GeneralInformation

Hostnames	csair.cn tapd.csair.cn csair.com mx2.edm.csair.com csairgroup.cn
Domains	csair.cn csair.com csairgroup.cn
Country	China
City	Shenzhen
Organization	CHINANET Guangdong province network
ISP	CHINANET-BACKBONE
ASN	AS4134

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

80 / tcp

-158149353 | 2025-04-08T15:08:25.867983

Hashes

hash

-563754017

http.dom_hash

1239617585

http.html_hash

-158149353

http.server_hash

-1786963686

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Tue, 08 Apr 2025 15:08:25 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive
Set-Cookie: cookiesession1=678B287195FDE0013E07562354648667;Expires=Wed, 08 Apr 2026 15:08:25 GMT;Path=/;HttpOnly

Vulnerabilities

443 / tcp

1651973090 | 2025-04-06T09:14:17.001279

Hashes

hash

-1825846064

http.dom_hash

-2049760045

http.html_hash

1651973090

http.robots_hash

-1022729730

http.server_hash

-1786963686

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 06 Apr 2025 09:08:27 GMT
Content-Type: text/html
Content-Length: 612
Connection: keep-alive
Last-Modified: Thu, 26 Aug 2021 01:40:13 GMT
ETag: "6126f0fd-264"
Accept-Ranges: bytes
Set-Cookie: cookiesession1=678B2873766CBE2AAFEBADAE3896F5A7;Expires=Mon, 06 Apr 2026 09:08:27 GMT;Path=/;HttpOnly

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:30:21:ad:ec:83:ca:06:e6:34:31:62:14:13:c3:5f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, CN=DigiCert Basic RSA CN CA G2
        Validity
            Not Before: Mar 24 00:00:00 2025 GMT
            Not After : Apr 23 23:59:59 2026 GMT
        Subject: C=CN, ST=\xE5\xB9\xBF\xE4\xB8\x9C\xE7\x9C\x81, L=\xE5\xB9\xBF\xE5\xB7\x9E\xE5\xB8\x82, O=China Southern Airlines Co., Ltd., CN=*.csair.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:aa:b9:06:1a:29:59:b1:97:48:68:52:30:88:0f:
                    10:22:b8:9c:7e:20:f6:d8:ea:56:b2:7d:2d:fc:32:
                    0f:a9:18:95:56:2f:68:3e:fb:98:9b:12:30:99:41:
                    27:90:cf:80:ee:5c:e1:96:d1:34:30:e1:90:11:67:
                    0f:de:2b:bc:bf:b0:06:52:77:c5:f9:3c:4f:01:14:
                    4c:2d:e2:7c:09:c8:4b:17:86:e6:d6:91:e6:14:81:
                    a2:63:8d:26:48:ae:9a:33:38:26:02:1f:cb:a0:3e:
                    92:54:f8:53:29:8c:bd:e9:fb:97:06:38:62:78:63:
                    e0:db:b6:2f:b6:c0:fa:94:2c:9c:e7:df:bd:20:cc:
                    46:c2:e8:2c:b5:0e:57:86:f5:6d:43:4a:8f:e4:11:
                    87:95:2c:43:03:db:53:55:01:0e:3b:2a:6a:2c:8e:
                    41:a0:b3:fe:cb:32:67:da:76:6b:03:10:d6:f5:b9:
                    c7:b4:d0:9e:5b:dc:95:24:4d:42:b8:a1:dc:e6:99:
                    da:5d:c3:35:e3:d4:03:f7:57:fb:b0:70:13:32:c6:
                    f7:cd:c9:e8:2f:e0:02:17:76:0d:78:48:09:3a:5a:
                    1d:8c:9e:b2:62:d7:ab:b8:71:f0:31:2e:69:67:85:
                    29:91:66:aa:94:68:3a:c7:0d:8d:be:13:4b:fa:b9:
                    c3:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                06:BD:A6:9B:60:79:50:31:BE:D5:A9:02:4A:A0:D0:95:53:8B:2F:34
            X509v3 Subject Key Identifier: 
                0D:E7:4E:B9:43:4C:73:32:0E:61:0D:FC:0F:E0:3D:E3:4B:B6:0F:60
            X509v3 Subject Alternative Name: 
                DNS:*.csair.cn, DNS:csair.cn, DNS:*.csair.com, DNS:csair.com, DNS:*.csairgroup.cn, DNS:csairgroup.cn, DNS:*.tapd.csair.cn, DNS:tapd.csair.cn
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.digicert.cn/DigiCertBasicRSACNCAG2.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.cn
                CA Issuers - URI:http://cacerts.digicert.cn/DigiCertBasicRSACNCAG2.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0E:57:94:BC:F3:AE:A9:3E:33:1B:2C:99:07:B3:F7:90:
                                DF:9B:C2:3D:71:32:25:DD:21:A9:25:AC:61:C5:4E:21
                    Timestamp : Mar 24 01:46:16.600 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F3:E0:0B:4D:1B:9E:2A:AE:DB:EE:D5:
                                BD:DB:8B:09:39:4B:32:DE:0B:E4:88:C4:08:6C:DD:19:
                                A6:59:FF:58:1F:02:21:00:E6:BE:CE:6E:6D:3A:D3:74:
                                93:99:37:5E:6E:57:45:FC:82:5A:35:B4:BF:8B:F0:66:
                                C3:B2:E8:52:EE:1E:0C:61
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
                                5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
                    Timestamp : Mar 24 01:46:16.663 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:DC:D6:B6:CD:FE:1A:BC:63:EE:A0:A9:
                                88:E4:B7:7D:51:11:93:3E:A7:6D:F0:22:E3:FD:8B:F7:
                                51:94:B6:1D:2F:02:20:00:99:CD:5E:D7:17:0C:98:0A:
                                1A:2F:C2:CB:79:92:D3:DD:F6:C6:DE:C4:83:52:4D:27:
                                FA:82:8A:80:40:C6:8D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:
                                F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7
                    Timestamp : Mar 24 01:46:16.628 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:5F:5D:DF:14:87:DE:64:45:59:F7:89:C7:
                                2E:AE:E3:CD:B0:56:CF:C8:85:E3:2E:02:B1:71:D9:12:
                                0A:D5:6A:89:02:20:75:3A:03:29:FE:0F:9C:C0:63:B4:
                                5B:56:E6:35:4D:2F:08:35:4F:E1:B4:87:E6:41:B7:F6:
                                EE:2A:80:11:59:23
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        87:c3:1d:2d:5e:b1:72:3c:9b:5e:0d:bd:40:50:db:c6:d4:9d:
        83:52:4d:ff:d1:5c:99:42:79:f1:3a:54:37:60:bc:81:2b:08:
        b8:6e:21:89:17:af:50:82:0b:15:90:3d:58:ca:e7:f8:88:5d:
        78:4c:cb:83:5e:b0:00:21:91:9e:19:8c:eb:04:21:10:3c:fe:
        53:d4:09:d9:c3:ef:95:70:7f:17:d2:8d:41:ca:b2:c6:10:e3:
        3c:ed:21:2d:dc:f1:6b:64:d8:49:c5:c4:dd:2c:82:a7:d4:24:
        2d:b1:db:fa:33:3d:41:65:06:b5:59:fa:ac:f2:27:bf:56:a9:
        dc:1d:f2:de:71:bf:95:46:36:63:70:a6:aa:eb:6c:44:75:82:
        6c:d9:b0:a7:92:80:19:f7:28:32:17:47:71:07:b7:12:21:0b:
        35:d7:28:f7:aa:63:57:c8:f5:ef:55:2c:17:3e:5b:6f:22:aa:
        6a:48:2e:17:b3:0c:63:9d:b7:cd:74:91:cc:32:6e:16:0e:38:
        25:9c:d4:65:19:09:93:d8:e8:58:24:b9:36:b7:de:41:59:37:
        a7:c1:90:a7:81:67:c0:89:ff:53:7f:37:a9:01:02:ec:b7:01:
        8e:89:a4:f1:f4:a2:72:f8:97:b7:6e:61:8d:4e:5a:33:e9:b7:
        6c:dc:ab:5d

Vulnerabilities

59.41.199.111

Last Seen: 2025-04-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

80 / tcp

-158149353 | 2025-04-08T15:08:25.867983

Hashes

nginx1.18.0

443 / tcp

1651973090 | 2025-04-06T09:14:17.001279

Hashes

nginx1.18.0

Products

Pricing

Contact Us

59.41.199.111

Last Seen: 2025-04-08

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

80 / tcp -158149353 | 2025-04-08T15:08:25.867983

Hashes

nginx1.18.0

443 / tcp 1651973090 | 2025-04-06T09:14:17.001279

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-158149353 | 2025-04-08T15:08:25.867983

443 / tcp

1651973090 | 2025-04-06T09:14:17.001279