GeneralInformation

Hostnames	alert-old.alpalika.com static.197.177.75.5.clients.your-server.de
Domains	alpalika.com your-server.de
Country	Germany
City	Nürnberg
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Linux

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

253735763 | 2025-04-02T12:47:42.258210

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.12
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDYJrcjeNuZVH1aHe4i0qvMuOMa4SADRAphtlyV8sNZ792t
4Hd9mvxxak9RqnZOMf3z52ZLQd4aKwbxirfNFoKpKOEYI0WinCTwxGWzTI1acEgoNLExiOsa9FXP
dd7hFrkmqVU9YWk9UR8nRMYV+RSzLfeIfuubO2gun0NL6SaK8i7My1UI1giSoiC00Ld+Q4/+6BFK
TcigpSXKVAmFmqlPll1uezuRpw41OqM7P5DP4Zr/FspgK3H37kCuXjQ7/1T1dYzIFgt+v+2cVxc9
oxLKH6yHuaCAKloK+g01u/IyicsGjSDztJGdaEXv0LTjNVuRvo9fX+XhFwI0JBR79xy2C+rqTSOy
cUaLKU+rGd6ySbqbtNvvoVrB7o/O9ewM5wiQnHtHrd58E+4n1HiBGkvc4W+Dp/ZY7TG5MPi1ssGP
uDv0ZwDxvl5vOR8x/3M9k5T7X+TQqvOjoSj1zmKwz8/5vfxAuXGwrsu+Ho/KK2oalcAhu8V6J7+a
x/7ix1xHYx0=
Fingerprint: a9:4f:c8:07:79:ad:a1:d2:90:f9:e9:77:62:db:7b:8d

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

677579724 | 2025-03-28T02:22:24.303853

Hashes

hash

466400559

http.dom_hash

1239617585

http.html_hash

677579724

http.server_hash

967792298

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 28 Mar 2025 02:22:24 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

Vulnerabilities

443 / tcp

-360601212 | 2025-03-14T10:09:56.384354

Hashes

hash

1450624815

http.dom_hash

892322875

http.html_hash

-360601212

http.server_hash

967792298

http.title_hash

324767378

DisallowedHost at /

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 14 Mar 2025 10:09:56 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: origin
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Cross-Origin-Opener-Policy: same-origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:e0:c1:c6:9b:77:e3:bb:28:2f:ba:a0:31:90:9d:01:3b:1c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Mar  7 10:12:54 2025 GMT
            Not After : Jun  5 10:12:53 2025 GMT
        Subject: CN=alert-old.alpalika.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d0:03:81:07:d6:6a:72:bb:37:ec:92:e2:36:b1:
                    81:b9:69:74:a1:0b:19:a2:ea:10:f5:2f:c0:71:57:
                    0f:48:88:2b:8d:2a:2c:ee:d1:b1:5b:54:3d:9c:fb:
                    0a:26:af:77:df:26:44:c6:78:e0:2a:91:e3:4b:29:
                    36:fe:4b:0a:c4:10:06:d5:e8:ad:34:08:e3:fd:9d:
                    fa:6a:e8:de:39:8c:49:7b:dd:98:29:f9:d4:9d:77:
                    89:b6:4f:6e:37:54:11:3d:56:f3:a5:bb:79:5b:8e:
                    71:8a:b1:5b:a6:08:de:2e:fe:2a:67:0f:ab:05:c0:
                    e1:af:1b:1f:f9:b7:f0:0d:22:a2:2c:b4:30:04:29:
                    c7:cb:bd:67:1e:dd:46:ca:72:fe:79:e5:af:f1:5c:
                    40:e9:6d:81:fc:58:7d:f3:c6:66:1d:d2:ad:d8:e9:
                    ac:d6:98:da:b3:3e:f9:91:ee:50:a7:61:5b:71:f9:
                    df:cd:64:8b:1f:7d:0c:42:98:1d:53:b6:87:47:cf:
                    f2:cb:98:38:27:01:8e:01:86:07:a7:3e:ae:86:9e:
                    66:cf:18:81:e1:a8:21:2c:00:c6:b5:29:06:68:a5:
                    24:27:7e:af:33:c9:ae:61:63:d6:e5:39:92:3e:2b:
                    0c:85:ba:2f:e7:b0:ea:72:93:0f:88:fc:08:84:bf:
                    f6:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C0:88:85:DF:84:8F:4A:DE:D9:44:FE:B8:58:4E:DE:EC:6B:5C:91:DD
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:alert-old.alpalika.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Mar  7 11:11:24.815 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:27:C9:E3:13:13:21:BD:63:50:D2:FC:08:
                                D1:5C:E1:32:EE:C2:78:35:50:25:A5:67:15:FE:D5:FC:
                                B4:25:1D:E4:02:21:00:B0:56:13:FD:94:32:8F:CC:84:
                                83:68:FB:49:5E:62:2F:E2:E7:9B:58:96:C7:9C:B6:49:
                                9C:22:3E:BE:62:23:AA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Mar  7 11:11:26.796 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:96:1B:8C:9B:A0:79:A0:F4:C5:AD:BB:
                                8F:A2:69:A1:0E:29:DF:17:BE:2E:13:92:D3:E0:00:A4:
                                8C:72:E1:AC:41:02:21:00:B4:BD:BB:FB:AD:29:E1:99:
                                57:6B:33:D2:E5:49:F3:57:32:41:AA:4F:CC:DD:A0:D3:
                                BA:C0:8F:EE:DC:B6:5B:F1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        48:f1:b8:c8:6f:17:92:db:81:59:7b:7f:c1:17:c0:7c:94:43:
        8e:10:0d:3d:b8:69:49:63:12:a1:46:d5:89:e8:fd:3f:69:97:
        3e:59:6a:a8:04:bb:be:16:7e:35:d9:11:12:aa:a8:68:83:c2:
        f5:c5:09:b6:08:1b:46:58:04:6b:0b:b9:26:df:14:5e:fe:95:
        3a:9c:e9:27:b2:bb:cc:87:70:78:b1:17:88:25:cd:40:ae:4d:
        e1:30:de:f6:49:bd:45:68:a6:c1:c9:21:8c:23:ee:2c:15:40:
        14:21:b4:da:4f:9b:7d:29:f2:50:6a:3f:f6:a3:1a:0e:dc:e5:
        19:bc:c4:1e:9a:cd:55:68:dd:9a:bb:5d:84:5e:88:18:44:8c:
        fb:be:db:73:d2:e9:6d:5e:26:eb:56:05:44:62:a0:ea:65:5e:
        50:3d:d3:73:2e:3e:c1:da:ce:1c:5d:ac:13:3c:76:0e:88:df:
        0e:ea:71:88:b3:d8:ce:11:21:74:7e:50:63:73:85:f5:10:57:
        e8:e7:93:33:4d:2f:58:2f:0a:30:58:a7:cc:33:49:56:6e:a1:
        0a:40:c0:fe:4d:e4:c0:d4:7d:98:32:0f:de:77:dd:40:8e:c0:
        eb:87:5f:c1:73:64:9c:12:08:9f:8e:aa:75:a3:d5:c4:de:49:
        92:4c:d8:46

Vulnerabilities

5.75.177.197

Last Seen: 2025-04-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

253735763 | 2025-04-02T12:47:42.258210

OpenSSH8.2p1 Ubuntu 4ubuntu0.12

80 / tcp

677579724 | 2025-03-28T02:22:24.303853

Hashes

nginx1.18.0

443 / tcp

-360601212 | 2025-03-14T10:09:56.384354

Hashes

nginx1.18.0

Products

Pricing

Contact Us

5.75.177.197

Last Seen: 2025-04-02

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 253735763 | 2025-04-02T12:47:42.258210

OpenSSH8.2p1 Ubuntu 4ubuntu0.12

80 / tcp 677579724 | 2025-03-28T02:22:24.303853

Hashes

nginx1.18.0

443 / tcp -360601212 | 2025-03-14T10:09:56.384354

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

253735763 | 2025-04-02T12:47:42.258210

80 / tcp

677579724 | 2025-03-28T02:22:24.303853

443 / tcp

-360601212 | 2025-03-14T10:09:56.384354