175.194.253.33
{
"scan_id": 1767781098,
"ip": "175.194.253.33",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "175.194.252.0/22",
"postal_code": "116",
"coordinates": {
"latitude": "37.7413",
"longitude": "127.0361"
},
"geo_point": "37.7413, 127.0361",
"locale_code": "en",
"continent": "Asia",
"country_code": "KR",
"country_name": "South Korea",
"city": "Uijeongbu-si"
},
"location_updated_at": "2026-01-06T12:43:20Z",
"asn": {
"number": "AS4766",
"organization": "Korea Telecom",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "175.192.0.0/12",
"organization": "Korea Telecom",
"descr": "Korea Telecom",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-10T12:43:11Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2026-01-06T12:43:20Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2026-01-06T13:17:54Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2026-01-06T12:43:20Z"
}
],
"services": [
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "1.4.61",
"product": "lighttpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:lighttpd:lighttpd:1.4.61",
"part": "a",
"vendor": "lighttpd",
"product": "lighttpd",
"version": "1\\.4\\.61",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<html>\r\n<head>\r\n<meta http-equiv=\"content-type\" content=\"text/html; charset=iso8859-1\">\r\n<title>main page</title>\r\n<script language=\"javascript\">\r\n\r\nfunction redirect() {\r\n\tlocation.href = \"/cgi-bin/login.cgi\";\r\n}\r\n\r\n</script>\r\n</head>\r\n\r\n<body onload=\"redirect()\">\r\n</body>\r\n\r\n</html>\r\n\r\n",
"body_murmur": -1159873339,
"body_sha256": "5a5f6ed228b136ec6bf13c31f6da29fdba63394e5a74fb5706a6c263be639e43",
"component": [
"lighttpd:1.4.61"
],
"content_length": 289,
"headers": {
"accept_ranges": [
"bytes"
],
"content_length": [
"289"
],
"content_type": [
"text/html"
],
"date": [
"Wed, 07 Jan 2026 12:00:12 GMT"
],
"etag": [
"\"1485565239\""
],
"last_modified": [
"Mon, 13 Feb 2023 06:06:43 GMT"
],
"server": [
"lighttpd/1.4.61"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "175.194.253.33",
"path": "",
"scheme": "https"
}
},
"status_code": 200,
"title": "main page"
},
"tls": {
"certificate": {
"extensions": {
"basic_constraints": {
"is_ca": true
},
"key_usage": {
"certificate_sign": true,
"content_commitment": false,
"crl_sign": true,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": false,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": false
},
"ns_cert_type": {
"object_signingca": true,
"s/mimeca": true,
"sslca": true
},
"subject_alt_name": {
"dns_names": [
"",
""
],
"ip_address": [
"192.0.0.64"
]
},
"subject_key_id": "7fbd0c132ebf03173a912d98aa4e0e26a519a9d5"
},
"fingerprint_md5": "8DFE0379BC5362404954317F3580B446",
"fingerprint_sha1": "D27C26BC753F2D5282C35DC0B47EFF08CAB184C8",
"fingerprint_sha256": "4E61EF1AC6503C4D04B20B8665946079880742D79295B888569AC0384F3699B9",
"issuer": {
"common_name": [
"192.0.0.64"
]
},
"issuer_dn": "/CN=192.0.0.64",
"jarm": "29d29d15d29d29d00029d29d29d29d13044cd269f13656c17e0f2ae0718ccc",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "1",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"192.0.0.64"
]
},
"subject_alt_name": {
"dns_names": [
"192.0.0.64",
""
],
"extended_dns_names": []
},
"subject_dn": "/CN=192.0.0.64",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "5e15156f336ca50184de0067bbb883989389c1af55f2cb4d137a338b5fd2f2e3",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 4096,
"modulus": "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"
}
},
"tbs_fingerprint": "d941373d93ad716123878ad5acc2028b6f75ca0b43808541e193163f24ba6a0d",
"validation_level": "DV",
"validity": {
"length_seconds": 307584000,
"not_after": "2034-03-07T00:40:25",
"not_before": "2024-06-07T00:40:25"
},
"version": 2
},
"fingerprint_sha256": "4E61EF1AC6503C4D04B20B8665946079880742D79295B888569AC0384F3699B9",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted",
"self_signed",
"root"
]
}
},
"cve": [
{
"id": "CVE-2022-22707",
"score": 5.9,
"severity": "medium"
},
{
"id": "CVE-2022-41556",
"score": 7.5,
"severity": "high"
}
],
"url": "https://175.194.253.33/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-07T12:17:26.182Z"
}
],
"services_hash": "a620724985e50228d89599c3d5540d4c34a2d5bfb59315dea535541fc4fe815e",
"last_updated_at": "2026-01-07T12:17:26.182Z",
"banner": [
"http",
"tls"
],
"is_vuln": true,
"cveDetails": {
"CVE-2022-22707": {
"id": "CVE-2022-22707",
"references": [
"https://redmine.lighttpd.net/issues/3134",
"https://www.debian.org/security/2022/dsa-5040",
"https://redmine.lighttpd.net/issues/3134",
"https://www.debian.org/security/2022/dsa-5040"
],
"score": 5.9,
"services": [
"443/http"
],
"severity": "medium",
"summary": "In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-787"
},
"CVE-2022-41556": {
"id": "CVE-2022-41556",
"references": [
"https://git.lighttpd.net/lighttpd/lighttpd1.4/commit/b18de6f9264f914f7bf493abd3b6059343548e50",
"https://github.com/lighttpd/lighttpd1.4/compare/lighttpd-1.4.66...lighttpd-1.4.67",
"https://github.com/lighttpd/lighttpd1.4/pull/115",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OVOSBSCMLGCHH2Z74H64ZWVDFJFQTBC2/",
"https://security.gentoo.org/glsa/202210-12",
"https://git.lighttpd.net/lighttpd/lighttpd1.4/commit/b18de6f9264f914f7bf493abd3b6059343548e50",
"https://github.com/lighttpd/lighttpd1.4/compare/lighttpd-1.4.66...lighttpd-1.4.67",
"https://github.com/lighttpd/lighttpd1.4/pull/115",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OVOSBSCMLGCHH2Z74H64ZWVDFJFQTBC2/",
"https://security.gentoo.org/glsa/202210-12"
],
"score": 7.5,
"services": [
"443/http"
],
"severity": "high",
"summary": "A resource leak in gw_backend.c in lighttpd 1.4.56 through 1.4.66 could lead to a denial of service (connection-slot exhaustion) after a large amount of anomalous TCP behavior by clients. It is related to RDHUP mishandling in certain HTTP/1.1 chunked situations. Use of mod_fastcgi is, for example, affected. This is fixed in 1.4.67.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-401"
}
}
}