GeneralInformation

Hostnames	ec2-43-196-0-163.cn-north-1.compute.amazonaws.com.cn sonarqube.gprddigital.com
Domains	amazonaws.com.cn gprddigital.com
Cloud Provider	Amazon
Cloud Region	cn-north-1
Cloud Service	EC2
Country	China
City	Beijing
Organization	Beijing Sinnet Technology Co., Ltd.
ISP	Beijing Guanghuan Xinwang Digital
ASN	AS55960

WebTechnologies

Development

SonarQubes

Programming languages

Java

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 443 9000

656573574 | 2024-10-10T22:22:01.435887

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.10
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBIGp8cuDihuBENLoXtZEDONl
zwfr3x6XG9imTj1Vm9v7zxk8ab6l1BJWVvj2cLs5aFU9A27hcrTEkS+pojg3OXA=
Fingerprint: 92:b1:bd:bb:ee:b0:e9:3b:34:89:ae:04:44:bf:d8:bb

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-10-19T00:24:18.810901

80 / tcp

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 19 Oct 2024 00:24:18 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 21 Feb 2024 07:50:04 GMT
Connection: keep-alive
ETag: "65d5ab2c-264"
Accept-Ranges: bytes

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

-1547561488 | 2024-10-19T17:35:50.260834

443 / tcp

SonarQube

HTTP/1.1 200 
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 19 Oct 2024 17:35:50 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 1774
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self'; base-uri 'none'; connect-src 'self' http: https:; img-src * data: blob:; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; worker-src 'none'
X-Content-Security-Policy: default-src 'self'; base-uri 'none'; connect-src 'self' http: https:; img-src * data: blob:; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; worker-src 'none'
X-WebKit-CSP: default-src 'self'; base-uri 'none'; connect-src 'self' http: https:; img-src * data: blob:; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; worker-src 'none'
Cache-Control: no-cache, no-store, must-revalidate
vary: accept-encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:d9:6c:49:7b:2a:47:58:d2:3b:69:69:37:9d:03:e3:b0:28
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E5
        Validity
            Not Before: Aug 21 22:25:19 2024 GMT
            Not After : Nov 19 22:25:18 2024 GMT
        Subject: CN=sonarqube.gprddigital.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:af:21:ce:c3:0a:74:7d:e1:ff:12:61:75:33:0a:
                    a1:8b:81:6d:1d:b6:8a:58:63:e4:77:03:61:84:cd:
                    9a:47:1d:4a:c8:d5:67:93:1e:bc:06:ce:b4:da:60:
                    8b:5c:40:d3:78:cd:77:4e:8f:1a:e3:1d:e7:ef:95:
                    90:75:d9:e1:15
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D0:10:B6:B4:12:DB:31:3D:48:AC:81:12:2F:04:03:88:E2:A2:51:5F
            X509v3 Authority Key Identifier: 
                9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
            Authority Information Access: 
                OCSP - URI:http://e5.o.lencr.org
                CA Issuers - URI:http://e5.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:sonarqube.gprddigital.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Aug 21 23:23:50.054 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:3A:67:67:6D:17:E5:D0:59:50:32:28:D1:
                                42:C2:B6:06:08:F4:37:EB:E2:CA:D7:CA:EB:3B:E8:36:
                                29:40:61:65:02:21:00:FB:88:78:A2:12:73:7D:94:2A:
                                0B:E6:1D:AB:9C:F0:05:E0:11:A9:DE:B2:65:B5:D4:63:
                                30:8A:67:B3:6E:B4:89
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Aug 21 23:23:50.019 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:85:3E:02:E3:2C:FA:01:FE:C1:76:4F:
                                E6:B2:B8:D3:38:09:22:7C:95:6C:33:E3:91:5E:8B:3A:
                                55:A7:8B:61:BF:02:21:00:E1:C3:5C:15:48:16:5A:08:
                                24:C2:B1:5C:D9:24:C7:1B:09:46:C2:11:3E:18:02:F9:
                                4C:16:2F:8C:09:77:9C:EE
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:31:00:80:a6:b0:ec:52:be:ca:a8:b6:73:68:15:84:
        46:4b:bf:48:8c:4b:7f:a1:80:fe:9a:c3:41:d0:e1:6b:28:e7:
        e8:34:32:8d:e8:fd:00:c5:65:79:e6:71:cf:53:00:e1:2c:02:
        30:38:67:1d:f6:22:8d:e8:09:5f:2d:86:f9:75:6b:ab:9d:da:
        20:6b:49:09:8e:27:cb:e8:0f:a4:d8:c3:35:2b:c0:5d:f5:38:
        be:cc:60:f1:e0:4a:1f:de:b6:b7:99:40:de

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

-1547561488 | 2024-10-26T00:44:53.263289

9000 / tcp

SonarQube

HTTP/1.1 200 
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self'; base-uri 'none'; connect-src 'self' http: https:; img-src * data: blob:; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; worker-src 'none'
X-Content-Security-Policy: default-src 'self'; base-uri 'none'; connect-src 'self' http: https:; img-src * data: blob:; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; worker-src 'none'
X-WebKit-CSP: default-src 'self'; base-uri 'none'; connect-src 'self' http: https:; img-src * data: blob:; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; worker-src 'none'
Cache-Control: no-cache, no-store, must-revalidate
vary: accept-encoding
Content-Type: text/html;charset=utf-8
Content-Length: 1774
Date: Sat, 26 Oct 2024 00:44:53 GMT

43.196.0.163

Last Seen: 2024-10-26

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

656573574 | 2024-10-10T22:22:01.435887
22 / tcp

OpenSSH8.9p1 Ubuntu 3ubuntu0.10

1651973090 | 2024-10-19T00:24:18.810901
80 / tcp

nginx1.18.0

-1547561488 | 2024-10-19T17:35:50.260834
443 / tcp

nginx1.18.0

-1547561488 | 2024-10-26T00:44:53.263289
9000 / tcp

Products

Pricing

Contact Us

43.196.0.163

Last Seen: 2024-10-26

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

656573574 | 2024-10-10T22:22:01.435887 22 / tcp

OpenSSH8.9p1 Ubuntu 3ubuntu0.10

1651973090 | 2024-10-19T00:24:18.810901 80 / tcp

nginx1.18.0

-1547561488 | 2024-10-19T17:35:50.260834 443 / tcp

nginx1.18.0

-1547561488 | 2024-10-26T00:44:53.263289 9000 / tcp

Products

Pricing

Contact Us

Vulnerabilities

656573574 | 2024-10-10T22:22:01.435887
22 / tcp

1651973090 | 2024-10-19T00:24:18.810901
80 / tcp

-1547561488 | 2024-10-19T17:35:50.260834
443 / tcp

-1547561488 | 2024-10-26T00:44:53.263289
9000 / tcp