GeneralInformation

Hostnames	api.kmfromhome.com li1654-113.members.linode.com
Domains	kmfromhome.com linode.com
Cloud Provider	Linode
Cloud Region	de-he
Country	Germany
City	Frankfurt am Main
Organization	Linode
ISP	Akamai Connected Cloud
ASN	AS63949

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

2019(1)

CVE-2019-20372

5.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 443

80 / tcp

1560989878 | 2025-03-03T22:54:00.465918

Hashes

hash

-1298000721

http.dom_hash

1239617585

http.html_hash

1560989878

http.server_hash

1599717829

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.17.3
Date: Mon, 03 Mar 2025 22:54:00 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive
Vary: Accept-Encoding

Vulnerabilities

3 1

443 / tcp

1329846478 | 2025-02-13T01:36:24.268209

Hashes

hash

2004490271

http.dom_hash

1882092635

http.html_hash

1329846478

http.robots_hash

1714206274

http.server_hash

-1340961475

http.title_hash

-1933117088

Redirecting to https://2kmfromhome.com

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Thu, 13 Feb 2025 01:36:24 GMT
Location: https://2kmfromhome.com
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:86:3d:7c:89:76:a3:f6:cf:5e:1f:cb:38:37:11:00:65:aa
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Dec 28 02:48:48 2024 GMT
            Not After : Mar 28 02:48:47 2025 GMT
        Subject: CN=api.kmfromhome.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (384 bit)
                pub:
                    04:9d:ed:4b:d4:74:e4:43:9a:bc:5c:1a:b7:7e:84:
                    16:e0:88:63:4f:6b:78:ff:bf:5e:73:09:b4:4e:2d:
                    20:47:f5:08:3d:96:24:12:7a:8f:84:da:ce:5a:4d:
                    59:af:57:3d:40:0a:b4:fb:87:13:7e:77:48:c4:d8:
                    b7:c1:d2:36:a9:fc:e9:ac:aa:e4:ad:d5:62:2a:10:
                    ce:67:69:bb:a0:d9:af:c5:73:47:59:68:d9:85:22:
                    b7:08:f9:da:58:9c:63
                ASN1 OID: secp384r1
                NIST CURVE: P-384
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C0:92:79:EF:CE:42:78:6D:29:6B:86:30:A2:9F:76:D2:A0:47:6D:7A
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.kmfromhome.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Dec 28 03:47:18.982 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:13:EB:2E:08:34:6B:56:32:EE:18:D9:AF:
                                5B:70:96:2E:47:F5:C8:A7:24:E3:4B:73:3D:34:99:E2:
                                DA:06:2C:69:02:20:7A:CF:2D:27:FD:49:93:B9:A8:D9:
                                53:2C:59:78:24:BE:80:3A:AD:FE:A9:1D:56:E1:A6:43:
                                96:6C:A7:D4:9B:9B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Dec 28 03:47:19.153 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A2:83:C7:5D:48:F3:A5:0F:F7:17:5D:
                                5A:D2:0C:2F:03:7D:41:4D:FE:8C:64:B6:FF:16:38:DA:
                                4A:EF:A9:A5:04:02:21:00:AF:15:2E:40:39:EA:77:74:
                                A2:19:78:14:2D:95:F8:51:56:61:F2:1C:F4:2C:C4:0A:
                                67:C8:76:E8:47:7D:18:76
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:31:00:e6:88:ed:00:fb:32:9c:20:fe:de:e3:90:81:
        66:0f:64:3b:3d:86:2c:69:4f:9a:25:7a:3a:21:c7:b9:d1:1d:
        ea:ee:9c:5b:66:5a:3f:d9:84:67:58:6e:dc:ec:19:44:ac:02:
        30:3e:79:49:d8:3d:2b:50:e1:8f:91:0b:a2:57:9d:25:d9:be:
        7b:21:35:c1:3d:70:78:91:a9:81:9f:c9:07:48:bc:10:ff:6c:
        48:3a:c8:c8:13:0d:63:4f:05:bb:1d:3f:49

172.104.138.113

Last Seen: 2025-03-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

80 / tcp

1560989878 | 2025-03-03T22:54:00.465918

Hashes

nginx1.17.3

443 / tcp

1329846478 | 2025-02-13T01:36:24.268209

Hashes

nginx

Products

Pricing

Contact Us

172.104.138.113

Last Seen: 2025-03-03

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

80 / tcp 1560989878 | 2025-03-03T22:54:00.465918

Hashes

nginx1.17.3

443 / tcp 1329846478 | 2025-02-13T01:36:24.268209

Hashes

nginx

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

1560989878 | 2025-03-03T22:54:00.465918

443 / tcp

1329846478 | 2025-02-13T01:36:24.268209