GeneralInformation

Hostnames	test.neqtel.com ip5-250-184-169.pbiaas.com
Domains	neqtel.com pbiaas.com
Country	Spain
City	Madrid
Organization	IONOS SE
ISP	IONOS SE
ASN	AS8560
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

1311852041 | 2025-03-11T18:31:41.917937

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFIkUaIz+38Gv/Ni2hec+yqY
omJsR5nNM+pl8h14msm4f78kQKIBa6/6DfKF51MbMPTdsIIXe+2pSogHTMvDZUA=
Fingerprint: 01:16:34:4c:bb:37:6c:c4:35:6c:41:29:c2:e7:3f:c3

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-03-18T10:44:25.115160

Hashes

hash

-1466849486

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 18 Mar 2025 10:44:25 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Fri, 21 Jun 2024 17:15:21 GMT
Connection: keep-alive
ETag: "6675b529-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

2067493877 | 2025-03-23T13:55:20.793218

Hashes

hash

-577350087

http.dom_hash

971946069

http.favicon.hash

-617743584

http.html_hash

2067493877

http.server_hash

967792298

http.title_hash

1380956145

Odoo

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 23 Mar 2025 13:55:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 4725
Connection: keep-alive
X-Frame-Options: DENY
Set-Cookie: session_id=fd0ec63f217008e4f505af7927ad8dd1c7a349e9; Expires=Sat, 21-Jun-2025 13:55:20 GMT; Max-Age=7776000; HttpOnly; Path=/
Strict-Transport-Security: max-age=15768000; includeSubdomains; preload
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:90:c7:f2:20:06:0d:4c:e8:f2:fa:c6:d3:35:d4:ae:3d:dd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Feb 10 05:43:38 2025 GMT
            Not After : May 11 05:43:37 2025 GMT
        Subject: CN=test.neqtel.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d3:cb:ec:95:bf:fc:36:4a:b8:e8:e0:3c:30:8a:
                    23:0d:b7:5d:9e:18:46:c8:15:7e:c7:8b:ce:01:a7:
                    82:a5:c8:24:e4:1d:54:56:52:ba:1c:59:1b:e3:8f:
                    c9:ac:b3:a6:47:cb:37:b7:70:fe:b3:cf:30:17:e4:
                    a5:a5:a8:34:32:da:e3:aa:71:4f:45:fd:c7:cd:a3:
                    1c:e3:a5:ef:f5:86:e9:fa:bc:51:7c:85:e8:c5:ab:
                    83:54:d9:72:c6:67:1b:a9:c2:8b:33:bf:cd:e8:e1:
                    75:a1:8e:e5:2a:f8:bd:ec:da:e5:6b:c8:78:ad:53:
                    e8:33:5b:13:c0:50:c8:be:7f:ad:de:8c:66:c6:32:
                    b3:38:26:d3:c0:b9:9b:11:d0:82:cf:36:5c:3d:41:
                    67:5d:7b:96:0b:38:6a:e3:0a:65:8d:89:d7:22:7d:
                    c4:30:09:28:8e:46:73:69:d7:8d:db:04:28:a3:cf:
                    44:c8:35:33:97:30:fa:e7:5e:95:1c:b9:92:80:04:
                    dc:87:d4:c9:8e:54:22:f9:e0:10:15:86:27:52:c5:
                    aa:60:2a:36:21:6c:3b:48:93:0a:7c:f5:60:00:cd:
                    91:65:f2:fe:d5:eb:4a:19:23:a2:ab:2b:2d:d7:30:
                    61:e3:13:a4:b9:44:25:21:93:00:11:4f:fe:f6:0f:
                    4c:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                0A:02:01:67:9C:30:F7:C5:1B:A1:C3:39:94:8E:DE:C0:F3:F3:97:63
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:test.neqtel.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Feb 10 06:42:08.759 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C9:0A:2A:BE:EA:95:80:F0:E5:1B:6B:
                                61:56:15:D1:22:1E:BC:13:A7:1C:9D:C2:3D:4F:B2:B7:
                                F4:CC:10:17:EF:02:20:14:8F:0F:C2:C1:56:59:B9:98:
                                94:02:19:81:C7:2A:2B:7E:09:BC:2C:2E:91:D7:4C:C1:
                                82:9B:4F:6A:C5:0F:71
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DE:85:81:D7:50:24:7C:6B:CD:CB:AF:56:37:C5:E7:81:
                                C6:4C:E4:6E:D6:17:63:9F:8F:34:A7:26:C9:E2:BD:37
                    Timestamp : Feb 10 06:42:08.758 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:75:16:4C:59:15:7A:64:D8:65:36:02:C4:
                                1F:3D:57:71:4A:76:D0:86:57:EB:B0:D0:41:2D:B4:3B:
                                97:74:C7:B4:02:20:0B:3D:03:49:1A:10:05:87:E1:F1:
                                37:C2:90:B7:66:D3:8B:E4:45:6E:5E:66:2E:99:6C:7E:
                                DA:C1:12:33:00:14
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9e:19:b3:67:e3:aa:8a:30:7e:14:30:9c:e6:70:ae:5c:52:14:
        b1:27:6d:31:fb:a3:ad:0b:22:ad:a4:a9:0b:de:65:e6:27:e4:
        85:a6:b6:04:c5:d4:0d:4c:fc:28:97:a4:7d:ec:17:90:93:0f:
        39:71:00:30:a3:b8:0d:17:40:bf:c4:a1:00:83:d1:ed:6f:89:
        06:4b:66:e0:01:3f:04:de:5b:e4:ad:d8:8f:6f:85:1d:be:61:
        ce:6c:7c:9b:aa:88:92:3f:8b:23:6e:7a:12:7e:88:81:dc:1d:
        9a:c5:42:8a:ac:ba:d0:06:3a:74:b8:e5:fe:bf:7b:97:cb:b6:
        d4:d0:8a:6d:8c:15:68:2a:61:4e:d6:d1:5c:9d:e3:9d:5b:c1:
        c6:fc:0e:df:3a:2b:09:61:87:23:53:e9:e2:e0:9a:e4:7b:90:
        26:39:6e:4d:33:3c:88:37:28:f9:89:e7:e1:27:83:5f:f9:c4:
        cd:22:8a:33:14:3d:c8:88:88:0d:72:2e:ce:37:85:d9:2d:4f:
        a1:18:24:98:c7:03:e2:63:19:16:2b:71:de:0e:bf:85:aa:c1:
        a4:df:0c:ef:59:9a:ed:e7:67:e2:bb:a3:c1:a0:18:97:92:66:
        a3:ab:cf:80:aa:69:ef:3b:8a:e1:f3:fa:a5:3a:86:53:ca:94:
        a8:c9:79:9d

Vulnerabilities

5.250.184.169

Last Seen: 2025-03-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

1311852041 | 2025-03-11T18:31:41.917937

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

1651973090 | 2025-03-18T10:44:25.115160

Hashes

nginx1.18.0

443 / tcp

2067493877 | 2025-03-23T13:55:20.793218

Hashes

nginx1.18.0

Products

Pricing

Contact Us

5.250.184.169

Last Seen: 2025-03-23

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 1311852041 | 2025-03-11T18:31:41.917937

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 1651973090 | 2025-03-18T10:44:25.115160

Hashes

nginx1.18.0

443 / tcp 2067493877 | 2025-03-23T13:55:20.793218

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

1311852041 | 2025-03-11T18:31:41.917937

80 / tcp

1651973090 | 2025-03-18T10:44:25.115160

443 / tcp

2067493877 | 2025-03-23T13:55:20.793218