GeneralInformation

Hostnames	charlieoscar.synology.me 88-119-143-207.static.zebra.lt
Domains	synology.me zebra.lt
Country	Lithuania
City	Vilnius
Organization	Telia Lietuva, AB
ISP	Telia Lietuva, AB
ASN	AS8764

WebTechnologies

JavaScript frameworks

Prototype1.7.2

ExtJS

Network storage

Synology DiskStation

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

21 22 80 123 5000

21 / tcp

-2114216788 | 2025-01-11T15:53:39.956048

220 CO-DATA FTP server ready.
530 Login incorrect.
214- The following commands are recognized (* =>'s unimplemented).
   USER    LPRT    MODE    MSOM*   RNTO    SITE    RMD     SIZE    AUTH 
   PASS    EPRT    RETR    MSAM*   ABOR    SYST    XRMD    MDTM    PBSZ 
   ACCT*   PASV    STOR    MRSQ*   DELE    STAT    PWD     MLST    PROT 
   SMNT*   LPSV    APPE    MRCP*   CWD     HELP    XPWD    MLSD    CCC 
   REIN*   EPSV    MLFL*   ALLO    XCWD    NOOP    CDUP    MFMT 
   QUIT    TYPE    MAIL*   REST    LIST    MKD     XCUP    FEAT 
   PORT    STRU    MSND*   RNFR    NLST    XMKD    STOU    OPTS 
214 Direct comments to ftp-bugs@CO-DATA.
211- Extensions supported:
 AUTH TLS
 PBSZ
 PROT
 CCC
 SIZE
 MDTM
 REST STREAM
 MFMT
 TVFS
 MLST
 MLSD
 UTF8
211 End.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:45:71:83:c2:22:56:33:80:d2:be:b4:fc:1c:38:bf:d1:b3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Dec 30 03:53:45 2024 GMT
            Not After : Mar 30 03:53:44 2025 GMT
        Subject: CN=charlieoscar.synology.me
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bd:32:95:6c:63:57:f9:29:e2:8b:e1:09:c6:1b:
                    a8:53:25:eb:f0:fb:34:01:37:78:f5:e0:e8:85:bf:
                    3f:78:47:c0:39:a1:34:f2:be:fc:0e:46:5c:d2:80:
                    4c:36:e6:f5:da:cc:c4:a6:e1:c1:08:40:83:89:69:
                    9c:19:a2:63:e4:a5:b4:26:43:38:54:50:26:30:0d:
                    90:1b:79:c6:27:37:d5:fe:07:64:55:d5:dc:87:49:
                    df:4a:a9:e4:a2:52:95:f5:8b:da:92:1f:80:59:de:
                    bc:a3:18:18:b4:d4:2a:76:10:ef:8c:36:86:4a:ab:
                    53:25:46:9d:56:58:59:e1:27:6d:86:3d:e7:bf:be:
                    0a:e7:48:e5:c8:e8:29:e9:35:3a:e3:ca:34:6b:f1:
                    1b:18:5a:80:ec:ad:e4:54:56:fe:50:0c:e1:0d:8e:
                    41:55:90:5d:85:bb:81:02:b9:22:5f:5d:0e:bc:5d:
                    9a:af:93:55:ba:0a:53:16:2a:98:70:fe:a5:da:f8:
                    0a:71:4b:6c:bd:9f:4e:fa:cd:33:63:70:73:4f:30:
                    d8:5e:db:64:2d:51:2a:42:c4:98:3a:e4:5b:b4:72:
                    08:94:25:ef:be:d6:9a:b7:cf:9c:e5:d1:84:21:91:
                    71:e8:e9:0b:69:5e:f3:8f:81:d0:20:4d:d7:d7:85:
                    73:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                2B:40:A5:30:2D:A7:F3:01:4A:51:FE:29:41:E9:69:08:FF:30:5F:2C
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:charlieoscar.synology.me
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Dec 30 04:52:15.763 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0D:BC:CA:91:D9:61:B7:22:FE:72:EE:3C:
                                A9:D4:D9:3D:40:47:25:1F:B1:A7:59:81:86:8B:84:D2:
                                30:8C:2A:46:02:21:00:E9:E4:51:2F:5F:6F:5A:A8:29:
                                6F:EE:BA:DE:DD:02:30:3C:70:41:94:C8:69:EE:71:E3:
                                26:1C:04:87:8C:56:C1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Dec 30 04:52:16.037 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1E:D1:C7:57:70:2F:74:D7:42:EB:E4:71:
                                0F:F9:35:49:BC:61:F6:43:43:3A:2D:89:4F:05:63:17:
                                46:EB:E0:B0:02:20:1D:42:5C:CB:A2:CB:A8:55:9F:D5:
                                A8:E0:44:36:14:48:FD:56:5E:D5:3B:9D:12:F1:8A:FC:
                                BC:97:C1:4B:0D:99
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        62:f9:8f:b3:0d:ad:7a:d6:33:9e:98:b3:0c:93:a6:27:b9:57:
        04:77:2f:20:d8:43:45:29:08:3c:7e:44:74:d9:fd:32:51:e5:
        c8:51:ca:b9:b9:d4:0d:01:d0:a1:79:2e:85:32:cd:3d:5a:a7:
        c0:20:d9:f8:24:f0:ca:d2:f9:40:8e:55:d4:ed:a0:44:02:b8:
        df:41:3b:16:15:3d:f7:1d:40:2d:83:d0:47:72:ef:73:7b:fb:
        a0:43:ce:44:3b:c4:24:3a:79:7c:0b:aa:09:28:c4:70:33:22:
        a3:55:af:9b:cc:0a:8b:ca:21:b5:c6:9d:4c:d3:09:33:1d:78:
        e8:56:b7:f3:cc:f8:51:bd:4e:af:ff:76:24:27:f1:9f:bc:b8:
        bb:21:ca:b6:1a:32:85:09:fa:ff:fe:32:e2:ce:48:24:c6:5f:
        c2:fa:49:83:f6:5f:ce:06:ca:61:7b:bf:f1:e6:99:2d:dd:d4:
        da:20:0c:08:aa:22:fe:df:02:c2:36:c4:00:35:69:fd:6b:f3:
        11:b9:a6:b7:64:c9:b5:9c:27:86:1f:fa:14:56:dd:ff:f0:c9:
        a4:59:3d:71:49:1a:3c:55:ca:2e:a5:f2:48:ff:d1:26:df:cb:
        31:22:85:bf:e4:b1:e5:41:ed:59:91:c9:5c:34:07:fc:f8:b7:
        c8:fb:08:c2

22 / tcp

1815724531 | 2025-01-11T03:52:40.105842

SSH-2.0-OpenSSH_7.4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC6ttuXsOfj8irQdxtbz1heNJrKbSjS4p1zzYoy3h+yx49i
OfUFkqQNLGMoYNTdaKt4/oXTLS/fQLyoOjok2Yxt0/zmeFJQ4rLIWuhfHGM0quvFJTza2ST/v0Lo
2PAV23/lFYqRiWZbVYmz8wDPX3fs6DWfzbIxYLohIkO+KiFVUOhyVWGm9borloNegwO7JPXQk/pg
9RWfaBuLl/nzDIJ4lmzzt7aozgQOdYhBECj1MMyjgczkEQ9OVHmBqhdM/k0A8X4VMdH2RpN8YYvU
pJk2Rav6XoFzSecXgmRzH6UD0Noh3yr1GoDuFSLTxVuB+2WrtYSZGwh/aUYCiXrM+MAh
Fingerprint: 67:74:11:ea:a2:89:6c:8c:a2:36:a4:e1:e3:3f:f2:c5

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

CVE-2023-38408 CVE-2008-3844 CVE-2023-51767 CVE-2021-41617 CVE-2020-15778 13 moreCVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2019-6111 CVE-2019-6110 CVE-2019-6109 CVE-2018-20685 CVE-2018-15919 CVE-2018-15473 CVE-2017-15906 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

80 / tcp

1140144202 | 2025-01-23T17:18:03.977190

Hashes

hash

857995471

http.dom_hash

-541244620

http.html_hash

1140144202

http.server_hash

-1340961475

HTTP/1.1 403 Forbidden
Server: nginx
Date: Thu, 23 Jan 2025 17:17:58 GMT
Content-Type: text/html
Content-Length: 3322
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
ETag: "5d42c936-cfa"

123 / udp

-1351904861 | 2025-01-10T10:30:48.502264

NTP
protocolversion: 3
stratum: 3
leap: 0
precision: -6
rootdelay: 0.200576782227
rootdisp: 0.0148773193359
refid: 3495653439
reftime: 3945493773.37
poll: 0

5000 / tcp

-864825908 | 2025-01-17T22:43:18.166124

Hashes

hash

1396122889

http.dom_hash

1452361098

http.favicon.hash

149371702

http.html_hash

-864825908

http.server_hash

-1340961475

http.title_hash

194147776

CO-DATA - Synology DiskStation

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 17 Jan 2025 22:43:13 GMT
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Security-Policy: base-uri 'self';  connect-src ws: wss: *; default-src 'self' 'unsafe-eval' data: blob: https://*.synology.com https://www.synology.cn/; font-src 'self' data: https://*.googleapis.com https://*.gstatic.com; form-action 'self'; frame-ancestors 'self' https://gofile.me http://gofile.me; frame-src 'self' data: blob: https://*.synology.com https://www.synology.cn/ http://*.synology.com http://*.synology.cn; img-src 'self' data: blob: https://*.google.com https://*.googleapis.com http://*.googlecode.com https://*.gstatic.com; media-src 'self' data: about:;  script-src 'self' 'unsafe-eval' data: blob: https://*.synology.com https://www.synology.cn/ https://*.google.com https://*.googleapis.com; style-src 'self' 'unsafe-inline' https://*.googleapis.com;
Set-Cookie: id=;expires=Thu, 01-Jan-1970 00:00:01 GMT;path=/


Synology DiskStation Manager (DSM):
  Version: 6.2.4-25556
  Hostname: CO-DATA

88.119.143.207

Last Seen: 2025-01-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

21 / tcp

-2114216788 | 2025-01-11T15:53:39.956048

22 / tcp

1815724531 | 2025-01-11T03:52:40.105842

OpenSSH7.4

80 / tcp

1140144202 | 2025-01-23T17:18:03.977190

Hashes

nginx

123 / udp

-1351904861 | 2025-01-10T10:30:48.502264

5000 / tcp

-864825908 | 2025-01-17T22:43:18.166124

Hashes

nginx

Products

Pricing

Contact Us

88.119.143.207

Last Seen: 2025-01-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 22 Latest CVSS

OpenPorts

21 / tcp -2114216788 | 2025-01-11T15:53:39.956048

22 / tcp 1815724531 | 2025-01-11T03:52:40.105842

OpenSSH7.4

80 / tcp 1140144202 | 2025-01-23T17:18:03.977190

Hashes

nginx

123 / udp -1351904861 | 2025-01-10T10:30:48.502264

5000 / tcp -864825908 | 2025-01-17T22:43:18.166124

Hashes

nginx

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

-2114216788 | 2025-01-11T15:53:39.956048

22 / tcp

1815724531 | 2025-01-11T03:52:40.105842

80 / tcp

1140144202 | 2025-01-23T17:18:03.977190

123 / udp

-1351904861 | 2025-01-10T10:30:48.502264

5000 / tcp

-864825908 | 2025-01-17T22:43:18.166124