GeneralInformation

Hostnames	66.7.0.34.bc.googleusercontent.com cinepolis.platform.thriftyai.in
Domains	googleusercontent.com thriftyai.in
Cloud Provider	Google
Cloud Region	asia-south2
Country	India
City	New Delhi
Organization	Google LLC
ISP	Google LLC
ASN	AS19527
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

787763929 | 2025-02-01T05:41:59.763804

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCbB2kpVKh2YBUN90CJ3aH7hx7PUxQUSQCtYg4Ij2VFECKQ
bzb3pAmLeTbq5YM+zz0pg6/r2WjNWITNa6V4K3ndf5DO4EBWtvhBCo1fhj3YRmP9nfien6oEzJz9
IQ6dz+4JeanhcK8NvqPkyuT86USWohhx4Fe3y16lYnI2gTbRZWqp4moKIdI/jQjfCxzvU1pKZ4zF
e25lB+XD+Kt0pyvMupTDYPGlShAQMuW86z8AgBaWiFDS4+L1AIcvIy0QDxCmZyEhnNb1sJOsC91Q
hBTnxrknFFFanNZTHgYvPMTww+iPDwRhJdTMiZgKZQYO4KZZg9wz7OMQIq7RKeGnQM7j15Z7hgO5
XJgaQ3i/hXhuVCuvGeZHxEWkgunYHNZeTdT8zqxVsYYds8vxRmx8t2+FO3tiaG7Jg4aMqZlhFVQ3
awEYDrV/5SFtjVA6XEHjjyjPEj2e10XanAxUFJi9eLDsKumT8hQQ/hHla1dPfT5eOCkPKYOimTli
+mWkNfp0KXc=
Fingerprint: 2d:1a:93:9c:e9:0c:a9:59:0f:23:d7:b3:09:0b:9c:1a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

677579724 | 2025-02-08T12:01:50.749738

Hashes

hash

-437367031

http.dom_hash

1239617585

http.html_hash

677579724

http.server_hash

967792298

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 08 Feb 2025 12:01:50 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

CVE-2023-44487 CVE-2021-23017 CVE-2021-3618

443 / tcp

349665539 | 2025-02-02T06:15:46.678564

Hashes

hash

-790484610

http.dom_hash

-885942491

http.html_hash

349665539

http.server_hash

967792298

http.title_hash

-430260701

Thrifty platform

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 02 Feb 2025 06:15:46 GMT
Content-Type: text/html
Content-Length: 496
Last-Modified: Mon, 27 Jan 2025 15:32:28 GMT
Connection: keep-alive
ETag: "6797a70c-1f0"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:f6:54:05:c5:a7:95:be:4f:f9:c9:a4:1a:85:aa:a6:ea:8e
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Jan  6 03:17:47 2025 GMT
            Not After : Apr  6 03:17:46 2025 GMT
        Subject: CN=cinepolis.platform.thriftyai.in
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:aa:e2:7b:df:c2:3c:30:c0:f8:96:69:e0:64:d2:
                    16:8d:c5:0a:84:7d:a2:c4:58:47:02:af:a8:5a:e9:
                    bf:19:70:4a:9c:2f:c7:6d:2e:42:73:94:9f:ac:50:
                    b9:7d:ab:6c:36:71:e0:7c:b4:02:a3:3e:e6:5f:cd:
                    eb:59:8f:52:d0
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                43:FE:CC:67:74:16:98:25:81:B7:12:65:31:57:1F:E0:61:BD:34:51
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cinepolis.platform.thriftyai.in
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Jan  6 04:16:17.867 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A8:EF:4B:12:FD:D8:B1:A3:74:8C:54:
                                72:54:9C:0D:DA:D2:62:C8:BD:5E:B7:A7:C3:5D:58:3A:
                                F4:9F:44:DB:DD:02:20:61:07:CA:0B:08:59:73:D2:D3:
                                2D:83:8F:C3:60:21:34:47:39:C4:0A:09:22:FE:A0:30:
                                E0:CD:27:F9:A2:22:26
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Jan  6 04:16:17.904 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:60:A5:93:45:E0:0A:18:3C:54:F6:6D:58:
                                16:94:67:31:63:6A:59:CF:CC:B2:8B:FB:A1:74:90:A0:
                                5E:E6:EC:56:02:20:52:CB:47:5E:B1:61:DC:DF:3E:F3:
                                01:F4:D4:0F:88:7A:F3:02:F7:8D:1E:BF:36:CF:48:0D:
                                3F:52:C3:21:E7:2D
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:35:27:e5:3e:60:61:79:86:9a:4c:30:4d:7b:83:
        35:f2:94:ba:89:cd:20:6a:a1:10:2c:f4:ba:9b:93:e0:f5:26:
        d2:6b:a6:69:b6:29:6a:f7:f1:21:7b:80:1f:67:d0:4c:02:31:
        00:f3:d4:9f:73:3a:09:26:93:08:3b:79:26:f5:a1:f6:19:2d:
        fb:a8:5a:19:5b:e4:25:62:14:82:b1:b9:71:cb:bb:be:b3:6f:
        4f:d0:c0:66:d7:c5:3e:07:ff:aa:de:8f:bc

CVE-2023-44487 CVE-2021-23017 CVE-2021-3618

34.0.7.66

Last Seen: 2025-02-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

787763929 | 2025-02-01T05:41:59.763804

OpenSSH8.2p1 Ubuntu 4ubuntu0.11

80 / tcp

677579724 | 2025-02-08T12:01:50.749738

Hashes

nginx1.18.0

443 / tcp

349665539 | 2025-02-02T06:15:46.678564

Hashes

nginx1.18.0

Products

Pricing

Contact Us

34.0.7.66

Last Seen: 2025-02-08

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 787763929 | 2025-02-01T05:41:59.763804

OpenSSH8.2p1 Ubuntu 4ubuntu0.11

80 / tcp 677579724 | 2025-02-08T12:01:50.749738

Hashes

nginx1.18.0

443 / tcp 349665539 | 2025-02-02T06:15:46.678564

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

787763929 | 2025-02-01T05:41:59.763804

80 / tcp

677579724 | 2025-02-08T12:01:50.749738

443 / tcp

349665539 | 2025-02-02T06:15:46.678564