GeneralInformation

Hostnames	marine.odone.com.co
Domains	odone.com.co
Cloud Provider	DigitalOcean
Cloud Region	us-ca
Country	United States
City	Santa Clara
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8069

1488519903 | 2024-05-16T10:51:56.561071

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.7
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBNY2xBb8diFQigmH9PMPmt5b
LJp1x6aALXW9xiREzc6EP3Y0w0hvZI9anAcTwYj5tOkP5XQ+xhj28Tyj3umJKuw=
Fingerprint: 74:8b:ed:db:7c:c8:6c:ac:22:4d:e8:81:d0:1e:9d:a7

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-17T13:16:21.386688

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 17 May 2024 13:15:56 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sun, 21 Apr 2024 06:00:45 GMT
Connection: keep-alive
ETag: "6624ab8d-264"
Accept-Ranges: bytes

-1687632166 | 2024-05-16T12:02:27.255142

443 / tcp

HTTP/1.1 303 SEE OTHER
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 16 May 2024 12:02:27 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 214
Connection: keep-alive
Location: http://161.35.232.90/web
Set-Cookie: session_id=45733255648728c7d1215e96f1780bacbfaf6b3d; Expires=Thu, 23 May 2024 12:02:27 GMT; Max-Age=604800; HttpOnly; Path=/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:06:7b:e9:d5:d0:cf:92:8a:b2:e3:24:aa:7a:6b:0b:7b:cc
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 21 17:04:04 2024 GMT
            Not After : Jul 20 17:04:03 2024 GMT
        Subject: CN=marine.odone.com.co
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:8f:c0:3b:aa:0e:f9:08:5a:1b:f6:7d:df:32:09:
                    d1:59:5d:ac:d5:2e:ad:f7:48:e1:0b:40:4e:8c:3c:
                    7a:88:ab:71:eb:2a:46:cd:36:3e:97:36:03:3e:05:
                    7b:c8:47:7c:a0:9d:30:55:a1:1a:e5:23:ae:4b:77:
                    53:a8:bb:6a:04
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                E9:25:AC:6E:67:B8:FF:C9:4A:4A:F6:9F:D4:F2:40:29:EC:CA:A5:C9
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:marine.odone.com.co
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 21 18:04:04.901 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EB:30:5D:10:C2:68:A1:84:A6:34:61:
                                AC:31:06:46:22:8B:13:9D:D3:F1:8E:AA:B2:10:96:15:
                                A9:5F:BD:CE:65:02:21:00:C9:95:DF:90:F9:17:95:8C:
                                71:08:96:60:27:CD:2B:B9:9D:96:D1:81:66:F7:94:B0:
                                52:FF:81:68:5B:EF:AB:3C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 21 18:04:04.894 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:ED:47:5A:2E:C4:D1:16:96:F5:BB:5E:
                                D8:1F:A7:7B:F1:DA:BB:61:C8:F8:17:B1:47:17:DF:EE:
                                F8:6E:E5:8B:B0:02:21:00:B9:9D:15:0A:4A:37:28:08:
                                34:7D:E9:1C:9C:27:E0:3E:DE:1A:88:B7:DE:57:38:20:
                                D6:DE:21:11:BC:4A:E7:12
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        06:a9:ba:c9:10:6f:5f:de:59:a7:98:0b:27:c7:bf:98:5f:de:
        38:57:0d:24:01:af:21:20:42:7a:15:13:07:9d:51:52:c4:9e:
        9f:c5:d0:73:37:c9:b0:df:21:54:ae:b3:e0:ea:02:df:a9:e7:
        4b:25:31:73:cc:18:d3:7a:ca:6e:12:f9:73:1f:d9:cf:ba:f0:
        c9:ae:fe:41:e7:c7:56:2b:1e:e1:34:49:cb:97:e5:2d:90:45:
        0c:77:82:e1:e9:e6:54:c4:dc:6d:72:c5:15:0f:9c:50:bf:8e:
        31:92:66:77:38:95:c4:55:0b:8a:67:22:99:71:c9:b1:9a:cb:
        aa:2e:3a:22:5b:f4:4a:50:ca:c1:6e:71:28:8c:b5:6e:b5:03:
        73:c6:eb:48:bb:c5:a9:67:74:94:db:de:8a:21:61:a2:25:46:
        ad:d4:1d:d0:46:a1:78:92:a0:f2:af:9b:a4:d7:3b:fb:ac:85:
        b1:a9:92:f8:a3:c3:62:2e:d1:d8:c4:08:bb:a5:74:f3:16:88:
        e3:68:16:75:9b:36:01:d2:a9:9d:18:bd:c2:11:49:56:af:44:
        81:a1:df:90:e3:0e:be:c5:0d:e7:de:fc:19:1c:32:de:c4:ac:
        e2:11:8c:c8:46:43:9a:e2:68:8c:e0:b3:de:11:e4:d2:cc:d9:
        f4:23:a7:6f

80955441 | 2024-05-11T01:52:59.350378

8069 / tcp

HTTP/1.0 200 OK
Content-Type: text/html; charset=utf-8
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Set-Cookie: session_id=735b20ec865f35183ba60d2b5118f2d94665cda3; Expires=Sat, 18 May 2024 01:52:59 GMT; Max-Age=604800; HttpOnly; Path=/
Connection: close
Server: Werkzeug/2.0.2 Python/3.10.14
Date: Sat, 11 May 2024 01:52:59 GMT

161.35.232.90

Last Seen: 2024-05-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1488519903 | 2024-05-16T10:51:56.561071
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

1651973090 | 2024-05-17T13:16:21.386688
80 / tcp

nginx1.18.0

-1687632166 | 2024-05-16T12:02:27.255142
443 / tcp

nginx1.18.0

80955441 | 2024-05-11T01:52:59.350378
8069 / tcp

Products

Pricing

Contact Us

161.35.232.90

Last Seen: 2024-05-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1488519903 | 2024-05-16T10:51:56.561071 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

1651973090 | 2024-05-17T13:16:21.386688 80 / tcp

nginx1.18.0

-1687632166 | 2024-05-16T12:02:27.255142 443 / tcp

nginx1.18.0

80955441 | 2024-05-11T01:52:59.350378 8069 / tcp

Products

Pricing

Contact Us

1488519903 | 2024-05-16T10:51:56.561071
22 / tcp

1651973090 | 2024-05-17T13:16:21.386688
80 / tcp

-1687632166 | 2024-05-16T12:02:27.255142
443 / tcp

80955441 | 2024-05-11T01:52:59.350378
8069 / tcp