Apache
tcp/80
Asterisk 13.38.3-vici
tcp/8089
The following CentOS Web Panel is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible since a vulnerability allow remote attackers to achieve RCE (Remote code execution) on the service. Those vulnerabilities are currently used in ransomware campaign and could damage your network.
Reference:
Severity: critical
Fingerprint: b200c4085dcca515084ebea24b907d604b907d604b907d604b907d604b907d60
Found outdated CentOS Web Panel vulnerable to RCE Found CVE-2022-44877
Open service 51.159.23.14:8089
2024-12-17 19:49
HTTP/1.1 404 Not Found Server: Asterisk/13.38.3-vici Date: Tue, 17 Dec 2024 19:49:47 GMT Connection: close Cache-Control: no-cache, no-store Content-type: text/html Content-Length: 253 Page title: 404 Not Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL was not found on this server.</p> <hr /> <address>Asterisk/13.38.3-vici</address> </body></html>
Open service 51.159.23.14:80
2024-12-17 19:36
HTTP/1.1 200 OK Date: Tue, 17 Dec 2024 19:36:55 GMT Server: Apache Last-Modified: Thu, 12 Sep 2024 06:08:03 GMT ETag: "64-621e5edf859c7" Accept-Ranges: bytes Content-Length: 100 Vary: Accept-Encoding Connection: close Content-Type: text/html <META HTTP-EQUIV=REFRESH CONTENT="1; URL=/vicidial/welcome.php"> Please Hold while I redirect you!