Country | China |
City | Nanjing |
Organization | Chinanet Jiangsu Province Network |
ISP | CHINANET-BACKBONE |
ASN | AS4134 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
-553166942 | 2024-04-24T08:20:50.20817253 / tcp
-1314237642 | 2024-04-30T23:19:31.280527161 / udp
-1538260461 | 2024-05-04T20:05:04.9559452000 / tcp
219204006 | 2024-05-02T07:24:04.6746809000 / tcp