GeneralInformation

Hostnames	quote.express admin.quote.express api.quote.express www.api.quote.express www.quote.express
Domains	quote.express
Cloud Provider	DigitalOcean
Cloud Region	nl-nh
Country	Netherlands
City	Amsterdam
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3001

-371391075 | 2024-05-18T16:00:52.894294

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC1HiH0u8FvOfknz9OnoIJFdEnP6o9gqFmnzYzqJUzrF9MW
VRpCAWbc/tUVdSZjJQLToG6kA4RDI/ng0+CnZkQmNUH2ZOXHMLJqWQU9ocFD5Sg7upQR1a3mFGta
scGtvzzUAso6ejBIZ0oH9vhM7OQdnQH05ZUA6kneeau5mq5mj4GRZUcqRth0/J2/B9wXSEu6ePc6
RJ/Jdkapz0tDRD4sUrR2h6P8wSJV5ObJAg/qEiXpzm4Qpi0NE0Ug636bzEOZWeorte+TNYP06ywk
wpDjn3zV8mn0UBg44Yeb3i6EamctKKQNa8FymkH7TLOsZKxdPGRWl+3nmPdR9CH5FGuhk8nron4v
1m6/uDrx7dvzuDSKi8plTXlZ42K9fvNVpP+r8ddfjL3i8/9gQtUkDaRwU3WUdXABoGig3TE0KaVa
k5iQhpfdBcS7A7GOYFAQ4PGq+zyioWpdDnBh1AI5agpHJM/uI6x0a5x7Mmo95JjXrCZ4z6PtmWhD
YvU89VVevuE=
Fingerprint: cd:f1:d5:af:1b:5e:fe:fe:47:97:5b:de:81:4c:c0:1f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-18T20:56:16.556042

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 18 May 2024 20:56:15 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

780672404 | 2024-05-18T05:02:44.804788

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 18 May 2024 05:02:44 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:c3:e1:91:9a:06:8e:47:80:08:56:93:b7:56:f5:0b:e7:00
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 28 05:03:18 2024 GMT
            Not After : Jul 27 05:03:17 2024 GMT
        Subject: CN=quote.express
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c9:49:a0:0d:7d:56:b4:9c:f8:c6:49:fa:79:b3:
                    f3:00:7b:2e:b8:81:8a:1c:ae:af:19:02:c6:6a:ee:
                    bd:74:c5:f6:da:a2:b9:84:10:05:d2:51:1c:2b:4c:
                    24:2e:53:72:8c:b0:12:d1:d4:51:c2:86:d2:90:2c:
                    8a:7c:59:32:c5:0e:4a:b8:9f:e5:f3:df:2c:59:62:
                    7c:39:11:f7:ab:d9:7d:72:62:cf:23:0d:52:28:3e:
                    b5:91:79:12:e0:21:59:39:87:21:25:22:40:d7:0a:
                    eb:9c:54:3d:a5:a8:90:8b:32:3e:ee:ce:a2:81:90:
                    95:7b:86:da:e3:50:fc:72:d3:69:59:b3:9d:94:ac:
                    a8:a6:d9:e3:3e:e5:ea:41:7a:8c:bc:55:7d:af:8d:
                    ea:57:cc:a6:c5:53:e5:a1:f8:e2:d0:02:e7:a0:0f:
                    b9:4f:4f:c4:fc:35:c5:3c:e6:7b:5b:da:4e:3e:28:
                    8f:d5:22:e1:04:27:a0:dd:35:36:0b:6a:9c:42:81:
                    84:3b:d7:71:b4:fd:3a:4f:f0:fc:59:41:e0:f2:a1:
                    31:02:79:ed:02:bc:34:58:76:29:cf:fd:b3:03:04:
                    7a:4e:b8:24:0b:eb:9a:07:dd:f3:b4:d3:8b:91:43:
                    34:c3:8e:1b:8d:3d:fe:b3:e3:6f:fe:16:07:88:fd:
                    88:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                41:12:8D:CD:BD:C7:EF:55:92:38:2B:A8:4A:AE:36:AB:47:9D:79:02
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:admin.quote.express, DNS:api.quote.express, DNS:quote.express, DNS:www.api.quote.express, DNS:www.quote.express
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 28 06:03:18.437 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C9:EC:01:79:35:A3:7C:09:8B:78:3F:
                                E0:0F:8F:7C:0B:1B:6C:E4:36:AF:79:8D:E4:ED:10:C6:
                                3A:83:51:6A:B0:02:20:7A:63:8C:C9:DC:98:36:65:0B:
                                5C:AC:AF:98:50:46:1A:20:1A:06:F1:E7:52:D4:DE:3B:
                                15:69:BA:03:E4:57:3B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr 28 06:03:18.550 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:25:99:55:D5:97:70:42:E6:F9:63:A6:9F:
                                F3:00:FB:DA:15:6C:C3:A8:DA:6B:18:04:C6:0B:CF:59:
                                A7:02:32:AD:02:20:33:B7:8E:01:49:81:AD:0A:67:1B:
                                5E:87:CA:BD:19:9D:0D:65:15:9B:6D:C5:D4:B9:9F:64:
                                0D:A2:16:0C:F1:64
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        00:15:22:23:f5:11:06:dc:17:2c:0b:1b:6b:5e:26:b7:01:79:
        1f:79:eb:b8:4b:8e:f5:5c:5e:4f:46:e8:80:6b:e5:83:de:be:
        c8:87:97:63:a3:93:d6:d9:05:cc:6e:96:49:11:d0:99:fb:47:
        39:d9:3e:fd:23:a3:db:de:cf:a4:cd:74:5b:b8:bb:dd:f7:7f:
        18:5a:1c:2a:94:00:f2:93:11:a2:bb:16:9a:87:8a:03:ba:82:
        ee:ee:9b:d3:d8:31:3b:e0:c8:c2:c9:d4:7f:7c:bd:5a:53:89:
        1f:c9:b2:59:84:41:6a:88:15:1b:96:30:01:b9:e1:61:e9:55:
        e4:f9:cc:2c:b7:15:00:e4:f5:e3:a2:06:a8:93:23:9b:7d:d7:
        20:a5:2e:da:73:5d:53:54:23:23:30:d2:07:5a:5a:c6:86:90:
        8f:b7:8f:ed:39:74:1a:c4:c9:34:32:19:ca:80:f1:26:40:fe:
        25:38:eb:42:49:6a:ac:cb:fe:b4:e6:ad:54:16:cc:a2:6e:eb:
        36:2c:0d:b7:0a:25:11:e0:b0:f2:08:e8:e6:21:62:84:52:a4:
        62:63:59:bb:8c:26:7a:2c:b2:15:a8:6a:90:5f:28:e8:cd:fd:
        b2:39:b1:c9:74:26:20:29:99:b1:d4:bc:d6:bf:cd:93:9f:0c:
        89:8c:5c:d3

-1246004407 | 2024-05-18T17:39:41.506733

3001 / tcp

HTTP/1.1 400 Bad Request
Connection: close

167.99.210.230

Last Seen: 2024-05-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-371391075 | 2024-05-18T16:00:52.894294
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-18T20:56:16.556042
80 / tcp

nginx1.18.0

780672404 | 2024-05-18T05:02:44.804788
443 / tcp

nginx1.18.0

-1246004407 | 2024-05-18T17:39:41.506733
3001 / tcp

Products

Pricing

Contact Us

167.99.210.230

Last Seen: 2024-05-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-371391075 | 2024-05-18T16:00:52.894294 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-18T20:56:16.556042 80 / tcp

nginx1.18.0

780672404 | 2024-05-18T05:02:44.804788 443 / tcp

nginx1.18.0

-1246004407 | 2024-05-18T17:39:41.506733 3001 / tcp

Products

Pricing

Contact Us

-371391075 | 2024-05-18T16:00:52.894294
22 / tcp

677579724 | 2024-05-18T20:56:16.556042
80 / tcp

780672404 | 2024-05-18T05:02:44.804788
443 / tcp

-1246004407 | 2024-05-18T17:39:41.506733
3001 / tcp