LeakIX - Host 117.247.80.106

Host 117.247.80.106

India

National Internet Backbone

Software information

nginx nginx

tcp/443

Cisco RV hardware outdated
The following Cisco firewall is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible since multiple CVEs allow remote attackers to DoS or achieve RCE (Remote code execution) on the firewall. Those vulnerabilities are currently used in ransomware campaign and could damage your network.

Reference:

https://www.cvedetails.com/cve/CVE-2022-20699

https://www.cvedetails.com/cve/CVE-2022-20701

https://www.cvedetails.com/cve/CVE-2022-20707

https://www.cvedetails.com/cve/CVE-2022-20708

https://www.cvedetails.com/cve/CVE-2022-20709

https://www.cvedetails.com/cve/CVE-2022-20710

https://www.cvedetails.com/cve/CVE-2022-20711

https://www.cvedetails.com/cve/CVE-2022-20712

https://www.cvedetails.com/cve/CVE-2022-20749
IP: 117.247.80.106
Port: 443
URL: https://117.247.80.106

First seen 2022-10-30 18:52
- Severity: critical
  Fingerprint: eea4a14a4ef6fd47577723470958170ab680f37c5af1ec5704673786b009390d
```
Found CISCO RV34X web frontend
Frimware build 2019-4-4
Version: 1.0.03.15
Affected by cve-2022-20699
Affected by cve-2022-20701
Affected by cve-2022-20707
Affected by cve-2022-20708
Affected by cve-2022-20709
Affected by cve-2022-20710
Affected by cve-2022-20711
Affected by cve-2022-20712
Affected by cve-2022-20749
```
  Found on 2022-10-30 18:52
Create report

Open service 117.247.80.106:443

2024-09-11 04:19

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 11 Sep 2024 04:20:07 GMT
Content-Type: text/html
Content-Length: 178
Connection: close
Location: ./login.html
Content-Security-Policy: default-src 'self';
                                    script-src 'self'
                                               'unsafe-inline'
                                               'unsafe-eval';
                                    img-src 'self'
                                            data:;
									connect-src 'self'
											ws: wss:;
                                    style-src 'self'
                                              'unsafe-inline';
                                    font-src 'self';
                                    child-src 'self';
                                    object-src 'none'
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body bgcolor="white">
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx</center>
</body>
</html>

Found 2024-09-11 by HttpPlugin

Create report

Open service 117.247.80.106:80

2024-09-10 18:23

HTTP/1.1 200 OK
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Content-Type: text/html
X-Content-Type-Options: nosniff
Date: Tue, 10 Sep 2024 23:53:26 GMT
ETag: 1723665965
Content-Length: 481
X-XSS-Protection: 1; mode=block
Last-Modified: Wed, 29 Dec 2021 02:42:42 GMT
Connection: close
Accept-Ranges: bytes


<!doctype html>
<html>
<head>
	<title></title>
	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
	<meta http-equiv="X-UA-Compatible" content="IE=edge" >
	<meta http-equiv="Pragma" content="no-cache" />
	<meta http-equiv="Cache-Control" content="no-cache, must-revalidate" />
	<meta http-equiv="Expires" content="0" />
</head>
<body>
</body>
<script>
	window.location.href = "./doc/page/login.asp?_" + (new Date()).getTime();
</script>
</html>

Found 2024-09-10 by HttpPlugin

Create report

Fingerprint:

1850d196bc1a42d155bf4424743c9675ae57a89a7c00d11baadd202d25c5b4ea

CN:

EC:F4:0C:0E:00:0D

Key:

RSA-2048

Issuer:

EC:F4:0C:0E:00:0D

Not before:

2012-07-12 18:32

Not after:

2042-07-05 18:32

Domain summary

No record

Host 117.247.80.106

India

Software information

Cisco RV hardware outdated

Create report

Create report

Domain summary