182.162.141.125
{
"scan_id": 1767346972,
"ip": "182.162.141.125",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.162.128.0/17",
"postal_code": "",
"coordinates": {
"latitude": "37.5112",
"longitude": "126.9741"
},
"geo_point": "37.5112, 126.9741",
"locale_code": "en",
"continent": "Asia",
"country_code": "KR",
"country_name": "South Korea",
"city": ""
},
"location_updated_at": "2026-01-01T16:44:59Z",
"asn": {
"number": "AS3786",
"organization": "LG DACOM Corporation",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.162.0.0/16",
"organization": "LG DACOM KIDC",
"descr": "LG DACOM KIDC",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T19:03:53Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2026-01-01T16:44:59Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2026-01-01T23:56:07Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2026-01-01T16:44:59Z"
}
],
"services": [
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"component": [
"Apache HTTP Server"
],
"headers": {
"content_length": [
"0"
],
"content_type": [
"text/plain; charset=UTF-8"
],
"date": [
"Sat, 03 Jan 2026 19:05:55 GMT"
],
"server": [
"Apache"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.162.141.125",
"path": "",
"scheme": "https"
}
},
"status_code": 404
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://secure.globalsign.com/cacert/gsgccr6alphasslca2025.crt"
],
"ocsp_urls": [
"http://ocsp.globalsign.com/gsgccr6alphasslca2025"
]
},
"authority_key_id": "c5b4938f6f2bdc1e48bfb7103085ced1b2bb482d",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
},
{
"cps": [
"https://www.globalsign.com/repository/"
],
"id": "1.3.6.1.4.1.4146.10.1.3"
}
],
"crl_distribution_points": [
"http://crl.globalsign.com/gsgccr6alphasslca2025.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 94:4E:43:87:FA:EC:C1:EF:81:F3:19:24:26:A8:18:65:\n 01:C7:D3:5F:38:02:01:3F:72:67:7D:55:37:2E:19:D8\n Timestamp : Jun 25 06:40:53.474 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:44:02:20:34:2F:4A:AB:F0:92:FF:94:62:BB:EF:6C:\n BB:F4:9F:67:9B:3F:5A:A8:33:F6:6D:55:99:87:F6:CE:\n 0A:23:8B:DC:02:20:56:3F:64:E4:CB:11:0B:03:EE:84:\n 17:8B:9B:2F:47:B6:48:6B:4E:4E:5C:10:22:A9:A1:ED:\n 4B:C2:EA:03:0D:98\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Jun 25 06:40:53.488 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:DF:AA:CD:69:6C:C1:B8:07:03:93:A4:\n CB:13:AE:96:CA:9D:45:16:20:C7:0F:1D:F4:01:CA:E1:\n E1:AB:31:5D:68:02:20:27:4A:AF:DC:3F:0C:49:C0:5D:\n A4:1E:24:BE:1D:17:26:68:44:72:F7:4C:19:86:91:6D:\n 13:D4:8D:BB:8A:F4:DF\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : C2:31:7E:57:45:19:A3:45:EE:7F:38:DE:B2:90:41:EB:\n C7:C2:21:5A:22:BF:7F:D5:B5:AD:76:9A:D9:0E:52:CD\n Timestamp : Jun 25 06:40:53.463 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:20:47:DC:EE:AC:05:33:5C:66:23:D5:D5:28:\n 87:68:A4:B7:A2:AB:5B:FF:C2:5E:3D:41:BD:8C:2B:AD:\n 1E:A5:64:40:02:21:00:A5:BB:37:02:53:64:62:A9:DC:\n 28:BD:3D:96:6B:33:CD:85:B3:61:8B:81:EA:A5:15:D3:\n 66:0A:46:1A:9C:D3:9B",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"www.spcculinary.co.kr",
"spcculinary.co.kr"
]
},
"subject_key_id": "453fc7150c2e625a15d4ea47a659f85946b90606"
},
"fingerprint_md5": "C813024E6BF066D9547B3236CA189451",
"fingerprint_sha1": "4A2B011223FBB48AD801ADBA8C76FB5AD08FCDFD",
"fingerprint_sha256": "16430D827CD4C93879826BA9297B2B342FD94183E954CBCC48A3F66E5ED9F22E",
"issuer": {
"common_name": [
"GlobalSign GCC R6 AlphaSSL CA 2025"
],
"country": [
"BE"
],
"organization": [
"GlobalSign nv-sa"
]
},
"issuer_dn": "/C=BE/O=GlobalSign nv-sa/CN=GlobalSign GCC R6 AlphaSSL CA 2025",
"jarm": "2ad2ad16d2ad2ad0002ad2ad2ad2ad487dfc3734968073f786f66dcf4de1b2",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2026-01-09T19:21:31",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"next_update": "2026-01-07T19:21:45",
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "8624691638569296092088865894",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "944e4387faecc1ef81f3192426a8186501c7d35f3802013f72677d55372e19d8",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "30440220342f4aabf092ff9462bbef6cbbf49f679b3f5aa833f66d559987f6ce0a238bdc0220563f64e4cb110b03ee84178b9b2f47b6486b4e4e5c1022a9a1ed4bc2ea030d98"
},
"timestamp": "2025-06-25T06:40:53.474000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100dfaacd696cc1b8070393a4cb13ae96ca9d451620c70f1df401cae1e1ab315d680220274aafdc3f0c49c05da41e24be1d1726684472f74c1986916d13d48dbb8af4df"
},
"timestamp": "2025-06-25T06:40:53.488000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "c2317e574519a345ee7f38deb29041ebc7c2215a22bf7fd5b5ad769ad90e52cd",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022047dceeac05335c6623d5d5288768a4b7a2ab5bffc25e3d41bd8c2bad1ea56440022100a5bb3702536462a9dc28bd3d966b33cd85b3618b81eaa515d3660a461a9cd39b"
},
"timestamp": "2025-06-25T06:40:53.463000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"www.spcculinary.co.kr"
]
},
"subject_alt_name": {
"dns_names": [
"www.spcculinary.co.kr",
"spcculinary.co.kr"
],
"extended_dns_names": [
{
"domain": "spcculinary",
"fld": "spcculinary.co.kr",
"subdomain": "www",
"tld": "co.kr"
},
{
"domain": "spcculinary",
"fld": "spcculinary.co.kr",
"tld": "co.kr"
}
]
},
"subject_dn": "/CN=www.spcculinary.co.kr",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "3ae138b50f32ca3f1ecafcf21bef65160018fb534999484605f75d90a128f728",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "6028c3fd47c6b623a2a53d39912d0b0aae827e15acdf1e8093fade18f564c659",
"tbs_noct_fingerprint": "09cab989e55e7cf0f470f81ae0e37ba5072452caec89d722ea755a5565e5af66",
"validation_level": "DV",
"validity": {
"length_seconds": 34300800,
"not_after": "2026-07-27T06:40:47",
"not_before": "2025-06-25T06:40:48"
},
"version": 2
},
"fingerprint_sha256": "16430D827CD4C93879826BA9297B2B342FD94183E954CBCC48A3F66E5ED9F22E",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "https://182.162.141.125/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-03T19:21:55.463Z"
},
{
"port": 8080,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"modules": {
"http": {
"headers": {
"content_length": [
"0"
],
"date": [
"Sun, 04 Jan 2026 17:50:27 GMT"
],
"server": [
""
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.162.141.125:8080",
"path": "",
"scheme": "http"
}
},
"status_code": 404
}
},
"url": "http://182.162.141.125:8080/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-04T17:23:10.055Z"
}
],
"services_hash": "7409fe2295f2f37910a1279dc462b2b86632a15731445f7d8706b317a9f2d004",
"last_updated_at": "2026-01-04T17:23:10.055Z",
"banner": [
"http",
"tls"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"443/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"443/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"443/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"443/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
}
}
}