GeneralInformation

Hostnames	aart.dev.back.basis33.com www.aart.dev.back.basis33.com static.194.106.181.135.clients.your-server.de
Domains	basis33.com your-server.de
Country	Finland
City	Helsinki
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(2)

CVE-2023-46118

4.9RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API and cause target node to be terminated by an "out-of-memory killer"-like mechanism. This vulnerability has been patched in versions 3.11.24 and 3.12.7.

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2022(1)

CVE-2022-31008

5.5RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker (link) state. The encryption key used to encrypt the URI was seeded with a predictable secret. This means that in case of certain exceptions related to Shovel and Federation plugins, reasonably easily deobfuscatable data could appear in the node log. Patched versions correctly use a cluster-wide secret for that purpose. This issue has been addressed and Patched versions: `3.10.2`, `3.9.18`, `3.8.32` are available. Users unable to upgrade should disable the Shovel and Federation plugins.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

21 22 80 443 4369 5672 8888 33060

21 / tcp

-686804023 | 2025-03-14T10:44:22.384204

220 ProFTPD Server (Debian) [::ffff:135.181.106.194]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
214-CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
214-EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
214-XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
214-NOOP    FEAT    OPTS    HOST    CLNT    AUTH*   CCC*    CONF*   
214-ENC*    MIC*    PBSZ*   PROT*   TYPE    STRU    MODE    RETR    
214-STOR    STOU    APPE    REST    ABOR    USER    PASS    ACCT*   
214-REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@static.194.106.181.135.clients.your-server.de
211-Features:
211-CLNT
211-EPRT
211-EPSV
211-HOST
211-LANG en-US.UTF-8*;en-US
211-MDTM
211-MFF modify;UNIX.group;UNIX.mode;
211-MFMT
211-MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
211-REST STREAM
211-SITE COPY
211-SITE MKDIR
211-SITE RMDIR
211-SITE SYMLINK
211-SITE UTIME
211-SIZE
211-TVFS
211-UTF8
211 End

22 / tcp

182165286 | 2025-03-31T13:45:06.126718

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDrMeEZ7yFCWSRuPfzMRQjl41hcZSrYHDSg0pGLfEElIe8G
1JTb/BUQtJ0qKZ6H/AoQ7eNJnru1ZqIVP753F1tFDDRds+7f+oIQv4m0SEPzEhKCIBetMmlDaZIc
a+luilFZHGhchHt6qGtqfD5hTL/nrHYXxADh8sMI+jrnpW2fkmALkwtCrQmMhZjVgyXAZF8aNbMM
Xd2QBXN600BpDRNxTFTHyH+R70lOd5FCUcY5tSM+LIVnk2bfjfqmfRAb/p+cOfinDVa77NvMxIa0
LqmkpLS87JVxqyKV6ynkrBKRPMyOyDLY80HOgX7PFuAbMVCX76U/RplNDyHpIoTzBY6h+x4zWPjw
o36YqU4prDhXQreaTgK/TCatNPbEsnp6ZtvSuCKK5mH2ScZKbnXf/lzyqsii2B3Wr85GQl/Xl5Dr
Wpblgio9r6r5waYQCZGrdxm1DFLWhJ8S/KWQUm3SVD0yuclbRSjasvdPl8nQ10gwfZR5G/yzpM6C
sGP7tWF9GBk=
Fingerprint: cf:7f:7e:74:3c:25:fd:0a:77:30:af:8a:5c:a1:7e:b9

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-04-02T16:00:03.612800

Hashes

hash

-2049397090

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 02 Apr 2025 16:00:03 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

245551881 | 2025-03-31T11:37:55.063870

Hashes

hash

-160832151

http.dom_hash

-2006505642

http.html_hash

245551881

http.robots_hash

1243873884

http.server_hash

967792298

http.sitemap_hash

1031016865

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 31 Mar 2025 11:37:54 GMT
Content-Language: en
Link: <https://135.181.106.194/api/docs.jsonld>; rel="http://www.w3.org/ns/hydra/core#apiDocumentation"
X-Robots-Tag: noindex

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:20:d6:ea:1f:4e:6f:4b:51:fc:32:bd:9b:e1:ec:b0:ec:ff
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Mar  1 01:41:25 2025 GMT
            Not After : May 30 01:41:24 2025 GMT
        Subject: CN=aart.dev.back.basis33.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:af:d6:29:91:61:83:f2:33:87:3c:f6:bf:63:f3:
                    12:44:9f:65:2c:47:ba:56:38:3b:c5:40:b4:fa:37:
                    3f:a5:ef:0c:02:24:9d:6e:c8:9c:4d:f1:c2:49:4e:
                    bd:23:14:26:56:fd:7f:72:fd:0c:e2:3e:25:ba:1c:
                    c4:ad:16:39:c1:6b:6b:07:f4:cf:cb:b0:e4:de:9f:
                    d1:a7:7b:1d:57:35:9e:68:18:67:4d:89:79:9b:3b:
                    80:98:cd:23:7d:7f:06:cf:58:81:3f:6c:bc:23:93:
                    0e:64:e7:17:60:8f:28:c1:85:e5:87:50:18:c6:d7:
                    30:2f:d6:70:f2:72:66:8a:88:cf:a9:b8:38:0a:dc:
                    a5:37:75:08:56:78:96:88:96:e4:7d:ed:b4:02:48:
                    31:1d:23:12:57:5c:2a:9d:1f:68:2c:4b:da:e9:c2:
                    96:6b:bd:74:67:64:0f:1e:2e:c8:7c:06:54:10:c4:
                    0e:c9:d5:bc:a5:57:fd:1d:62:7b:a3:3d:2a:01:52:
                    27:f3:20:a1:6d:f4:70:69:70:18:94:84:78:f5:b5:
                    b0:01:c5:1e:11:c4:64:c2:7c:e3:68:3d:6a:95:e4:
                    b3:34:57:df:b2:00:10:94:03:fc:85:f8:06:9b:7b:
                    23:83:ba:41:22:07:74:f0:da:62:2c:65:d4:76:1c:
                    68:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A7:FF:DE:6E:8E:16:F7:FD:53:CC:96:59:C5:DE:42:D6:E7:BD:0D:70
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:aart.dev.back.basis33.com, DNS:www.aart.dev.back.basis33.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Mar  1 02:39:55.808 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:98:8F:6D:3F:B0:23:5F:08:15:5B:A4:
                                C2:68:54:EE:71:A4:B0:D6:40:13:C2:93:BD:3D:4B:3B:
                                09:ED:D8:88:B0:02:21:00:93:7E:67:92:50:8A:EB:31:
                                67:28:AD:9B:83:B3:FB:C3:3E:C4:3D:A7:02:AE:EA:B2:
                                96:84:83:F7:81:AB:A9:5A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Mar  1 02:39:55.857 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8E:6A:6B:A5:B7:64:05:14:B0:95:62:
                                06:88:DF:05:1D:D7:57:9F:7A:C0:9D:46:7F:5F:6E:B4:
                                B4:BA:B0:EF:4E:02:20:49:60:99:DE:27:CB:57:14:59:
                                57:9A:1C:96:E2:F1:F9:58:1C:BF:9E:AD:F1:F4:34:E4:
                                5B:28:3F:0E:C1:8C:D1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        26:1c:97:48:9d:7b:29:4e:36:4e:c4:b2:e4:a0:ad:b1:5f:74:
        b9:e7:1a:3c:aa:4e:96:0d:26:bf:04:b4:9c:0b:9b:48:5e:f9:
        93:91:88:cc:dc:fa:36:19:81:cb:46:aa:11:03:f1:4f:9b:4d:
        63:35:b2:3e:fa:fe:00:43:c0:f8:4f:ce:91:39:cc:d2:81:ca:
        f9:d5:67:55:10:b1:e1:b8:7a:83:96:e1:44:6f:e9:f8:9a:be:
        d7:93:6a:50:79:19:f6:a3:ba:7f:e2:0b:49:a6:46:2f:60:4c:
        da:f9:8a:f0:f6:8d:df:2a:a1:fe:7f:66:8d:fa:f1:b8:1d:8f:
        fe:68:84:ce:aa:e7:ce:8a:b2:4f:1c:e2:22:53:32:4f:52:b5:
        7d:03:e7:c5:9f:86:72:5c:ca:bc:4f:2a:ea:5d:8b:73:c0:7c:
        34:dd:e7:59:4b:8a:5d:4e:24:52:08:77:63:9c:e5:42:93:0b:
        0b:20:a4:14:d5:49:06:09:29:96:c8:82:28:d1:1c:f6:a5:a0:
        1f:d3:91:07:e6:89:bb:50:7b:31:11:06:5e:50:8a:7a:4f:7f:
        ff:40:17:e2:89:14:25:65:97:24:b0:44:7f:35:d5:72:d0:d9:
        86:1b:2b:14:20:7f:31:62:6c:b5:7c:e8:5a:47:53:eb:c4:15:
        74:78:4d:bb

Vulnerabilities

4369 / tcp

50704379 | 2025-03-27T07:57:18.740035

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

5672 / tcp

-268271615 | 2025-03-27T07:57:20.622767

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.9.13
  Platform: Erlang/OTP 24.2.1
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

Vulnerabilities

8888 / tcp

780672404 | 2025-03-24T11:18:10.411068

Hashes

hash

-2076735585

http.dom_hash

1239617585

http.html_hash

780672404

http.server_hash

967792298

http.title_hash

1433208809

502 Bad Gateway

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 24 Mar 2025 11:18:10 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

Vulnerabilities

33060 / tcp

-795948505 | 2025-04-01T21:23:39.308037

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

135.181.106.194

Last Seen: 2025-04-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

21 / tcp

-686804023 | 2025-03-14T10:44:22.384204

22 / tcp

182165286 | 2025-03-31T13:45:06.126718

OpenSSH8.2p1 Ubuntu 4ubuntu0.1

80 / tcp

1651973090 | 2025-04-02T16:00:03.612800

Hashes

nginx1.18.0

443 / tcp

245551881 | 2025-03-31T11:37:55.063870

Hashes

nginx1.18.0

4369 / tcp

50704379 | 2025-03-27T07:57:18.740035

Erlang Port Mapper Daemon

5672 / tcp

-268271615 | 2025-03-27T07:57:20.622767

RabbitMQ3.9.13

8888 / tcp

780672404 | 2025-03-24T11:18:10.411068

Hashes

nginx1.18.0

33060 / tcp

-795948505 | 2025-04-01T21:23:39.308037

MySQL X Protocol

Products

Pricing

Contact Us

135.181.106.194

Last Seen: 2025-04-02

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Port 5672 Port 8888 Latest CVSS

OpenPorts

21 / tcp -686804023 | 2025-03-14T10:44:22.384204

22 / tcp 182165286 | 2025-03-31T13:45:06.126718

OpenSSH8.2p1 Ubuntu 4ubuntu0.1

80 / tcp 1651973090 | 2025-04-02T16:00:03.612800

Hashes

nginx1.18.0

443 / tcp 245551881 | 2025-03-31T11:37:55.063870

Hashes

nginx1.18.0

4369 / tcp 50704379 | 2025-03-27T07:57:18.740035

Erlang Port Mapper Daemon

5672 / tcp -268271615 | 2025-03-27T07:57:20.622767

RabbitMQ3.9.13

8888 / tcp 780672404 | 2025-03-24T11:18:10.411068

Hashes

nginx1.18.0

33060 / tcp -795948505 | 2025-04-01T21:23:39.308037

MySQL X Protocol

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

-686804023 | 2025-03-14T10:44:22.384204

22 / tcp

182165286 | 2025-03-31T13:45:06.126718

80 / tcp

1651973090 | 2025-04-02T16:00:03.612800

443 / tcp

245551881 | 2025-03-31T11:37:55.063870

4369 / tcp

50704379 | 2025-03-27T07:57:18.740035

5672 / tcp

-268271615 | 2025-03-27T07:57:20.622767

8888 / tcp

780672404 | 2025-03-24T11:18:10.411068

33060 / tcp

-795948505 | 2025-04-01T21:23:39.308037