GeneralInformation

Hostnames	feijoa.cloud
Domains	feijoa.cloud
Country	United Kingdom
City	London
Organization	UK Next Generation Cloud Server (NGCS)
ISP	IONOS SE
ASN	AS8560

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443 3000 5000 8080 27017

80 / tcp

1410093119 | 2025-03-20T16:51:21.932902

Hashes

hash

1425806075

http.dom_hash

1804521491

http.html_hash

1410093119

http.server_hash

967792298

http.title_hash

-22151114

Apache2 Ubuntu Default Page: It works

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 20 Mar 2025 16:51:21 GMT
Content-Type: text/html
Content-Length: 10671
Last-Modified: Mon, 03 Mar 2025 16:36:47 GMT
Connection: keep-alive
ETag: "67c5da9f-29af"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

780672404 | 2025-03-24T08:25:58.762690

Hashes

hash

-564622949

http.dom_hash

1239617585

http.html_hash

780672404

http.server_hash

967792298

http.title_hash

1433208809

502 Bad Gateway

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 24 Mar 2025 08:25:58 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0f:5e:72:7c:ff:42:32:63:e1:07:d8:f3:14:3b:94:a9
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G2
        Validity
            Not Before: Aug  7 00:00:00 2023 GMT
            Not After : Aug  6 23:59:59 2024 GMT
        Subject: CN=*.feijoa.cloud
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:8f:0a:d1:98:a6:c6:22:60:01:df:3d:40:cc:a3:
                    22:44:1b:b7:aa:ca:4b:b9:db:0b:f7:79:f0:ef:12:
                    e5:8a:3b:84:22:b5:1f:50:da:31:03:8e:43:89:23:
                    89:da:bc:3a:84:2f:ef:ba:50:5f:10:c1:33:75:88:
                    a8:13:43:96:19:9b:72:00:f6:2f:9d:76:22:30:c5:
                    f5:20:53:59:5e:2d:b2:f6:91:10:b2:51:82:fb:8d:
                    3c:39:ca:45:de:83:96:c1:01:c1:8b:a6:fe:18:97:
                    dd:34:72:ec:6d:e7:61:d1:2b:ff:0e:df:96:15:7e:
                    15:2d:ac:7b:5f:20:bc:2f:62:0e:99:08:9b:b5:d6:
                    39:bd:19:58:1e:16:c3:de:bc:24:1b:7c:b5:7c:45:
                    8a:07:7f:05:b8:3b:18:7d:4d:06:ad:d8:64:ec:c7:
                    f0:94:8d:20:4e:e9:94:e5:ba:ae:52:c1:c0:bb:b3:
                    b7:76:92:5c:4a:84:b6:9f:9a:69:76:52:f1:d5:54:
                    69:73:cf:26:ce:e5:19:10:80:09:bc:a7:7e:74:99:
                    86:bb:f8:05:71:36:7e:b3:fc:e8:8a:cf:3a:c7:1c:
                    66:a2:be:7f:c5:77:72:00:90:79:fe:98:7d:c3:54:
                    0f:9c:26:61:92:9e:9b:ed:9d:fd:6a:99:b0:c3:f7:
                    12:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                78:DF:91:90:5F:EE:DE:AC:F6:C5:75:EB:D5:4C:55:53:EF:24:4A:B6
            X509v3 Subject Key Identifier: 
                DE:DF:AC:3B:57:B3:69:F3:29:11:00:85:EC:1D:6B:B1:23:36:4D:0C
            X509v3 Subject Alternative Name: 
                DNS:*.feijoa.cloud, DNS:feijoa.cloud
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
            X509v3 Basic Constraints: 
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Aug  7 21:48:44.026 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A8:17:D0:F3:B3:96:E1:F6:4C:B4:45:
                                19:8C:19:E4:65:6E:83:0C:C3:E5:45:EA:0C:D8:8A:92:
                                8E:DD:6F:F1:01:02:20:01:71:22:44:A8:7B:42:C0:1D:
                                F9:3B:50:01:E0:22:E4:58:F4:0B:19:BD:C7:FA:6E:FD:
                                14:AB:04:37:A1:FE:72
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Aug  7 21:48:44.057 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6E:A7:79:4A:08:B0:7D:C8:E8:19:C1:39:
                                61:56:DE:2E:84:F4:1E:41:1B:64:17:DB:2F:41:89:14:
                                7B:A2:22:76:02:20:0C:AB:9F:E3:72:6E:DA:73:B7:6F:
                                7A:5D:8D:B9:74:EF:FB:19:42:5F:7A:AC:68:99:5C:39:
                                72:02:F7:E8:C3:C6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Aug  7 21:48:44.050 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CF:E7:B6:A6:B2:DF:7D:7B:76:A6:83:
                                C1:EC:C0:65:BE:BE:33:11:15:AB:49:BE:06:F3:37:82:
                                90:86:64:F8:87:02:21:00:9A:5C:13:E9:BF:8A:A2:70:
                                75:87:38:1B:56:DB:04:A7:D6:EA:3D:64:5B:FB:0E:97:
                                D4:57:12:43:F9:99:88:BD
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7a:2e:d1:54:6a:e3:bd:e0:07:cc:5f:02:e6:b0:40:41:46:23:
        44:8a:17:f7:7d:78:c3:a0:22:ab:f7:92:da:93:b2:3a:ad:73:
        b4:18:ce:93:56:47:9c:b4:87:92:79:df:26:48:ff:17:0b:66:
        7e:88:5a:77:e7:66:f6:4a:8f:92:d2:af:8c:19:a6:ca:8b:d5:
        86:53:4f:58:1f:cc:6e:83:f1:7f:c3:bf:d1:37:f8:c1:d1:05:
        36:12:45:6e:5e:d2:f8:8d:2b:88:6c:66:c7:ae:32:07:18:1d:
        f6:44:c7:fa:50:dd:08:d8:4d:be:7d:37:2b:87:fa:da:f1:f6:
        af:30:33:6b:44:58:ed:99:67:e5:05:f8:83:5a:6a:99:a8:37:
        cf:4b:6f:8b:3a:30:ca:80:8c:71:d1:dd:35:f6:81:63:0d:91:
        90:b6:1c:5f:78:fa:2c:53:11:b3:f5:9d:e4:fe:06:2b:df:2d:
        4c:0c:da:9e:1d:af:7c:b1:50:c0:be:53:ad:eb:2d:f7:00:fb:
        41:60:de:88:ed:46:b8:56:0b:09:88:f7:02:87:8d:3c:38:71:
        73:a5:3c:a0:2a:84:31:a4:8d:9e:51:45:d1:ee:df:23:b3:f4:
        b8:74:82:b6:c4:f5:6e:fa:2a:cd:ac:a8:0a:77:ca:7e:64:74:
        0c:a4:6d:54

Vulnerabilities

3000 / tcp

869547465 | 2025-03-08T18:26:12.123265

Hashes

hash

-31921774

http.dom_hash

1436007594

http.favicon.hash

-94834129

http.html_hash

869547465

http.title_hash

1326855691

Feijoa - Businesses can agree

HTTP/1.1 200 OK
X-Powered-By: Next.js
ETag: "3e2d-cHqU9t2r0t1aqB4mjp2vqg41OgY"
Content-Type: text/html; charset=utf-8
Content-Length: 15917
Vary: Accept-Encoding
Date: Sat, 08 Mar 2025 18:26:11 GMT
Connection: keep-alive
Keep-Alive: timeout=5

5000 / tcp

-1060095501 | 2025-03-10T05:38:37.544685

Hashes

hash

2068253351

http.dom_hash

1231516973

http.html_hash

-1060095501

http.title_hash

-1449824703

Error

HTTP/1.1 404 Not Found
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Mon, 10 Mar 2025 05:38:37 GMT
Connection: keep-alive
Keep-Alive: timeout=5

8080 / tcp

302490505 | 2025-03-26T07:06:02.964106

Hashes

hash

-1998255555

http.dom_hash

-2006505642

http.html_hash

302490505

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 54
ETag: W/"36-1ho2FBHbRIxilLawbzR1xyUxMkU"
Date: Wed, 26 Mar 2025 07:06:02 GMT
Connection: keep-alive
Keep-Alive: timeout=5

77.68.27.133

Last Seen: 2025-03-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

80 / tcp

1410093119 | 2025-03-20T16:51:21.932902

Hashes

nginx1.18.0

443 / tcp

780672404 | 2025-03-24T08:25:58.762690

Hashes

nginx1.18.0

3000 / tcp

869547465 | 2025-03-08T18:26:12.123265

Hashes

5000 / tcp

-1060095501 | 2025-03-10T05:38:37.544685

Hashes

8080 / tcp

302490505 | 2025-03-26T07:06:02.964106

Hashes

Products

Pricing

Contact Us

77.68.27.133

Last Seen: 2025-03-26

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

80 / tcp 1410093119 | 2025-03-20T16:51:21.932902

Hashes

nginx1.18.0

443 / tcp 780672404 | 2025-03-24T08:25:58.762690

Hashes

nginx1.18.0

3000 / tcp 869547465 | 2025-03-08T18:26:12.123265

Hashes

5000 / tcp -1060095501 | 2025-03-10T05:38:37.544685

Hashes

8080 / tcp 302490505 | 2025-03-26T07:06:02.964106

Hashes

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

1410093119 | 2025-03-20T16:51:21.932902

443 / tcp

780672404 | 2025-03-24T08:25:58.762690

3000 / tcp

869547465 | 2025-03-08T18:26:12.123265

5000 / tcp

-1060095501 | 2025-03-10T05:38:37.544685

8080 / tcp

302490505 | 2025-03-26T07:06:02.964106