104.199.38.123
{
"scan_id": 1756685179,
"ip": "104.199.38.123",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "104.199.0.0/18",
"postal_code": "1000",
"coordinates": {
"latitude": "50.8534",
"longitude": "4.347"
},
"geo_point": "50.8534, 4.347",
"locale_code": "en",
"continent": "Europe",
"country_code": "BE",
"country_name": "Belgium",
"city": "Brussels"
},
"location_updated_at": "2025-09-01T08:39:06Z",
"asn": {
"number": "AS396982",
"organization": "GOOGLE-CLOUD-PLATFORM",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "104.196.0.0/14",
"organization": "Google LLC",
"descr": "Google LLC",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2025-02-04T15:05:02Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-09-01T08:39:06Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-09-01T10:46:43Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-09-01T08:39:06Z"
}
],
"hostnames": [
{
"name": "123.38.199.104.bc.googleusercontent.com",
"last_updated_at": "2025-09-02T16:03:53.521106951Z"
}
],
"services": [
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<!DOCTYPE html>\n<html>\n<head>\n \n \n\n <meta charset=\"utf-8\"/>\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\"/>\n <meta HTTP-EQUIV='Pragma' CONTENT='no-cache'>\n <meta HTTP-EQUIV='Cache-Control' CONTENT='no-cache'>\n <title>Logon - SINEMA Remote Connect</title>\n\n <link rel=\"stylesheet\" href=\"/static/css/normalize.css? 1756827070\"/>\n <link rel=\"stylesheet\" href=\"/static/css/layout.css? 1756827070\"/>\n <link rel=\"stylesheet\" href=\"/static/css/login.css? 1756827070\"/>\n <link rel=\"stylesheet\" href=\"/static/css/font-awesome.css? 1756827070\"/>\n <link rel=\"stylesheet\" href=\"/static/css/siemens-sans.css\"/>\n\n <script type=\"text/javascript\" src=\"/static/js/jquery.min.js\"></script>\n <script type=\"text/javascript\" src=\"/static/js/sinemarc.js\"></script>\n\n \n \n\n</head>\n<body>\n\n\n\n<div class=\"header-wrapper\">\n <div class=\"top-header\">\n <img src=\"/static/img/logo.gif\" alt=\"SIEMENS\" class=\"logo\"/>\n <div class=\"product-name\">SINEMA Remote Connect</div>\n </div>\n <div class=\"sub-header\">\n <div class=\"clock\">1756827070#en#0#</div>\n <div class=\"subheader-right\">\n \n <div class=\"language-selector\">\n <div active-language>\n English\n <span class=\"fa fa-chevron-down\"></span>\n </div>\n <div class=\"language-select-menu menu\">\n <form action=\"/i18n/setlang/\" method=\"post\">\n <input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"4GaicMU4iS35vDdKPd7c8X1PvK3NOsXHrkSCldULop2cZs4zAVIXC522wvqMkwjA\">\n \n <button type=\"submit\" name=\"language\" value=\"de\"\n class=\"\">\n German\n \n </button>\n \n <button type=\"submit\" name=\"language\" value=\"en\"\n class=\"selected\">\n English\n <span class=\"correct-icon\"></span>\n </button>\n \n </form>\n </div>\n </div>\n \n <div class=\"header-divider\"></div>\n <div class=\"online-help\">\n <a href=\"#\" onClick=\"openHelpWindow('/static/help/en/login_help.htm');\">\n <i class=\"online-help-icon\"></i>\n </a>\n </div>\n </div>\n\n </div>\n</div>\n\n\n<div class=\"content\">\n <div class=\"login-wrapper\">\n\n <div class=\"login-form-wrapper\">\n\n <div id=\"banner_text\">\n \n Welcome to SINEMA Remote Connect\n \n\n </div>\n\n <div class=\"login-tabs\">\n <ul>\n <li>\n <a id=\"localTab\" onclick=\"openLoginForm(event)\">Local</a>\n </li>\n \n <li>\n <a class=\"tablinks\" disabled>UMC</a>\n </li>\n \n </ul>\n\n </div>\n\n \n\n \n\n \n\n <div id=\"local\" class=\"tabcontent\" style=\"display: block;\">\n <form action=\"/wbm/login/\" method=\"POST\" class=\"login-form\">\n <input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"4GaicMU4iS35vDdKPd7c8X1PvK3NOsXHrkSCldULop2cZs4zAVIXC522wvqMkwjA\">\n <input id=\"id_utcoffset\" name=\"utcoffset\" type=\"hidden\" value=\"0\"/>\n\n <div class=\"form-row\">\n <label for=\"id_username\">User name:</label>\n <input type=\"text\" name=\"username\" autofocus required id=\"id_username\">\n </div>\n\n <div class=\"form-row\">\n <label for=\"id_password\">Password:</label>\n <input id=\"id_password\" name=\"password\" type=\"password\" autocomplete=\"off\"/>\n </div>\n\n \n\n <div class=\"form-row\">\n <label> </label>\n <button id=\"id_submit\" type=\"submit\"><span class=\"button\">Log on</span></button>\n </div>\n\n </form>\n </div>\n <div id=\"umc\" class=\"tabcontent\">\n \n </div>\n </div>\n\n <div class=\"pki\">\n \n <img src=\"/static/img/chip-icon.png\">\n \n <p> PKI Login </p>\n </div>\n </div>\n</div>\n\n<script type=\"text/javascript\">\n var d = new Date();\n $(\"#id_utcoffset\").prop('value', d.getTimezoneOffset() * -1);\n\n var usernameInput = $(\"#id_username\");\n usernameInput.focus().val(usernameInput.val());\n</script>\n\n<script type=\"text/javascript\">\n var isUmcFailed = \"None\" === \"None\" ? false : true;\n var iUMCActive = \"False\" === \"True\" ? true : false;\n $(document).ready(function () {\n if (isUmcFailed) {\n if (!iUMCActive) {\n toggleLoginForm(\"localTab\");\n } else {\n toggleLoginForm(\"umcTab\");\n }\n } else {\n toggleLoginForm(\"localTab\");\n }\n });\n\n function toggleLoginForm(formName) {\n if (formName === \"localTab\") {\n $('#umcTab').removeClass(\"active\");\n $('#localTab').addClass(\"active\");\n $(\"#umc\").css(\"display\", \"none\");\n $(\"#local\").css(\"display\", \"block\");\n } else {\n $('#localTab').removeClass(\"active\");\n $('#umcTab').addClass(\"active\");\n $(\"#local\").css(\"display\", \"none\");\n $(\"#umc\").css(\"display\", \"block\");\n }\n }\n\n function openLoginForm(e) {\n toggleLoginForm(e.currentTarget.id);\n }\n</script>\n</body>\n</html>\n",
"body_murmur": -1278048915,
"body_sha256": "a9111911caa3dc34ac2e9d9928a60a0874f503f34aa52ba9e4bb74fb7a99c83b",
"component": [
"Apache HTTP Server",
"Django",
"Python"
],
"content_length": 5906,
"headers": {
"cache_control": [
"no-cache, no-store, must-revalidate, private"
],
"content_language": [
"en"
],
"content_length": [
"5906"
],
"content_type": [
"text/html; charset=utf-8"
],
"date": [
"Tue, 02 Sep 2025 15:31:10 GMT"
],
"expires": [
"Tue, 02 Sep 2025 15:31:10 GMT"
],
"pragma": [
"no-cache"
],
"server": [
"Apache"
],
"set_cookie": [
"csrftoken=gPoMOTg6HGhiYso14XQWfisRvTicDV37Dt66XkgNNdgpshfQPFrHJqt4wEFb9Zp0; expires=Tue, 01 Sep 2026 15:31:10 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure",
"sessionid=lnrrmri3u0h530v2q4p58k1ipkk4l1v0; HttpOnly; Path=/; SameSite=Lax; Secure"
],
"strict_transport_security": [
"max-age=15768000"
],
"vary": [
"Cookie,Accept-Language"
],
"x_content_type_options": [
"nosniff"
],
"x_frame_options": [
"sameorigin"
],
"x_xss_protection": [
"1; mode=block"
]
},
"protocol": "HTTP/1.1",
"redirects": [
{
"headers": {
"cache_control": [
"no-cache, no-store, must-revalidate, private"
],
"content_language": [
"en"
],
"content_length": [
"0"
],
"content_type": [
"text/html; charset=utf-8"
],
"date": [
"Tue, 02 Sep 2025 15:31:10 GMT"
],
"location": [
"/wbm/login/"
],
"pragma": [
"no-cache"
],
"server": [
"Apache"
],
"strict_transport_security": [
"max-age=15768000"
],
"vary": [
"Accept-Language,Cookie"
],
"x_content_type_options": [
"nosniff"
],
"x_frame_options": [
"sameorigin"
],
"x_xss_protection": [
"1; mode=block"
]
},
"location": "/wbm/login/",
"protocol": "HTTP/1.1",
"status_code": 302,
"status_line": "302 Found"
}
],
"request": {
"headers": {
"accept": [
"*/*"
],
"referer": [
"https://104.199.38.123"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "104.199.38.123",
"path": "/wbm/login/",
"scheme": "https"
}
},
"status_code": 200,
"title": "Logon - SINEMA Remote Connect"
},
"tls": {
"certificate": {
"extensions": {
"basic_constraints": {
"is_ca": true
},
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": false,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": true,
"key_encipherment": true,
"non_repudiation": true
},
"ns_cert_type": {
"ssl_server": true
},
"ns_comment": "xca certificate",
"subject_alt_name": {
"dns_names": [
"8.8.8.8"
],
"ip_address": [
"104.199.38.123"
]
},
"subject_key_id": "7dcb8a5f1ad7d28596fbf11adb7b464aa188bdeb"
},
"fingerprint_md5": "71DC56C19BBB916484992925CB03866A",
"fingerprint_sha1": "E5F1EA64B7C6B0993908C6A3A0341F22CFB1F5B2",
"fingerprint_sha256": "2C42C1C567840D8705A7BD0C7EE4BDB2139A4BC45B22EE47D9631D1169A8C7CE",
"issuer": {
"common_name": [
"SINEMA_CA_Intermediate"
],
"country": [
"ES"
],
"locality": [
"Alcobendas"
],
"organization": [
"Energy Storage Solutions S.L"
],
"organizational_unit": [
"SCADA"
],
"province": [
"Madrid"
]
},
"issuer_dn": "/C=ES/ST=Madrid/L=Alcobendas/O=Energy Storage Solutions S.L/OU=SCADA/CN=SINEMA_CA_Intermediate",
"jarm": "16d16d16d14d16d00016d16d16d16df572ac71996ec56855731b41418b2c77",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "1499716658285164207",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "MDhkOGQ2MTAzZjRiNTAyOGE1ODQ0YmRiYWRkYmNkOGFkOGI2NzcxZGRlZDc2ZjA2MWI4OGM5N2JiMzMyM2FiZmM2NGM3MGE2ODU2NDExZGZjN2U1ZjgwNmFmOGViYzc2ODYzMDg0YTQ1MjVmOTFkMzY0MzVkYzRiYmUzZjY4MzQ1MDMwZjIzNzQ3ZjZkYjI5YmE2OGRiOWU5ZGRmYzIzYzQyMTY5ZGJmYWZlYWNmZTg0YjNlOWQ3OTM0NDRiNjQwZmYxNjQzNGI4OTFmNzQ3YzY3Zjc5M2E2ZjM1MWQ4MzY0ZWY3NjQzOTYxNGVmYTljZTUzZGQ5MmNiNGY2NGRhZTEyMjY5MzlhZmRlODNjNmU4YzA2YWVkNjYzNzQ3OTQwM2U3YWQzYjZkYmM0YWRkNDdhZDE4OTlkZjJhZjI0NjdiNjdmYzRhMTllN2UzZjBlZWNkODAzMDVhNmFmMGMyODUzZDlmZDZmMmJkMGMwNDY2OTkzYzEzNzMwMjJhN2QzZGE2NjI4ZDg3YzhhZjYyZmE1N2ZmNzkwZWVmNGMxODFkMDQ4Y2YwNTlhNmFkM2I5NTRjMjVlYmZmZWZhMzVmMTIyZTJlNTkxNDUwOWNkZDZlMGZhYzUzZGFmYTliYjE3YTc5ZmQ2YmFiNmI3ODNmNzUwOTcwZjYxN2M1MTRlN2RjNGQ2ODc3NjBhM2QwMTJhMGRlZGI2NjRlN2ZkYWYzMGVkYjY1NGUyMGQxZjRmMDA0ODY2MDc5ZGI2ZjRiYWRjODZlNGYwMTFmOTczZDY1OTczNGY0OWUzNjFkMTExOWEzZWYxNmJkNzQ1ODZhOGNiNDkyZTMzNjE2Y2ZhMGVmOGE0NzlhNDViMjNkZWMzZjRmMzMxYTE5MGJhZTY0YThjM2NmOTA0YjM2ZjFmZGM4N2Y2ZmVmMGJkMzM4YmQwMGFmM2FmZDhkNzQxMDMzMWUyY2M2ODI0YWU4ZTlmMWIwN2U1ZjE5MGIzMjM3NDM2ZjZjMTE2YzIwOTRkNDQxYjI1NDg5NmUxYWVhOTExNzE0NjNjODBkNWVmNjVhYmNkNWY0ZWY2OTJmZDZiYWQ2YTJmOTg0NmViMmVjODUzNmJmODllZDRhMzA2MzVlY2E2MjNkMTU3NzcxNDFjMGMwZGE4Mzk5YzNiYTZlYWJkMWU3Y2Q1NDI3ZjdmZjNlZjk4MmIyZGZlNmNmYzk1YTlmNmY3MmU0NzZhZTUyMjFlNmYxYmNlMGNlNGE5ZDU4ZmQ3MDg0Zjg5NzdhMjY0OGM2MTk5OGUzMTE2ODBhYzM0M2ZiODYxZDBiNzY2Y2Q1MzZiYjljNTNhODNhODYzYTNhZWNlZDhmN2M3MGIzMTg4ZGY5Mw=="
},
"subject": {
"common_name": [
"SRC-PROD"
],
"country": [
"ES"
],
"locality": [
"Alcobendas"
],
"organization": [
"E22"
],
"organizational_unit": [
"GCP"
],
"province": [
"Madrid"
]
},
"subject_alt_name": {
"dns_names": [
"SRC-PROD",
"8.8.8.8"
],
"extended_dns_names": []
},
"subject_dn": "/C=ES/ST=Madrid/L=Alcobendas/O=E22/OU=GCP/CN=SRC-PROD",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "e216be0f32ac15af9facbd499fbdc8dabd294a3d3ef4532a95d0678f7963c413",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 4096,
"modulus": "MHhjNjNiNDFhNzYxNjk2ZTIwYTk3NzI2YjYzYmNlZjgzNzg2MjNkZWQ2MDA1NzVmZmMyNTY5NzU2NmY5MzA5Njc1NGVlNGM3OGNiZjJhMDRlMjc3MjdmYWZiMTAwZTVjMTc3ZmNhMGI2MTQ4NTY2ZmUxNDBiY2FiYzgyNDhjNmRhNWZmMmI5MTY0ODU1MTYxZGMxYmJlN2JkZGVhM2FlMzViYmY3MTJjZGI4ODEzZjM5YmFjM2ExYzJkYTQ5ZTRmYWI0N2FlZjVjYzNhNjJjNTQ3MDliNmViMzY0ZmFjZjk3ZDRiYzA4MzlhN2JhYTkwOWUzYTg5NDFiN2JlMTZlZTgyOTE4NWMwOGQyZTgxMmQ1MWFjMTg5NDBlMzZkMDA4YjQ3N2UwMzIyM2E5ZmVhMjVhOTQ1ODI3YmEzMGIxYmVkMGFmMGIzMTdlZWRkMGU1MmQ1MTY4NjdjYmE4YmM2ZDNhZDljNTFhY2IwMzk5MjIxZTVjY2MzMTVhMDk2Y2NiOWViNjNjZDJlZTE1YWE0NjRjYWNjMjk1MTBiYzYyMTVlYzFhMTY3YmE3OGI5NzZiMDlkYzEzNjE4ZTAwNTU4YWUzNDA3OGY0MTQwMGFkNTJhZjg5YmEwMDI4ZTEyMGQ3NTk1Mzg1NGY4M2Q5NDRlNTcyODI0NzM5ODg4MjVjOTA0ZWEyZTQxYzMxOTdkODk4Y2FmODY1ZjNmZGNjNTY4MjE5NjVlZjExMWFkNWYxMzcyMzgyYjBhMTJkNGMwZjA5MWE5MDEwMmY0ZTIyOTFlYWM1OGFkZGQxYjc5ZGUyODU1NTQxOGZlNWMxZTQxNWQ1MTIzOTU4MDVlMTY5NzQ1NDZmYzg0NDQwNGFjZDU2ZmEwYTVmMTA1MjNlNjdjNWY3MGFiMWVmZTVhMmJlZjg0MGExYjRmNDZmMWJjMjcxZmExNDI3YWEyMWE1YmMwMTk4MGU4ZmQwNzk4OWUwOTc2YzM5OThmMzQ5N2E4N2EzOTlkYjg1M2Q5NjIyZGI5ZDFjZWE0YjY4NjQ1OWJiNTBlNGViOWJjODRkYmU4YzA0MGExOTU4ZDhhNzljMzE5MWJhNmU3NTMwY2Y4OTljNGU3ZjY1ZGVhY2Y3MjU5ZGY0NzA4MTUyNWQyMzk4NjY1ZWMwM2VmMWFlZjRlZTUwOTlkNzQxYjY0N2Q3ZWJmNDBmNDEwNDM4NmJlMTQyZjJjNTI0ZWExYzI0NDAzNzA5N2U0OWI5YzkxZDU0MGQwMzY0ZmQxN2JlN2VlMDgxYzliZmYwODQyNmM0MjcxOTNkNTE0NGI1YzM2ODk2NzJmYzE2MDM3MjcyZDhhODc1YmM2ODlmODNiY2ExYmQwZmU1NTE3MDQz"
}
},
"tbs_fingerprint": "7476242044469d49963b5c4721c07dc4ecb8c5d841b910e4e047d4515273279b",
"validation_level": "OV",
"validity": {
"length_seconds": 788918400,
"not_after": "2047-04-05T18:52:00",
"not_before": "2022-04-05T18:52:00"
},
"version": 2
},
"fingerprint_sha256": "2C42C1C567840D8705A7BD0C7EE4BDB2139A4BC45B22EE47D9631D1169A8C7CE",
"precert": false,
"raw": "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",
"tags": [
"ov",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "https://104.199.38.123/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-09-02T15:32:17.609Z"
}
],
"services_hash": "d6b7c9b2003613c7e9d38e4d098f2aeda7c32ae5a6f68c5d1adf097d6f277fb5",
"last_updated_at": "2025-09-02T15:32:17.609Z",
"banner": [
"http",
"tls"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"443/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"443/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"443/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"443/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
}
}
}