GeneralInformation

Hostnames	2fe79af3-c1bd-4195-837d-245060f77abe.clouding.host rtls-dev.tst-sistemas.es
Domains	clouding.host tst-sistemas.es
Country	Spain
City	Barcelona
Organization	CLOUDI NEXTGEN SL
ISP	CLOUDI NEXTGEN SL
ASN	AS49635
Operating System	Linux

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443 1883

22 / tcp

1936449624 | 2025-03-24T17:53:41.287842

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPLb6xgU0p5k3jKdXz+9lf15
s8olS3Uebjs4bWAZHoIyBlOE0KARQYvMVP7fvGNYu3NKUYDUiQJHDjNtKt1entQ=
Fingerprint: 6a:35:3e:1f:eb:f5:43:53:23:78:6e:3c:e2:89:43:c2

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-03-23T23:54:11.767630

Hashes

hash

1723456774

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 23 Mar 2025 23:54:11 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 23 Dec 2024 08:30:00 GMT
Connection: keep-alive
ETag: "67691f88-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

-390362132 | 2025-03-04T00:04:39.711411

Hashes

hash

-1678268471

http.dom_hash

-1450594981

http.html_hash

-390362132

http.server_hash

967792298

HTTP/1.1 200 
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 04 Mar 2025 00:04:39 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 2928
Connection: keep-alive
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 13:50:02 GMT
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Content-Language: en-US

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:1a:44:73:ce:6b:ea:85:cd:d4:33:7f:ce:40:9d:28:ae:e2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Feb 21 18:10:07 2025 GMT
            Not After : May 22 18:10:06 2025 GMT
        Subject: CN=rtls-dev.tst-sistemas.es
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a6:28:9c:7d:a0:0a:fe:7e:d2:b6:02:8c:0f:4c:
                    e0:fb:78:d5:43:fb:4a:3f:7c:6f:07:db:04:41:28:
                    b0:60:cf:f0:37:dd:12:f7:f3:23:35:c5:bb:26:e2:
                    b4:90:0b:0d:33:a3:8f:a3:e9:ca:57:a1:ce:27:2d:
                    8c:8d:55:1e:ec:74:4d:0c:93:bb:1b:17:7c:b8:4c:
                    77:87:b2:05:ad:16:cc:b6:92:bc:36:24:20:c1:42:
                    d4:cc:08:a3:3f:8e:28:0d:5f:30:a8:ad:60:48:b9:
                    c9:3f:9c:7d:da:93:d8:a5:97:fa:ae:e2:1b:58:8d:
                    0c:7c:7d:f0:e2:76:43:53:c5:a9:91:aa:0d:30:4b:
                    eb:c6:4e:b9:1f:ff:d6:1d:58:e3:87:ad:72:22:88:
                    71:91:e2:6b:e1:1f:a8:89:cd:e5:3b:de:b6:6c:0f:
                    22:fc:15:4f:28:ad:02:b0:5c:cf:1c:83:dd:e0:cf:
                    07:e4:c4:a1:db:8f:1f:6d:06:aa:ec:09:8e:58:73:
                    2a:e1:f4:57:17:d8:30:50:2b:af:94:2e:c3:67:c9:
                    23:3a:1b:aa:a4:da:15:73:09:50:61:91:b3:c2:3f:
                    bf:c7:44:30:65:b4:f6:83:3b:fd:06:8f:6b:0c:f1:
                    dd:8c:0a:0e:e7:c0:2a:1e:c6:02:63:f0:81:27:53:
                    a1:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                21:D3:6D:4B:2D:9B:58:32:70:5C:2B:88:A7:13:F2:4D:BE:F5:25:2E
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:rtls-dev.tst-sistemas.es
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DE:85:81:D7:50:24:7C:6B:CD:CB:AF:56:37:C5:E7:81:
                                C6:4C:E4:6E:D6:17:63:9F:8F:34:A7:26:C9:E2:BD:37
                    Timestamp : Feb 21 19:08:37.366 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:13:20:9F:50:AF:9E:ED:55:C2:37:E0:8E:
                                13:E0:02:FB:97:4E:42:B6:97:74:78:5A:48:B5:29:1A:
                                E8:F2:DB:E5:02:20:75:72:0B:5E:1E:12:B9:3A:AF:AD:
                                5A:96:F2:42:30:B1:63:47:92:8C:0E:17:D3:F5:81:EA:
                                99:8C:50:1E:BC:B8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Feb 21 19:08:37.433 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:27:73:4A:1C:6B:D3:52:92:E4:77:B5:2C:
                                7C:55:33:23:B3:96:13:26:03:AC:ED:79:98:45:6F:B0:
                                17:3A:E0:00:02:21:00:FE:58:CD:B7:78:98:4F:0E:8D:
                                60:3B:7C:F9:A4:C4:EF:EE:0D:47:9D:C6:3E:55:8C:D6:
                                D4:FE:EF:70:7F:32:F5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0d:75:36:77:51:0b:bb:1d:37:c4:53:64:e7:2e:8c:3c:b2:a2:
        a5:4b:3f:80:71:30:33:06:6f:41:7d:2b:92:7c:ef:bc:e1:ed:
        9d:17:b9:84:c9:e6:33:87:3b:6b:05:a1:aa:27:9d:f8:5b:6b:
        9d:89:54:db:62:11:9c:56:c4:0d:94:18:4c:32:5c:c7:24:9e:
        a4:8d:d6:05:74:b8:ac:28:55:9d:00:6d:9e:96:37:c1:b3:7b:
        a0:29:b3:57:29:95:e7:c1:aa:4e:fd:b1:4d:fc:1d:1e:98:83:
        e3:dd:cc:b9:c2:0b:d7:a6:5d:05:fa:35:2a:dd:36:c1:a3:ad:
        40:79:79:61:09:7c:95:d8:f4:6b:40:bf:67:ad:05:3d:7b:49:
        da:09:d5:bf:d4:6d:5a:82:ca:39:cf:62:57:50:5b:6e:cb:8f:
        b4:7f:94:d1:be:8d:98:7c:9f:dd:92:99:02:33:0d:7e:3f:f7:
        b6:ed:2d:7c:c8:83:8d:b4:55:aa:6a:76:54:78:b4:c5:b4:f4:
        84:4b:de:3a:d2:63:c1:2e:ba:7f:a0:db:1a:34:ff:4b:f7:c2:
        8d:73:1e:3f:ab:86:a3:88:cd:f5:74:0d:41:d0:43:3a:2b:86:
        41:df:28:05:29:81:ba:a5:94:b4:d3:15:8c:6d:f1:fd:49:ce:
        8f:9f:93:d3

Vulnerabilities

1883 / tcp

112430496 | 2025-03-19T16:26:01.266896

MQTT Connection Code: 2

Topics:

185.253.153.224

Last Seen: 2025-03-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

1936449624 | 2025-03-24T17:53:41.287842

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

1651973090 | 2025-03-23T23:54:11.767630

Hashes

nginx1.18.0

443 / tcp

-390362132 | 2025-03-04T00:04:39.711411

Hashes

nginx1.18.0

1883 / tcp

112430496 | 2025-03-19T16:26:01.266896

MQTT

Products

Pricing

Contact Us

185.253.153.224

Last Seen: 2025-03-24

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 1936449624 | 2025-03-24T17:53:41.287842

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 1651973090 | 2025-03-23T23:54:11.767630

Hashes

nginx1.18.0

443 / tcp -390362132 | 2025-03-04T00:04:39.711411

Hashes

nginx1.18.0

1883 / tcp 112430496 | 2025-03-19T16:26:01.266896

MQTT

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

1936449624 | 2025-03-24T17:53:41.287842

80 / tcp

1651973090 | 2025-03-23T23:54:11.767630

443 / tcp

-390362132 | 2025-03-04T00:04:39.711411

1883 / tcp

112430496 | 2025-03-19T16:26:01.266896