GeneralInformation

Hostnames	reviews.brandwatch.com 172-104-240-141.ip.linodeusercontent.com
Domains	brandwatch.com linodeusercontent.com
Cloud Provider	Linode
Cloud Region	de-he
Country	Germany
City	Frankfurt am Main
Organization	Linode
ISP	Akamai Connected Cloud
ASN	AS63949

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443 4040

22 / tcp

-2066630525 | 2025-03-04T09:18:36.429200

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.12
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCg9BNEIFecGIc3LMLQSeGuZBlP6Sm/5JJ8nehFXR3832OR
gmxmG+hX7RMFY8ubgVFr954WWs9vz81hmTQWgTvtvvKNs+lpyiZ1grLa/Ro0rX//c68OpjJ71iRy
o2EmbueY+tHyD1tPTU4X5QvA67CKPsHKC+YvXJGCcQNbpUP/8//0MnqeXnjstkq71WkqrR/hIjNy
P9TkZ/gNYLuoAHBVo/BfLe736AQeIVTfg0kzVjC4F1tshztkl/k+uSefDB5dsF/QhLwNBWb42Df8
7kTCI68TBThR4b1gjFFi9qg1oVRBYV8I24Tvmdaf2hivasHP8kddn5U72zhbA//NUPeq+GuyooXk
KYqwPr54AZYCIWliCXIgfRJY3G/J5LPY/rSJzK0+rlj73eujd6ivSiEVe81nzfjDWqdQtB/Kgr0z
g/MQJSKlToJvdP7BLA75pYCR4mB+zJ8wozE8FWL7wH3NTRLpmgDWDGpdadxczFB9C47M0bDLMoOL
UrQHY/OVgN8=
Fingerprint: a4:2a:e9:b1:5b:64:cf:96:ea:f3:b6:f0:dd:0c:58:a0

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

677579724 | 2025-03-16T09:36:31.198011

Hashes

hash

255114865

http.dom_hash

1239617585

http.html_hash

677579724

http.server_hash

967792298

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 16 Mar 2025 09:36:31 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

Vulnerabilities

443 / tcp

1014987535 | 2025-03-29T03:03:37.566647

Hashes

hash

-1316787749

http.dom_hash

1239617585

http.html_hash

1014987535

http.server_hash

967792298

http.title_hash

1672860562

500 Internal Server Error

HTTP/1.1 500 Internal Server Error
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 29 Mar 2025 02:57:53 GMT
Content-Type: text/html
Content-Length: 588
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:bc:a4:7b:66:00:f0:c8:3b:7c:74:d9:78:06:98:ef:60:fb
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Mar  5 15:46:00 2025 GMT
            Not After : Jun  3 15:45:59 2025 GMT
        Subject: CN=reviews.brandwatch.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:e4:e7:c9:94:24:87:ec:55:d2:4a:d8:4b:ab:ea:
                    97:14:ad:cb:d0:2a:e9:6b:8f:db:de:0d:e3:d9:da:
                    73:2a:21:f4:bb:17:fa:5c:8f:65:55:e2:aa:0b:75:
                    b0:b3:9e:98:5b:9e:b4:b2:d4:46:14:b9:01:e7:1e:
                    dc:1f:2b:e3:cf
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C2:84:4F:2C:13:F6:CE:71:22:AF:06:79:E6:BF:7A:0D:3B:57:9E:E0
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:reviews.brandwatch.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar  5 16:44:30.701 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:4E:83:A7:15:E3:76:D8:93:57:DE:1F:E3:
                                CF:01:1F:B7:93:6D:DA:BB:63:37:7A:6B:16:26:FD:71:
                                7C:3E:E6:A4:02:21:00:83:FD:DB:A1:AB:D3:1A:52:74:
                                6E:FD:E4:A0:51:08:26:D6:D6:E7:55:4A:32:DA:C0:CE:
                                07:F5:41:1C:71:CC:30
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Mar  5 16:44:30.963 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8F:B4:6E:5F:23:CB:93:0D:4B:C5:99:
                                01:4D:DE:1F:23:B7:B2:66:F3:28:42:43:43:62:01:02:
                                5E:B4:FE:1F:93:02:20:3F:B4:3C:0B:CA:48:B7:6C:1F:
                                7F:0D:78:31:25:3D:BA:2F:AF:EC:D3:0E:7C:71:3F:13:
                                0B:82:C4:5A:84:FC:FF
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:64:02:30:26:27:7d:80:d5:41:da:76:c0:49:72:14:f2:3e:
        bf:7e:43:ee:bf:1f:6f:bf:4c:d9:52:a5:3a:cb:20:cf:f7:6b:
        06:8f:83:00:9d:0c:05:87:f6:da:e7:63:89:79:79:ae:02:30:
        2d:c0:76:3e:b9:2f:7f:90:06:a7:34:95:46:f5:89:51:fd:a2:
        56:00:cb:ab:9f:b5:34:38:3f:02:82:1a:44:5d:b3:c8:6c:2a:
        1e:49:ff:7f:eb:6d:0f:81:fc:ec:6e:36

Vulnerabilities

4040 / tcp

-1060095501 | 2025-03-29T22:18:22.710936

Hashes

hash

1645775782

http.dom_hash

1231516973

http.html_hash

-1060095501

http.title_hash

-1449824703

Error

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Sat, 29 Mar 2025 22:18:22 GMT
Connection: keep-alive
Keep-Alive: timeout=5

172.104.240.141

Last Seen: 2025-03-29

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

-2066630525 | 2025-03-04T09:18:36.429200

OpenSSH8.2p1 Ubuntu 4ubuntu0.12

80 / tcp

677579724 | 2025-03-16T09:36:31.198011

Hashes

nginx1.18.0

443 / tcp

1014987535 | 2025-03-29T03:03:37.566647

Hashes

nginx1.18.0

4040 / tcp

-1060095501 | 2025-03-29T22:18:22.710936

Hashes

Products

Pricing

Contact Us

172.104.240.141

Last Seen: 2025-03-29

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp -2066630525 | 2025-03-04T09:18:36.429200

OpenSSH8.2p1 Ubuntu 4ubuntu0.12

80 / tcp 677579724 | 2025-03-16T09:36:31.198011

Hashes

nginx1.18.0

443 / tcp 1014987535 | 2025-03-29T03:03:37.566647

Hashes

nginx1.18.0

4040 / tcp -1060095501 | 2025-03-29T22:18:22.710936

Hashes

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

-2066630525 | 2025-03-04T09:18:36.429200

80 / tcp

677579724 | 2025-03-16T09:36:31.198011

443 / tcp

1014987535 | 2025-03-29T03:03:37.566647

4040 / tcp

-1060095501 | 2025-03-29T22:18:22.710936