GeneralInformation

Hostnames	ns526191.ip-149-56-19.net gitea.wohin.ca opengist.wohin.ca
Domains	ip-149-56-19.net wohin.ca
Country	Canada
City	Montréal
Organization	OVH Hosting, Inc.
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(2)

CVE-2025-26466

5.9A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to an uncontrolled increase in memory consumption on the server side. Consequently, the server may become unavailable, resulting in a denial of service attack.

CVE-2025-26465

6.8A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client's memory resource first, turning the attack complexity high.

OpenPorts

22 80 443 2222 6881 19132 22000

22 / tcp

1058124558 | 2025-03-21T20:10:25.238772

SSH-2.0-OpenSSH_9.9
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBMbZte/37KO1xR8heZLSbymm
cQCbPm/pPtIfDV1dK7MnAKpIoERYxqK3tI2tHZ4rYKOFn128S2L/8TGlPXHUSEU=
Fingerprint: 4e:f1:4a:39:a2:d0:19:2e:e0:41:bf:f9:03:10:5d:eb

Kex Algorithms:
	sntrup761x25519-sha512
	sntrup761x25519-sha512@openssh.com
	mlkem768x25519-sha256
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	ext-info-s
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	ssh-ed25519
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

Vulnerabilities

80 / tcp

-2100514759 | 2025-03-25T17:59:54.394367

Hashes

hash

1272607137

http.dom_hash

1239617585

http.html_hash

-2100514759

http.server_hash

-1340961475

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 25 Mar 2025 17:59:54 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://149.56.19.14/

443 / tcp

0 | 2025-04-01T21:59:38.480086

Hashes

hash

-101213939

http.dom_hash

http.html_hash

http.server_hash

-1340961475

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 01 Apr 2025 21:59:38 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Thu, 19 Sep 2024 18:00:15 GMT
Connection: keep-alive
ETag: "66ec66af-0"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:a1:82:f1:50:97:06:db:d7:30:6d:74:c2:ed:5d:f0:b0:dc
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E5
        Validity
            Not Before: Feb 15 06:11:25 2025 GMT
            Not After : May 16 06:11:24 2025 GMT
        Subject: CN=ns526191.ip-149-56-19.net
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:a9:05:3b:77:0b:3d:ec:71:06:f1:5f:02:01:44:
                    ae:a2:b0:7a:6f:19:e9:ac:45:03:48:53:f0:2d:38:
                    af:46:76:f0:76:62:2a:3c:33:ff:46:98:aa:97:f4:
                    e9:d4:04:34:12:89:89:60:de:8f:b2:8f:1b:c2:d7:
                    6b:d7:36:84:a6
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                64:3A:66:B1:BF:D8:97:CA:B5:E1:26:83:F8:54:0A:AF:1A:4F:B9:C3
            X509v3 Authority Key Identifier: 
                9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
            Authority Information Access: 
                OCSP - URI:http://e5.o.lencr.org
                CA Issuers - URI:http://e5.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:gitea.wohin.ca, DNS:ns526191.ip-149-56-19.net, DNS:opengist.wohin.ca
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 15 07:09:55.267 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:4E:C8:5F:A9:B4:C5:C4:4D:AC:AE:0A:D9:
                                D6:DF:B8:2D:4B:81:24:D8:99:4A:E7:0C:B3:44:64:75:
                                D0:B1:6D:8F:02:21:00:B1:F1:3A:7E:C7:D0:12:85:42:
                                6A:7B:AF:A4:7F:33:99:CB:DD:C6:C3:63:7F:12:5F:34:
                                28:41:A6:23:1B:5F:22
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Feb 15 07:09:55.844 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:58:AE:61:BD:28:D6:21:F0:53:AF:92:8A:
                                3D:6F:15:BC:62:BF:AF:01:D5:F7:FC:92:D6:35:7A:59:
                                FC:C6:BB:80:02:21:00:E4:2E:11:FD:47:DB:65:69:84:
                                27:B6:79:44:EE:3B:15:EE:68:8E:4A:23:E6:0A:8D:F0:
                                16:1A:14:A4:93:CA:E3
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:64:02:30:34:59:b0:fc:5e:12:f7:7a:a0:71:46:f9:a8:6c:
        e0:de:fb:4d:3e:42:1e:5a:44:9e:1c:9a:00:4a:dd:4a:03:93:
        07:ec:88:0f:8b:b6:36:cb:35:e7:23:5a:9c:b1:7b:aa:02:30:
        21:bc:98:a1:b9:9f:67:43:d5:9f:0e:6b:71:b6:04:b3:47:c3:
        ae:8f:11:99:6c:87:5a:ae:97:c3:98:10:21:8c:22:8a:0c:3c:
        ac:20:49:97:bf:ba:a5:3e:ee:e2:df:88

2222 / tcp

993166951 | 2025-03-17T07:28:03.234951

SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u5
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHjSkNGC7ciOeif2gIhrFGt6
UN9MGPLvJQdCIjbIXZYP8ehq4RmhDPL+SqOmOVwT5ZLpzFlV3DUUEKnNWQI/Qm8=
Fingerprint: 0e:a3:ac:b9:65:3c:47:58:66:c0:ff:66:a3:8c:24:15

Kex Algorithms:
	sntrup761x25519-sha512
	sntrup761x25519-sha512@openssh.com
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

6881 / udp

-1470033150 | 2025-03-19T00:33:27.503491

DHT Nodes
67.32.8.28	41073
245.8.158.17	58382
25.161.250.49	58346
27.133.173.255	40708
26.225.88.16	44913
63.233.3.188	63674
222.115.118.63	46837
113.220.147.202	21777
26.209.200.213	25671
156.39.84.82	30231
224.245.250.37	7651
190.117.4.153	55346
185.21.216.192	64266
101.50.130.22	4582
42.67.66.29	3773
30.203.170.13	15725
102.205.72.21	4365
196.185.107.239	44639
103.121.124.60	15932
248.128.113.192	15735
25.53.16.64	13214
149.185.64.20	28953
214.221.131.243	44242
25.11.21.203	56064
194.94.149.192	64072
95.42.36.173	35931
114.200.39.141	1768
11.25.49.32	10251
244.177.247.162	9268
5.238.195.154	44201
88.243.117.89	5307
102.209.161.37	40834
236.176.38.37	13905
107.182.35.82	45730

19132 / udp

-826926707 | 2025-03-13T15:18:55.438610

Minecraft Bedrock Server:
  Map: Bedrock level
  Description: Mark's Dedicated Server
  Brand: MCPE
  Gamemode: Survival
  Players:
    Max: 10
    Online: 0
  Version:
    Protocol: 776
    Name: 1.21.60

22000 / tcp

1563265241 | 2025-04-01T19:34:53.612454

SSL Error: TLSV1_ALERT_PROTOCOL_VERSION

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2571829521066792406 (0x23b0f952c20c95d6)
        Signature Algorithm: ecdsa-with-SHA256
        Issuer: O=Syncthing, OU=Automatically Generated, CN=syncthing
        Validity
            Not Before: May 14 00:00:00 2024 GMT
            Not After : May  9 00:00:00 2044 GMT
        Subject: O=Syncthing, OU=Automatically Generated, CN=syncthing
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (384 bit)
                pub:
                    04:97:11:9d:d4:68:ab:81:54:a6:ff:0f:73:0e:8f:
                    d0:60:cc:60:17:0f:e5:92:de:7b:f9:5f:e6:54:a3:
                    00:5a:f5:99:a5:fc:d5:68:7a:c1:05:8b:df:f5:2f:
                    06:1e:5d:40:1a:f4:a6:1b:90:d9:98:7f:8c:fe:cc:
                    19:7c:3a:5d:dd:30:26:07:b0:fb:71:1e:93:ca:89:
                    9b:c0:0e:c4:99:3e:a3:2d:1d:5c:30:bf:54:fe:e0:
                    e7:2a:f7:4f:39:e5:f8
                ASN1 OID: secp384r1
                NIST CURVE: P-384
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:syncthing
    Signature Algorithm: ecdsa-with-SHA256
    Signature Value:
        30:64:02:30:2c:78:d1:e2:45:a9:9b:0e:dc:ae:d6:57:dd:5a:
        8c:98:e0:62:d5:a9:41:2a:61:28:4c:b0:bd:3b:37:f3:74:b6:
        6e:e5:f3:bd:99:d9:b1:fc:df:41:56:f0:1e:72:de:8b:02:30:
        39:3e:49:f0:4b:49:63:75:6a:f4:46:68:f9:b2:95:e7:23:2e:
        80:9a:fc:bb:ff:fa:50:19:27:34:2e:4f:18:93:be:c4:e0:7b:
        c6:fd:69:aa:4d:a0:4b:37:aa:dc:26:9b

149.56.19.14

Last Seen: 2025-04-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

1058124558 | 2025-03-21T20:10:25.238772

OpenSSH9.9

80 / tcp

-2100514759 | 2025-03-25T17:59:54.394367

Hashes

nginx

443 / tcp

0 | 2025-04-01T21:59:38.480086

Hashes

nginx

2222 / tcp

993166951 | 2025-03-17T07:28:03.234951

OpenSSH9.2p1 Debian 2+deb12u5

6881 / udp

-1470033150 | 2025-03-19T00:33:27.503491

19132 / udp

-826926707 | 2025-03-13T15:18:55.438610

MinecraftBedrock 1.21.60 (776)

22000 / tcp

1563265241 | 2025-04-01T19:34:53.612454

Products

Pricing

Contact Us

149.56.19.14

Last Seen: 2025-04-01

Tags:

GeneralInformation

Vulnerabilities All ports Port 22 Latest CVSS

OpenPorts

22 / tcp 1058124558 | 2025-03-21T20:10:25.238772

OpenSSH9.9

80 / tcp -2100514759 | 2025-03-25T17:59:54.394367

Hashes

nginx

443 / tcp 0 | 2025-04-01T21:59:38.480086

Hashes

nginx

2222 / tcp 993166951 | 2025-03-17T07:28:03.234951

OpenSSH9.2p1 Debian 2+deb12u5

6881 / udp -1470033150 | 2025-03-19T00:33:27.503491

19132 / udp -826926707 | 2025-03-13T15:18:55.438610

MinecraftBedrock 1.21.60 (776)

22000 / tcp 1563265241 | 2025-04-01T19:34:53.612454

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

1058124558 | 2025-03-21T20:10:25.238772

80 / tcp

-2100514759 | 2025-03-25T17:59:54.394367

443 / tcp

0 | 2025-04-01T21:59:38.480086

2222 / tcp

993166951 | 2025-03-17T07:28:03.234951

6881 / udp

-1470033150 | 2025-03-19T00:33:27.503491

19132 / udp

-826926707 | 2025-03-13T15:18:55.438610

22000 / tcp

1563265241 | 2025-04-01T19:34:53.612454