GeneralInformation

Hostnames	api.maxupi.in
Domains	maxupi.in
Cloud Provider	DigitalOcean
Cloud Region	in-ka
Country	India
City	Doddaballapura
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Linux

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

-1250735848 | 2025-03-21T09:18:34.604744

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJOB5AwhyD8Qx1hhDTSLm8LQ
Q3Wo3zcmoJMbuk6KQFNv7mSwM02e3wo5WHh2sa+J/wn4TWCHvmknRr4GUcgoRnU=
Fingerprint: f6:0f:ff:6f:4c:e3:83:9a:45:12:72:10:9c:54:a2:1d

Kex Algorithms:
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	chacha20-poly1305@openssh.com
	aes256-gcm@openssh.com
	aes128-gcm@openssh.com

MAC Algorithms:
	hmac-sha2-512-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512
	hmac-sha2-256

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

589765266 | 2025-03-12T21:13:57.910093

Hashes

hash

574983643

http.dom_hash

1239617585

http.html_hash

589765266

http.server_hash

967792298

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 12 Mar 2025 21:13:57 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://68.183.247.152/

Vulnerabilities

443 / tcp

32349830 | 2025-03-14T04:38:11.274140

Hashes

hash

574079837

http.dom_hash

-2006505642

http.html_hash

32349830

http.server_hash

967792298

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 14 Mar 2025 04:38:11 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 56
Connection: keep-alive
Access-Control-Allow-Origin: *
X-RateLimit-Limit: 1000
X-RateLimit-Remaining: 999
X-RateLimit-Reset: 1741927392
Content-Security-Policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 0
ETag: W/"38-JdK3AaowLl8R4CUkRUXygHPuCB8"
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:e2:a0:b2:41:78:8c:67:44:76:a4:ed:c6:1e:69:7c:b8:98
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Mar  7 14:24:56 2025 GMT
            Not After : Jun  5 14:24:55 2025 GMT
        Subject: CN=api.maxupi.in
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:df:50:b7:ab:97:9b:a6:36:4f:a3:64:90:df:05:
                    2f:dc:6d:bf:03:49:04:58:7b:2c:b2:ec:c3:a9:bf:
                    01:ea:01:87:22:0f:45:65:1a:ad:a9:95:44:2a:cd:
                    af:c3:66:e4:99:8e:29:e5:7a:a7:aa:17:e4:19:6b:
                    fc:3e:88:6a:c1
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                16:BD:19:6C:C6:52:4A:3C:69:18:D3:F8:27:43:CB:C9:AF:BB:E2:3D
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.maxupi.in
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Mar  7 15:23:26.549 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CD:65:42:A6:77:55:93:D7:9A:DA:D3:
                                A1:92:9F:52:B3:36:1B:EE:FA:62:EC:99:F2:98:E6:2D:
                                2F:0D:CB:EA:C5:02:21:00:B1:75:7C:78:35:57:4B:20:
                                32:BB:04:12:D8:B4:FD:E2:52:F8:AC:F9:9F:40:D6:64:
                                EA:89:64:F2:DA:24:44:21
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Mar  7 15:23:26.678 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:01:1B:4F:8A:A5:2E:DF:62:13:D1:44:ED:
                                36:8E:08:B9:E6:75:E7:E0:21:43:F1:60:00:FC:86:6D:
                                6C:47:B4:9D:02:21:00:AC:0B:1A:7E:37:05:0D:22:44:
                                4B:8A:63:4E:B9:0F:EF:81:4D:8B:BC:09:74:BA:B8:A1:
                                CE:35:51:AF:55:E1:91
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:49:58:16:64:6d:c8:0c:ce:1b:af:d2:dc:82:f3:
        3d:e3:47:1b:ea:35:d4:b0:2a:34:f7:0e:86:80:53:73:83:f8:
        ed:69:97:2b:a0:0e:96:2d:4f:3b:46:ee:32:ff:18:1f:02:31:
        00:80:2f:c1:ef:8c:ee:c2:8c:e5:b5:ab:89:56:b8:d4:9b:d9:
        ae:64:06:5e:5d:dc:8c:bd:d9:78:bb:b3:25:2e:7e:8d:fc:f3:
        f1:01:24:07:c6:d4:79:f9:8f:1f:5d:11:1f

Vulnerabilities

68.183.247.152

Last Seen: 2025-03-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

-1250735848 | 2025-03-21T09:18:34.604744

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

589765266 | 2025-03-12T21:13:57.910093

Hashes

nginx1.18.0

443 / tcp

32349830 | 2025-03-14T04:38:11.274140

Hashes

nginx1.18.0

Products

Pricing

Contact Us

68.183.247.152

Last Seen: 2025-03-21

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp -1250735848 | 2025-03-21T09:18:34.604744

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 589765266 | 2025-03-12T21:13:57.910093

Hashes

nginx1.18.0

443 / tcp 32349830 | 2025-03-14T04:38:11.274140

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

-1250735848 | 2025-03-21T09:18:34.604744

80 / tcp

589765266 | 2025-03-12T21:13:57.910093

443 / tcp

32349830 | 2025-03-14T04:38:11.274140