LeakIX - Host 15.204.249.48

Host 15.204.249.48

United States

OVH SAS

WSO2 product looks outdated
The following WSO2 product is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible since a vulnerability allow remote attackers to achieve RCE (Remote code execution) on the service. Those vulnerabilities are currently used in ransomware campaign and could damage your network.

Reference:

https://www.cvedetails.com/cve/CVE-2022-29464
IP: 15.204.249.48
Port: 9443
URL: https://15.204.249.48:9443

First seen 2024-09-11 09:07
Last seen 2024-12-22 00:54
Open for 101 days
- Severity: critical
  Fingerprint: 0ac2efb9e7a4e4a89a803d6200fae19000fae19000fae19000fae19000fae190
```
Found WSO2 product:
Vulnerable to CVE-2022-29464
```
  Found on 2024-12-22 00:54
Create report
SSH is potenitally vulnerable

WARNING: This plugin will generate false positive and is purely informative:

regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems (CVE-2024-6387)

IP: 15.204.249.48
Port: 22

First seen 2024-09-10 04:25
Last seen 2024-12-21 22:57
Open for 102 days
- Severity: info
  Fingerprint: 3f43e0ebb5dce37ab8b59eb50d52828c64fb433164fb433164fb433164fb4331
```
Found potentially vulnerable SSH version:
SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.4
WARNING, RISK IS ESTIMATED FALSE POSITIVE ARE LIKELY
```
  Found on 2024-12-21 22:57
Create report

2024-12-22 00:54

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=8C9697E85C055967C3ECE0480B6254F3; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Sun, 22 Dec 2024 00:54:13 GMT
Connection: close
Server: WSO2 Carbon Server

Found 10 hours ago by HttpPlugin

Create report

Open service 15.204.249.48:22

2024-12-21 22:57
Found 12 hours ago by SSHOpenPlugin
Create report

Open service 15.204.249.48:9443

2024-12-20 00:00

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=C8E76946F78FE6F64EC8F83B18B7239E; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Fri, 20 Dec 2024 00:01:04 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2 days ago by HttpPlugin

Create report

Open service 15.204.249.48:22

2024-12-19 22:06
Found 3 days ago by SSHOpenPlugin
Create report
Open service 15.204.249.48:22

2024-12-18 00:26
Found 2024-12-18 by SSHOpenPlugin
Create report

Open service 15.204.249.48:9443

2024-12-17 21:59

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=8910D86EAA381C0A1E24FE91988605CE; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Tue, 17 Dec 2024 21:59:18 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-17 by HttpPlugin

Create report

Open service 15.204.249.48:22

2024-12-15 22:09
Found 2024-12-15 by SSHOpenPlugin
Create report

Open service 15.204.249.48:9443

2024-12-15 21:49

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=29A88AA134AFE2E79DBC6826E9D48568; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Sun, 15 Dec 2024 21:49:55 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-15 by HttpPlugin

Create report

Open service 15.204.249.48:22

2024-12-13 22:06
Found 2024-12-13 by SSHOpenPlugin
Create report

Open service 15.204.249.48:9443

2024-12-13 21:54

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=48E35A0EF5AA7CB58D08545E9CEF26B6; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Fri, 13 Dec 2024 21:54:21 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-13 by HttpPlugin

Create report

Open service 15.204.249.48:22

2024-12-12 00:30
Found 2024-12-12 by SSHOpenPlugin
Create report

Open service 15.204.249.48:9443

2024-12-11 23:47

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=434D546D0C47532B0DF0E672773146F3; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Wed, 11 Dec 2024 23:47:15 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-11 by HttpPlugin

Create report

Open service 15.204.249.48:9443

2024-12-02 01:19

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=0785DD081666C3FFF91A6389AB2F05A6; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Mon, 02 Dec 2024 01:19:49 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-02 by HttpPlugin

Create report

Open service 15.204.249.48:22

2024-12-01 23:51
Found 2024-12-01 by SSHOpenPlugin
Create report

Open service 15.204.249.48:9443

2024-11-30 00:33

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=12EF2EFBD63D8DFE6A991665B240A682; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Sat, 30 Nov 2024 00:33:44 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-11-30 by HttpPlugin

Create report

Open service 15.204.249.48:22

2024-11-29 23:53
Found 2024-11-29 by SSHOpenPlugin
Create report

Open service 15.204.249.48:9443

2024-11-28 00:26

HTTP/1.1 302 Found
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=090A61B4EB518D1222CD46BCA3A5B989; Path=/; Secure; HttpOnly
Location: https://mdm.ncdc.gov.ng:9443/devicemgt/
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Thu, 28 Nov 2024 00:26:54 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-11-28 by HttpPlugin

Create report

Open service 15.204.249.48:22

2024-11-27 22:58
Found 2024-11-27 by SSHOpenPlugin
Create report

mdm.ncdc.gov.ng

Fingerprint:

18397036d7e1297da8091937c07ef5c03a24af589be30d3b82fc50012ed75b06

CN:

mdm.ncdc.gov.ng

Key:

RSA-2048

Issuer:

R11

Not before:

2024-09-02 22:40

Not after:

2024-12-01 22:40

Domain summary

No record

Host 15.204.249.48

United States

WSO2 product looks outdated

SSH is potenitally vulnerable

mdm.ncdc.gov.ng

Domain summary