nginx
tcp/443
The following Cisco firewall is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible since multiple CVEs allow remote attackers to DoS or achieve RCE (Remote code execution) on the firewall. Those vulnerabilities are currently used in ransomware campaign and could damage your network.
Reference:
Severity: critical
Fingerprint: eea4a14a4ef6fd47577723470958170ab680f37c5af1ec5704673786b009390d
Found CISCO RV34X web frontend Frimware build 2019-4-4 Version: 1.0.03.15 Affected by cve-2022-20699 Affected by cve-2022-20701 Affected by cve-2022-20707 Affected by cve-2022-20708 Affected by cve-2022-20709 Affected by cve-2022-20710 Affected by cve-2022-20711 Affected by cve-2022-20712 Affected by cve-2022-20749
Open service 117.247.80.106:443
2024-09-11 04:19
HTTP/1.1 301 Moved Permanently Server: nginx Date: Wed, 11 Sep 2024 04:20:07 GMT Content-Type: text/html Content-Length: 178 Connection: close Location: ./login.html Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; connect-src 'self' ws: wss:; style-src 'self' 'unsafe-inline'; font-src 'self'; child-src 'self'; object-src 'none' X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body bgcolor="white"> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Open service 117.247.80.106:80
2024-09-10 18:23
HTTP/1.1 200 OK Vary: Accept-Encoding X-Frame-Options: SAMEORIGIN Content-Type: text/html X-Content-Type-Options: nosniff Date: Tue, 10 Sep 2024 23:53:26 GMT ETag: 1723665965 Content-Length: 481 X-XSS-Protection: 1; mode=block Last-Modified: Wed, 29 Dec 2021 02:42:42 GMT Connection: close Accept-Ranges: bytes <!doctype html> <html> <head> <title></title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge" > <meta http-equiv="Pragma" content="no-cache" /> <meta http-equiv="Cache-Control" content="no-cache, must-revalidate" /> <meta http-equiv="Expires" content="0" /> </head> <body> </body> <script> window.location.href = "./doc/page/login.asp?_" + (new Date()).getTime(); </script> </html>