GeneralInformation

Country	Iran, Islamic Republic of
City	Shiraz
Organization	AbrArvan IaaS
ISP	Noyan Abr Arvan Co. ( Private Joint Stock)
ASN	AS202468
Operating System	Ubuntu

WebTechnologies

JavaScript frameworks

React

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

2000 2003 3000 4444

2000 / tcp

-1246004407 | 2025-02-28T11:18:43.544923

HTTP/1.1 400 Bad Request
Connection: close

2003 / tcp

-1246004407 | 2025-03-13T00:49:10.453393

HTTP/1.1 400 Bad Request
Connection: close

3000 / tcp

1706101052 | 2025-03-11T19:11:50.480877

Hashes

hash

-1562664963

http.dom_hash

39746920

http.html_hash

1706101052

http.title_hash

HTTP/1.1 200 OK
X-Powered-By: Express
Content-Language: fa
Content-Type: text/html; charset=utf-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 11 Mar 2025 14:57:01 GMT
ETag: W/"692-19585b58996"
Content-Length: 1682
Date: Tue, 11 Mar 2025 19:11:50 GMT
Connection: keep-alive
Keep-Alive: timeout=5

4444 / tcp

-1083611918 | 2025-03-20T12:08:51.375759

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 20 Mar 2025 12:08:51 GMT
Content-Type: text/html
Content-Length: 154
Connection: keep-alive
Location: https://169.254.169.254/latest/meta-data/iam/security-credentials/

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

Vulnerabilities

188.121.116.174

Last Seen: 2025-03-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2000 / tcp

-1246004407 | 2025-02-28T11:18:43.544923

2003 / tcp

-1246004407 | 2025-03-13T00:49:10.453393

3000 / tcp

1706101052 | 2025-03-11T19:11:50.480877

Hashes

4444 / tcp

-1083611918 | 2025-03-20T12:08:51.375759

nginx1.18.0

Products

Pricing

Contact Us

188.121.116.174

Last Seen: 2025-03-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 4444 Latest CVSS

OpenPorts

2000 / tcp -1246004407 | 2025-02-28T11:18:43.544923

2003 / tcp -1246004407 | 2025-03-13T00:49:10.453393

3000 / tcp 1706101052 | 2025-03-11T19:11:50.480877

Hashes

4444 / tcp -1083611918 | 2025-03-20T12:08:51.375759

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

2000 / tcp

-1246004407 | 2025-02-28T11:18:43.544923

2003 / tcp

-1246004407 | 2025-03-13T00:49:10.453393

3000 / tcp

1706101052 | 2025-03-11T19:11:50.480877

4444 / tcp

-1083611918 | 2025-03-20T12:08:51.375759