GeneralInformation

Hostnames	ti0186q160-0870.bb.online.no bitwarden.pjukk.com
Domains	online.no pjukk.com
Country	Norway
City	Oslo
Organization	Oslo Holmlia, Norway
ISP	Telenor Norge AS
ASN	AS2119

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443 2222 8448

-1944508259 | 2025-01-05T09:19:06.864958

80 / tcp

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx/1.21.3
Date: Sun, 05 Jan 2025 09:19:06 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://109.189.47.112/

CVE-2023-44487

126313189 | 2025-01-01T15:44:57.680674

443 / tcp

Vaultwarden Web

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Wed, 01 Jan 2025 15:44:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1236
Connection: keep-alive
cache-control: public, max-age=600
expires: Wed, 1 Jan 2025 15:54:57 GMT
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
x-xss-protection: 0
content-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; object-src 'self' blob:; script-src 'self' 'wasm-unsafe-eval'; style-src 'self' 'unsafe-inline'; child-src 'self' https://*.duosecurity.com https://*.duofederal.com; frame-src 'self' https://*.duosecurity.com https://*.duofederal.com; frame-ancestors 'self' chrome-extension://nngceckbapebfimnlniiiahkandclblb chrome-extension://jbkfoedolllekgbhcbcoahefnbanhhlh moz-extension://* ; img-src 'self' data: https://haveibeenpwned.com ; connect-src 'self' https://api.pwnedpasswords.com https://api.2fa.directory https://app.simplelogin.io/api/ https://app.addy.io/api/ https://api.fastmail.com/ https://api.forwardemail.net ;
Strict-Transport-Security: max-age=15552000; includeSubDomains

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:64:02:18:c4:12:0b:77:bc:0a:48:55:12:2f:9d:88:d0:83
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Dec 18 18:20:41 2024 GMT
            Not After : Mar 18 18:20:40 2025 GMT
        Subject: CN=bitwarden.pjukk.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a8:49:63:d1:40:e4:c3:fa:4b:46:2d:ef:91:bb:
                    05:dc:48:ad:3b:35:ca:b7:15:8f:77:98:e3:f6:78:
                    ad:c3:03:68:bd:05:a6:88:cb:fb:08:90:47:bd:10:
                    b4:6a:83:23:2c:f4:bd:70:7e:99:2e:7f:ee:ea:c8:
                    2f:11:58:8a:30:53:69:45:56:d2:a2:54:f0:36:69:
                    49:ec:3d:6c:2e:0c:2f:f4:dd:5d:40:a0:ec:76:81:
                    30:bd:5d:9b:b4:f4:93:bd:ca:f7:d4:35:da:21:9f:
                    1c:10:4f:1d:46:b9:2c:c9:b4:8c:df:88:61:ca:a3:
                    b6:bd:45:78:45:ec:f1:f2:59:12:76:ba:a5:a9:de:
                    f2:7b:78:94:12:9d:43:0e:13:df:c9:33:a0:9e:a3:
                    65:cf:47:6e:6b:55:4a:45:60:ea:cb:b4:90:74:21:
                    59:6e:35:2c:ad:b7:5b:19:a7:f3:2c:73:a4:65:e6:
                    d4:01:6e:78:66:ce:e4:02:c1:f4:8d:4f:00:ee:fe:
                    39:64:32:3e:23:31:4c:80:ee:60:1f:b9:98:40:4f:
                    81:aa:28:ab:c0:51:2a:1b:7c:e2:85:7f:8d:e1:59:
                    2d:86:a5:e5:bf:d7:33:cc:1b:e1:82:31:75:d4:1b:
                    fc:70:30:f5:3b:da:de:9d:2a:37:4f:74:1c:4e:83:
                    fb:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                63:89:17:90:88:33:8D:64:4E:CB:49:C9:6B:C6:81:42:A9:20:F1:8C
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:bitwarden.pjukk.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Dec 18 19:19:11.865 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:48:1F:A4:96:EB:93:45:69:C5:C9:F2:4D:
                                C4:56:42:72:71:10:51:D3:AA:79:0D:0D:9C:78:D1:B6:
                                D2:6E:55:43:02:21:00:B2:7D:93:34:3D:23:0D:D7:BE:
                                36:92:02:B3:D1:30:B9:33:CC:D3:DB:5F:39:61:5C:FF:
                                E2:EE:9E:86:B2:42:F5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Dec 18 19:19:11.865 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:BD:BE:CE:8E:98:AF:A1:32:21:B1:A3:
                                34:DB:0C:E2:DA:71:1B:EA:C1:1A:B8:2E:E2:6D:5E:8F:
                                C5:59:30:6A:80:02:20:3F:3A:78:C9:D8:40:4F:FD:A1:
                                28:C3:D5:E5:B9:EE:73:4D:49:B2:88:96:33:4C:9D:6B:
                                62:D4:20:5C:A5:70:E5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        03:74:3b:38:6c:ba:e6:c5:75:4e:55:c1:f2:09:2a:38:cf:63:
        14:0c:e6:d4:4d:48:a8:3c:21:05:0e:d0:5a:b9:27:c4:31:fb:
        6b:84:eb:f4:52:2b:dc:11:91:7f:a6:21:be:6e:47:f8:65:da:
        d2:62:2d:ea:43:20:ac:59:36:7b:e2:a9:c9:12:a0:20:c6:4d:
        62:28:02:65:67:27:73:e4:2c:cb:91:7c:7f:15:66:f1:0a:18:
        47:63:76:3d:fa:98:3c:07:0a:af:c3:40:37:42:04:57:e4:96:
        5d:49:a3:56:2d:64:9e:cb:6a:e0:4d:a3:6d:42:44:99:02:4c:
        9f:fc:a2:8b:17:0b:2c:9d:4b:6f:8a:39:3b:23:ec:68:a0:a0:
        aa:6f:56:6a:da:59:59:a9:1c:82:68:e6:1f:58:90:a1:dd:e7:
        5d:a7:54:ff:1a:17:1e:7a:f8:31:3a:be:08:d1:7c:b6:95:22:
        08:5f:62:a5:9d:20:11:fa:ff:8f:f6:ad:c9:25:0f:57:76:2b:
        3e:e8:c5:22:11:70:52:63:72:38:da:5f:cd:9e:42:40:3c:63:
        25:cc:2a:c6:f8:f4:83:a6:ba:47:82:db:28:23:6b:4a:fe:98:
        fa:1d:16:17:6b:f2:f8:a7:48:f8:bf:dc:61:b5:42:81:9b:08:
        3a:e1:85:ce

CVE-2023-44487

-302841111 | 2025-01-09T16:22:00.579606

2222 / tcp

SSH-2.0-OpenSSH_8.8
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPupc+ZVmXJG5xO6p/FaibYZ
hMUqhZPSYD472U4NIaeiSbVp4A6JgcX/NLaYBwRJefaMlTHw2f9J70Odv34ucLg=
Fingerprint: fe:62:0d:26:11:1f:8b:a7:c8:f5:16:43:67:9a:a0:8f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

CVE-2023-38408 CVE-2008-3844 CVE-2024-6387 CVE-2023-51767 CVE-2023-51385 3 moreCVE-2023-48795 CVE-2007-2768 CVE-2021-36368

-94174 | 2025-01-02T08:35:37.705821

8448 / tcp

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: nginx/1.21.3
Date: Thu, 02 Jan 2025 08:35:37 GMT
Content-Type: text/html
Content-Length: 657
Connection: close

CVE-2023-44487

109.189.47.112

Last Seen: 2025-01-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1944508259 | 2025-01-05T09:19:06.864958
80 / tcp

nginx1.21.3

126313189 | 2025-01-01T15:44:57.680674
443 / tcp

nginx1.21.3

-302841111 | 2025-01-09T16:22:00.579606
2222 / tcp

OpenSSH8.8

-94174 | 2025-01-02T08:35:37.705821
8448 / tcp

nginx1.21.3

Products

Pricing

Contact Us

109.189.47.112

Last Seen: 2025-01-09

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Port 2222 Port 8448 Latest CVSS

OpenPorts

-1944508259 | 2025-01-05T09:19:06.864958 80 / tcp

nginx1.21.3

126313189 | 2025-01-01T15:44:57.680674 443 / tcp

nginx1.21.3

-302841111 | 2025-01-09T16:22:00.579606 2222 / tcp

OpenSSH8.8

-94174 | 2025-01-02T08:35:37.705821 8448 / tcp

nginx1.21.3

Products

Pricing

Contact Us

Vulnerabilities

-1944508259 | 2025-01-05T09:19:06.864958
80 / tcp

126313189 | 2025-01-01T15:44:57.680674
443 / tcp

-302841111 | 2025-01-09T16:22:00.579606
2222 / tcp

-94174 | 2025-01-02T08:35:37.705821
8448 / tcp