GeneralInformation

Hostnames	vmi1495268.contaboserver.net
Domains	contaboserver.net
Country	Germany
City	Darmstadt
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 8083 8500 9080

-304649891 | 2024-05-14T19:21:21.217990

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.7
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQC8fL4WUrPibP06LPGFcf+F2DO2KfeJb1qD0CeBDCZUFMvG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Fingerprint: 28:a5:a7:eb:36:e3:d3:dd:94:e5:a8:02:fb:44:b1:9d

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1388702968 | 2024-05-14T14:07:41.606221

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 14 May 2024 14:07:41 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 3508
Connection: keep-alive
Cache-Control: no-cache, must-revalidate, no-transform, no-store
Content-Security-Policy: frame-src 'self'; frame-ancestors 'self'; object-src 'none';
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: none
X-XSS-Protection: 1; mode=block

284847918 | 2024-05-14T23:33:31.202885

8083 / tcp

HTTP/1.1 401 Unauthorized
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 0
Pragma: no-cache
X-Frame-Options: DENY
Date: Tue, 14 May 2024 23:33:31 GMT
Connection: keep-alive
WWW-Authenticate: Bearer
X-Content-Type-Options: nosniff
Content-Length: 0

272814360 | 2024-04-21T13:40:29.032400

8500 / tcp

Consul agent:
  Datacenter: dc1
  NodeName: fd3ff8d8d798
  NodeID: 36ed829c-3093-a10f-51ba-4fc04b4a065f
  Server: True
  PrimaryDatacenter: dc1
  Version: 1.17.0
  BuildDate: 2023-11-03T14:56:56Z
  Revision: 4e3f428

-799074501 | 2024-04-22T03:08:36.176967

9080 / tcp

HTTP/1.1 200 OK
content-length: 3508
Cache-Control: no-cache, must-revalidate, no-transform, no-store
Content-Security-Policy: frame-src 'self'; frame-ancestors 'self'; object-src 'none';
Content-Type: text/html;charset=utf-8
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: none
X-XSS-Protection: 1; mode=block

5.189.137.169

Last Seen: 2024-05-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-304649891 | 2024-05-14T19:21:21.217990
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

-1388702968 | 2024-05-14T14:07:41.606221
80 / tcp

nginx1.18.0

284847918 | 2024-05-14T23:33:31.202885
8083 / tcp

272814360 | 2024-04-21T13:40:29.032400
8500 / tcp

Consul1.17.0

-799074501 | 2024-04-22T03:08:36.176967
9080 / tcp

Products

Pricing

Contact Us

5.189.137.169

Last Seen: 2024-05-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-304649891 | 2024-05-14T19:21:21.217990 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

-1388702968 | 2024-05-14T14:07:41.606221 80 / tcp

nginx1.18.0

284847918 | 2024-05-14T23:33:31.202885 8083 / tcp

272814360 | 2024-04-21T13:40:29.032400 8500 / tcp

Consul1.17.0

-799074501 | 2024-04-22T03:08:36.176967 9080 / tcp

Products

Pricing

Contact Us

-304649891 | 2024-05-14T19:21:21.217990
22 / tcp

-1388702968 | 2024-05-14T14:07:41.606221
80 / tcp

284847918 | 2024-05-14T23:33:31.202885
8083 / tcp

272814360 | 2024-04-21T13:40:29.032400
8500 / tcp

-799074501 | 2024-04-22T03:08:36.176967
9080 / tcp