GeneralInformation

Hostnames	vmi1234942.contaboserver.net xdcfnode1.goplugin.co
Domains	contaboserver.net goplugin.co
Country	Germany
City	Düsseldorf
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 443 8888 8989

374308846 | 2024-06-14T15:01:30.690433

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQDBUryYzeFXkdhGxy0yq7gseuX9GM1IoLUWnhj2WzNENd42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Fingerprint: 5e:e1:ed:dd:97:b4:e9:09:3f:d6:7b:48:76:4e:24:50

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-06-06T13:01:10.777942

80 / tcp

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 06 Jun 2024 13:01:10 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 09 May 2023 17:03:42 GMT
Connection: keep-alive
ETag: "645a7cee-264"
Accept-Ranges: bytes

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

-1839800880 | 2024-06-05T01:21:19.751390

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 05 Jun 2024 01:21:19 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:08:f9:cb:19:79:66:6f:e2:4f:f7:c5:ed:73:88:fa:0e:8b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  4 11:38:40 2024 GMT
            Not After : Aug  2 11:38:39 2024 GMT
        Subject: CN=xdcfnode1.goplugin.co
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b1:37:61:9b:04:dd:a0:10:15:1e:ce:17:77:1c:
                    f3:6c:62:5e:f2:4e:ed:3b:44:f4:d7:44:bb:a4:4b:
                    7a:fb:50:05:27:64:5f:fa:1c:8b:57:30:cd:af:3a:
                    78:a2:1d:11:97:61:67:a4:23:25:c3:06:61:10:c0:
                    04:9a:cb:0f:90:19:e4:fb:91:64:d3:a8:73:09:01:
                    9f:9f:56:e7:d3:0c:6b:93:50:8b:45:d1:eb:e9:93:
                    a0:6d:7b:76:eb:71:ce:bc:0c:a4:9f:39:e9:11:7d:
                    13:a8:b1:c7:fa:f5:70:77:48:81:09:61:4d:20:23:
                    04:2d:0c:79:80:2b:67:89:af:a7:17:b1:f1:ad:ab:
                    93:0c:de:79:21:05:40:43:68:66:89:ea:83:c9:c6:
                    0f:7e:c9:59:5b:b4:90:b6:ac:cc:98:05:6a:94:5a:
                    ed:46:2b:25:c7:b4:16:37:7d:cf:c3:37:57:6a:bb:
                    bd:86:9e:4f:cd:8c:05:d7:e2:15:41:42:ef:54:99:
                    74:7e:38:2e:f4:93:da:60:84:33:22:79:87:e1:86:
                    75:69:fc:a2:ef:d2:4c:de:df:b5:59:65:9a:df:c6:
                    85:ac:de:a2:16:97:31:86:f4:95:9a:01:16:4e:17:
                    75:95:47:df:5d:d9:75:c5:25:7e:d7:48:2e:35:d2:
                    60:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                37:4F:28:EB:DB:C7:01:F4:73:60:E6:EA:6F:35:1C:BD:DB:FC:7D:C2
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:xdcfnode1.goplugin.co
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May  4 12:38:40.748 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:6E:E1:63:0C:31:D2:BC:E1:B8:C2:EA:B7:
                                C0:BD:52:5D:64:0C:01:CF:58:FC:B2:7D:C2:3D:AB:83:
                                FE:03:05:34:02:21:00:E9:FD:D6:F1:2B:DF:5F:EB:F0:
                                B7:B6:B3:42:04:2A:79:49:E8:84:C7:1F:B5:93:5F:00:
                                9C:2B:9D:5D:5D:0E:C1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May  4 12:38:40.763 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:8E:DD:9B:D4:1A:92:64:B1:A5:6C:33:
                                33:30:E6:E3:42:3A:3A:D5:D3:50:4D:F8:65:C4:2B:D9:
                                BD:6B:68:59:0B:02:21:00:AF:F0:5C:AF:24:89:7F:55:
                                98:23:60:00:12:65:06:48:EA:20:81:F6:44:D5:A5:F8:
                                86:CD:C3:15:E3:84:32:2E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        32:c5:7c:16:d4:fe:2c:f8:cc:d9:19:9c:69:02:00:fe:1f:4c:
        61:0f:c2:ce:4b:8d:db:58:4b:3b:73:e7:96:45:03:a1:08:8e:
        c7:64:13:83:9b:64:24:1e:57:1f:9c:a4:49:2a:2d:0f:c7:f1:
        ef:af:e1:a8:0a:e9:ba:85:ae:42:7b:43:d7:7a:9a:60:01:c8:
        8c:83:5c:b5:04:f4:42:80:13:4e:d7:66:7a:0c:8b:61:3f:a0:
        d4:34:d2:9e:fa:da:ba:2c:ad:9d:8a:52:5d:5c:c3:e5:fb:89:
        7a:78:f1:e6:2a:45:a7:04:84:1a:0e:54:ef:1e:fa:84:d6:77:
        54:b0:2c:0f:5f:27:45:cf:44:0e:77:a5:b7:1f:67:76:19:c1:
        84:85:ea:b8:21:51:13:3b:32:9d:93:ea:87:fe:c2:77:7d:82:
        e8:71:e0:af:b3:56:36:d4:b5:54:b0:6b:fe:0e:98:15:96:da:
        9c:3f:37:bf:a4:06:9c:2e:73:87:ba:1a:1d:b5:64:d1:18:6d:
        bc:97:6d:71:eb:41:07:7d:30:9d:63:a7:18:a9:5a:5c:34:75:
        7f:47:9a:61:d3:03:bb:fc:41:9e:89:12:2f:ab:ff:86:72:db:
        d7:72:1d:aa:e5:2a:fa:cc:f3:5c:52:51:17:ff:aa:99:14:19:
        3c:78:5d:88

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

-87718717 | 2024-06-14T22:12:38.251578

8888 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Sec-Websocket-Version: 13
X-Content-Type-Options: nosniff
Date: Fri, 14 Jun 2024 22:12:38 GMT
Content-Length: 12

-515444735 | 2024-06-13T19:15:52.947173

8989 / tcp

HTTP/1.1 200 OK
Vary: Origin
Date: Thu, 13 Jun 2024 19:15:52 GMT
Content-Length: 0

75.119.157.152

Last Seen: 2024-06-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

374308846 | 2024-06-14T15:01:30.690433
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.5

1651973090 | 2024-06-06T13:01:10.777942
80 / tcp

nginx1.18.0

-1839800880 | 2024-06-05T01:21:19.751390
443 / tcp

nginx1.18.0

-87718717 | 2024-06-14T22:12:38.251578
8888 / tcp

-515444735 | 2024-06-13T19:15:52.947173
8989 / tcp

Products

Pricing

Contact Us

75.119.157.152

Last Seen: 2024-06-14

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

374308846 | 2024-06-14T15:01:30.690433 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.5

1651973090 | 2024-06-06T13:01:10.777942 80 / tcp

nginx1.18.0

-1839800880 | 2024-06-05T01:21:19.751390 443 / tcp

nginx1.18.0

-87718717 | 2024-06-14T22:12:38.251578 8888 / tcp

-515444735 | 2024-06-13T19:15:52.947173 8989 / tcp

Products

Pricing

Contact Us

Vulnerabilities

374308846 | 2024-06-14T15:01:30.690433
22 / tcp

1651973090 | 2024-06-06T13:01:10.777942
80 / tcp

-1839800880 | 2024-06-05T01:21:19.751390
443 / tcp

-87718717 | 2024-06-14T22:12:38.251578
8888 / tcp

-515444735 | 2024-06-13T19:15:52.947173
8989 / tcp