Type: text/html
Content-Length: 1
Connection: keep-alive
Last-Modified: Thu, 11 May 2023 10:20:36 GMT
ETag: "645cc174-1"
Accept-Ranges: bytes
mode: no-cors
Access-Control-Allow-Origin: *
Cache-Control: no-cache

-1810453357 | 2024-04-15T11:52:52.457729

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 15 Apr 2024 11:52:52 GMT
Content-Type: text/html
Content-Length: 1
Connection: keep-alive
Last-Modified: Thu, 11 May 2023 10:20:36 GMT
ETag: "645cc174-1"
Accept-Ranges: bytes
mode: no-cors
Access-Control-Allow-Origin: *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:21:9e:81:2d:54:69:84:58:4a:23:86:77:7e:c6:9e:2a:d0
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 14 04:47:00 2024 GMT
            Not After : Jul 13 04:46:59 2024 GMT
        Subject: CN=cdn3.caltat.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a5:34:8e:7b:b6:39:f6:29:33:9a:75:38:c2:79:
                    25:6a:c0:3d:17:2e:d6:2c:1e:5c:df:65:e5:08:46:
                    c3:4f:7c:7d:f6:24:b3:9e:89:bd:0d:17:9f:9e:ac:
                    13:c2:5f:7e:33:3d:f1:da:61:25:43:fa:91:ed:d9:
                    01:71:1f:1a:46:6b:48:c8:55:06:88:af:e6:0e:f7:
                    11:f3:04:89:98:04:22:6e:13:c3:2e:7b:c0:fb:11:
                    eb:ea:d3:99:b7:f7:de:06:8a:c0:98:09:0b:1d:20:
                    19:4e:24:7c:1d:b4:bd:39:2c:d8:b2:b1:43:56:e2:
                    e6:fa:91:37:56:f5:7b:4b:94:8c:14:fe:a7:3f:6d:
                    c3:a2:93:e5:6e:f5:f4:90:e5:ad:30:82:cc:3b:ff:
                    e5:63:e7:b8:7f:b3:be:0a:d2:c2:82:d2:03:8c:71:
                    26:8d:e4:2e:e0:a4:63:6c:6c:5a:2e:14:14:70:41:
                    22:b3:41:78:07:91:e5:73:79:68:84:dc:ee:19:f3:
                    0f:25:98:d8:11:2c:92:d3:2e:56:5b:fd:25:01:ca:
                    3b:85:ef:35:dd:20:16:5a:09:dc:4f:99:30:a2:7e:
                    c4:5a:21:d2:8e:14:72:c9:03:18:2a:65:0d:81:71:
                    01:ee:f5:e5:f8:ee:8c:b2:8a:73:97:aa:4a:ed:2f:
                    f3:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C2:CE:D6:11:93:4F:6F:FE:AB:51:B6:EB:D1:0A:6F:E3:68:DB:2D:92
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cdn3.caltat.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 14 05:47:01.233 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:2D:79:6D:A9:20:2F:C5:86:A3:B5:C1:15:
                                9F:93:D4:0C:0B:B7:73:98:74:C5:33:CE:62:4C:41:A8:
                                46:2E:6E:85:02:20:27:0A:6A:86:9E:FC:31:E9:29:D5:
                                5B:3D:CD:78:7B:A0:0C:55:CE:B9:C2:00:91:DE:F3:6A:
                                45:A6:A7:D2:D2:BA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 14 05:47:01.245 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:10:E7:3D:25:40:56:95:5B:4D:91:8A:C8:
                                A2:D5:46:CE:ED:F3:5F:5A:CA:FC:DA:E7:AD:8C:AC:9B:
                                73:50:D1:98:02:21:00:8F:0D:F9:03:79:CC:A5:5B:9A:
                                79:DC:BA:7F:BE:F3:81:13:74:7B:43:D0:63:CC:E1:B9:
                                BC:11:41:68:53:A7:40
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b1:f1:33:37:a0:e8:7b:26:25:1c:81:3a:e4:d8:10:ba:8b:c9:
        58:68:97:2a:2a:aa:64:f0:e9:e6:08:1c:f5:38:3e:d4:99:a9:
        1c:e9:cd:ea:f1:c9:2e:d5:15:52:95:83:96:ca:d1:bc:83:5c:
        f9:d6:08:aa:64:ab:76:ed:ec:a0:70:3b:d5:9a:db:0a:4b:e2:
        c8:a0:4e:6b:47:4e:07:1f:ef:8a:5a:9f:23:19:95:89:f2:85:
        fd:f2:8e:a5:37:0b:a2:a4:9b:31:15:bb:5b:23:04:81:ce:2c:
        09:36:55:57:38:d7:41:7e:c8:81:b1:a1:49:f1:46:4d:bd:b7:
        2c:eb:56:f1:38:57:0e:4a:37:a7:99:6d:b8:a4:47:df:5b:5d:
        eb:11:c6:2e:b9:ca:e8:a5:02:73:5d:2c:8f:a2:b4:07:5c:c6:
        c3:07:8e:08:ae:36:90:78:a6:fb:2e:de:b0:38:fe:cc:92:5d:
        25:00:c3:14:b2:e0:55:65:78:4d:a1:11:d6:c1:52:a1:94:f9:
        ab:32:f8:c6:42:1e:a1:45:e1:43:9e:23:58:44:c2:41:88:e3:
        71:83:32:a3:e2:16:2f:42:ec:8a:f2:4f:6a:be:83:3d:44:f4:
        21:89:8d:56:da:ea:08:38:b8:ef:57:6a:49:df:b7:dc:2a:ca:
        13:0e:7e:03

-1836475360 | 2024-04-20T10:08:47.712177

8080 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Sat, 20 Apr 2024 10:08:47 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-482046011 | 2024-04-24T12:56:31.485871

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: debian/sid
    goversion: go1.13.8
    revision: 0.18.1+ds-2
    version: 0.18.1+ds
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: Ubuntu-2004-focal-64-minimal
    release: 5.4.0-77-generic
    sysname: Linux
    version: #86-Ubuntu SMP Thu Jun 17 02:35:03 UTC 2021
  node_network_info:
    enp35s0:
      address: a8:a1:59:0e:a6:d9
      broadcast: ff:ff:ff:ff:ff:ff
      device: enp35s0
      duplex: full
      operstate: up
    docker0:
      address: 02:42:9c:4e:2c:81
      broadcast: ff:ff:ff:ff:ff:ff
      device: docker0
      operstate: down
    veth5b7e30b:
      address: 4e:26:34:21:bc:24
      broadcast: ff:ff:ff:ff:ff:ff
      device: veth5b7e30b
      duplex: full
      operstate: up
    veth1f6d073:
      address: 76:3f:dc:91:c8:4f
      broadcast: ff:ff:ff:ff:ff:ff
      device: veth1f6d073
      duplex: full
      operstate: up
    lo:
      address: 00:00:00:00:00:00
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    br-548900719fcd:
      address: 02:42:a8:61:51:70
      broadcast: ff:ff:ff:ff:ff:ff
      device: br-548900719fcd
      operstate: up
    vethad277df:
      address: 4e:2d:89:46:1d:08
      broadcast: ff:ff:ff:ff:ff:ff
      device: vethad277df
      duplex: full
      operstate: up
    vethf57a7ee:
      address: e2:9a:7b:ba:76:5c
      broadcast: ff:ff:ff:ff:ff:ff
      device: vethf57a7ee
      duplex: full
      operstate: up
    veth978de3c:
      address: a6:20:ee:d9:e2:1a
      broadcast: ff:ff:ff:ff:ff:ff
      device: veth978de3c
      duplex: full
      operstate: up
    veth9e9be6c:
      address: be:63:65:9f:38:05
      broadcast: ff:ff:ff:ff:ff:ff
      device: veth9e9be6c
      duplex: full
      operstate: up
    enp35s0.4000:
      address: a8:a1:59:0e:a6:d9
      broadcast: ff:ff:ff:ff:ff:ff
      device: enp35s0.4000
      duplex: full
      operstate: up
    vetha8d5063:
      address: 92:1b:ae:69:14:35
      broadcast: ff:ff:ff:ff:ff:ff
      device: vetha8d5063
      duplex: full
      operstate: up

95.217.109.66

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1773095441 | 2024-04-25T08:06:48.724751
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.2

-1810453357 | 2024-04-24T08:53:50.954861
80 / tcp

nginx1.20.1

-1810453357 | 2024-04-15T11:52:52.457729
443 / tcp

nginx1.20.1

-1836475360 | 2024-04-20T10:08:47.712177
8080 / tcp

nginx1.20.1

-482046011 | 2024-04-24T12:56:31.485871
9100 / tcp

Prometheus Node Exporter0.18.1+ds

Products

Pricing

Contact Us

95.217.109.66

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1773095441 | 2024-04-25T08:06:48.724751 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.2

-1810453357 | 2024-04-24T08:53:50.954861 80 / tcp

nginx1.20.1

-1810453357 | 2024-04-15T11:52:52.457729 443 / tcp

nginx1.20.1

-1836475360 | 2024-04-20T10:08:47.712177 8080 / tcp

nginx1.20.1

-482046011 | 2024-04-24T12:56:31.485871 9100 / tcp

Prometheus Node Exporter0.18.1+ds

Products

Pricing

Contact Us

1773095441 | 2024-04-25T08:06:48.724751
22 / tcp

-1810453357 | 2024-04-24T08:53:50.954861
80 / tcp

-1810453357 | 2024-04-15T11:52:52.457729
443 / tcp

-1836475360 | 2024-04-20T10:08:47.712177
8080 / tcp

-482046011 | 2024-04-24T12:56:31.485871
9100 / tcp