182.23.82.132
{
"scan_id": 1764431206,
"ip": "182.23.82.132",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.23.80.0/21",
"postal_code": "",
"coordinates": {
"latitude": "-6.175",
"longitude": "106.8286"
},
"geo_point": "-6.175, 106.8286",
"locale_code": "en",
"continent": "Asia",
"country_code": "ID",
"country_name": "Indonesia",
"city": ""
},
"location_updated_at": "2025-12-04T08:16:22Z",
"asn": {
"number": "AS4800",
"organization": "PT Aplikanusa Lintasarta",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.23.0.0/17",
"organization": "Route Object of PT Aplikanusa Lintasarta",
"descr": "Route Object of PT Aplikanusa Lintasarta,\nISP,\nMH Thamrin Kav 3,\nMenara Thamrin Bulding 12th Floor,\nJakarta 10250",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T11:26:54Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-12-04T08:16:22Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-12-04T08:34:48Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-12-04T08:16:22Z"
}
],
"services": [
{
"port": 22,
"protocol": "tcp",
"name": "ssh",
"version": "8.9p1 Ubuntu 3ubuntu0.13",
"product": "OpenSSH",
"extra_info": "Ubuntu Linux; protocol 2.0",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:openbsd:openssh:8.9p1",
"part": "a",
"vendor": "openbsd",
"product": "openssh",
"version": "8\\.9p1",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:linux:linux_kernel",
"part": "o",
"vendor": "linux",
"product": "linux_kernel",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ssh": {
"banner": "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.13",
"client_to_server_ciphers": [
"[email protected]",
"aes128-ctr",
"aes192-ctr",
"aes256-ctr",
"[email protected]",
"[email protected]"
],
"client_to_server_compression": [
"none",
"[email protected]"
],
"client_to_server_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"host_key_algorithms": [
"rsa-sha2-512",
"rsa-sha2-256",
"ecdsa-sha2-nistp256",
"ssh-ed25519"
],
"kex_algorithms": [
"curve25519-sha256",
"[email protected]",
"ecdh-sha2-nistp256",
"ecdh-sha2-nistp384",
"ecdh-sha2-nistp521",
"[email protected]",
"diffie-hellman-group-exchange-sha256",
"diffie-hellman-group16-sha512",
"diffie-hellman-group18-sha512",
"diffie-hellman-group14-sha256",
"[email protected]"
],
"key": {
"algorithm": "ecdsa-sha2-nistp256",
"fingerprint_sha256": "54f9f2fcc37c76012eec856bd55f4a7b5d0f5cd464c5ebf75a64741664b3247a",
"raw": "AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHVqEoqDBnjPQzh1OThVxEiE8O8HWUvQFOaljueYO4LXoyxw+IvnmtgMdM3PGl91HPvIjqV/C2YUD76Xr9WRfpw="
},
"server_to_client_ciphers": [
"[email protected]",
"aes128-ctr",
"aes192-ctr",
"aes256-ctr",
"[email protected]",
"[email protected]"
],
"server_to_client_compression": [
"none",
"[email protected]"
],
"server_to_client_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"software": "OpenSSH_8.9p1",
"version": "2.0"
}
},
"cve": [
{
"id": "CVE-2007-2768",
"score": 4.3,
"severity": "medium"
},
{
"id": "CVE-2008-3844",
"score": 9.3,
"severity": "high"
},
{
"id": "CVE-2023-28531",
"score": 9.8,
"severity": "critical"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-04T18:41:49.048Z"
},
{
"port": 25,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"modules": {
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/49.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 19 04:31:31.749 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:D4:DA:16:86:8A:A4:7A:2F:5C:\n 55:70:D7:B7:ED:0F:1A:EB:47:77:E7:D5:52:28:CE:08:\n D9:21:8F:4A:3C:02:20:10:B5:7F:34:A8:A7:41:7A:0C:\n 1E:A1:6C:90:CF:6E:21:B8:D4:A7:DC:87:01:B4:AD:38:\n 7D:AA:CC:62:CF:56:75\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:\n 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3\n Timestamp : Oct 19 04:31:31.737 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:46:02:21:00:C4:FF:E0:84:AF:C5:2C:E4:2D:A8:C5:\n 45:E9:1B:1E:7C:E5:B7:4F:43:9A:CA:49:33:C0:3B:1E:\n 10:3B:1C:46:4D:02:21:00:AE:BB:D0:59:FD:CC:4C:52:\n 1B:F4:53:61:D9:40:E7:8B:EA:E5:81:0A:41:D4:F8:C5:\n 8C:62:B5:88:CB:C6:13:0A",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"server.maroskab.go.id"
]
},
"subject_key_id": "e69d12cf7cdfdeeee994ce6add42a751590633f4"
},
"fingerprint_md5": "B19140F0EFD4DDC45CDFD36AD697AE81",
"fingerprint_sha1": "930E84B5E21A33538F85F688258EA247243C0F59",
"fingerprint_sha256": "B327C62C909495CF64C649367CB4195737F5891F47B4C1D27030D9D06ED6EAC6",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-06T10:26:34",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "532578985352222932061751916026546824756912",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "OWFkZDJhZTY1ZGU1YTFiN2UwODQ1MGMyOGI5N2IzNTU1YWNkMTQzY2VhZjY2YmU1ZDU3YzUyNTI5OWU4ZDdiYWFlOTE5MDRiNzAyYjAzOTRiZDczMzA2NzhhNzUwZGU3ZGFmNWFiZGM1ZDVmMjJiNDk2OTJmZjY3MWVmZTk2ZDQ3MjZlYTRhMjczN2U3ZTM3M2Q2MzVhNTIwZGEzYThkYTQ0NzMzZWZlZjIzNjdjYTI4MTU3ZWJjMjNiYmMyMDIzOTJkMjE1OWFkM2UzZGVjNTBlNzZkZmZiNjk0MzMzMDYzODk4NTEzNGZiMmRiMWQzOTdlY2RkMmRmZTEwZTNiNWU2MzRlOTgxMWI3NWE1ZmZkYzQ4M2I0OTc1NDEyOGY2NzYwZjY1YjUzZTdiYjllMDQxNmUwZjZmZWE2NTZjM2EzYTNhY2E1MWQ0OTgzYTgyOGZhYjEwMTAwM2ZlYzNjNTliZDZiMmRlZjk3NzZhMGZkNzQ1NzA1MGVjOWViNTc3MDVhZjAwYTJmZjkxNjM0YmE1NjM1YjBlYzAyZTQ2YmM3YjljYTE0NGUwODZmMGYyNGExZTk1M2Y1Y2Y2Y2RhNWVjM2MxZWRlNGZlNWUxYTg0YmNhOTFmODEyOGFkZGRkOTNjNGYwZTM5ZjU3ODk1YjAxNWZhODVkYjZhMmI4MGI="
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886dd4da16868aa47a2f5c5570d7b7ed0f1aeb4777e7d55228ce08d9218f4a3c022010b57f34a8a7417a0c1ea16c90cf6e21b8d4a7dc8701b4ad387daacc62cf5675"
},
"timestamp": "2025-10-19T04:31:31.749000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "499c9b69de1d7cecfc36decd8764a6b85baf0a878019d15552fbe9eb29ddf8c3",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3046022100c4ffe084afc52ce42da8c545e91b1e7ce5b74f439aca4933c03b1e103b1c464d022100aebbd059fdcc4c521bf45361d940e78beae5810a41d4f8c58c62b588cbc6130a"
},
"timestamp": "2025-10-19T04:31:31.737000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"server.maroskab.go.id"
]
},
"subject_alt_name": {
"dns_names": [
"server.maroskab.go.id"
],
"extended_dns_names": [
{
"domain": "maroskab",
"fld": "maroskab.go.id",
"subdomain": "server",
"tld": "go.id"
}
]
},
"subject_dn": "/CN=server.maroskab.go.id",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "f2491bb70285d6f92b915c0c8e1dfbba987b28abacbdbba313c7dfb2920b00c3",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "91f59c6efe5fe87c0b11054457975e37b34d27411c60403e48c98b4abea6951d",
"tbs_noct_fingerprint": "cbca526fd477e1a792c925a865e76c81fae35a03c78e5cdc712b8d3fe7f75b8c",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-17T03:33:00",
"not_before": "2025-10-19T03:33:01"
},
"version": 2
},
"fingerprint_sha256": "B327C62C909495CF64C649367CB4195737F5891F47B4C1D27030D9D06ED6EAC6",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-02T01:12:01.395Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<html><head><META HTTP-EQUIV=\"Cache-control\" CONTENT=\"no-cache\"><META HTTP-EQUIV=\"refresh\" CONTENT=\"0;URL=/cgi-sys/defaultwebpage.cgi\"></head><body></body></html>\n",
"body_murmur": -1507725539,
"body_sha256": "9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24",
"component": [
"Apache HTTP Server"
],
"content_length": 163,
"headers": {
"accept_ranges": [
"bytes"
],
"cache_control": [
"no-cache, no-store, must-revalidate"
],
"content_length": [
"163"
],
"content_type": [
"text/html"
],
"date": [
"Tue, 02 Dec 2025 03:06:25 GMT"
],
"expires": [
"0"
],
"last_modified": [
"Mon, 08 May 2023 00:00:00 GMT"
],
"pragma": [
"no-cache"
],
"server": [
"Apache"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.23.82.132",
"path": "",
"scheme": "http"
}
},
"status_code": 200
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "http://182.23.82.132/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-02T03:06:26.213Z"
},
{
"port": 110,
"protocol": "tcp",
"name": "pop3",
"version": "",
"product": "Dovecot pop3d",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"pop3": {
"banner": "+OK Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/49.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 19 04:31:31.749 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:D4:DA:16:86:8A:A4:7A:2F:5C:\n 55:70:D7:B7:ED:0F:1A:EB:47:77:E7:D5:52:28:CE:08:\n D9:21:8F:4A:3C:02:20:10:B5:7F:34:A8:A7:41:7A:0C:\n 1E:A1:6C:90:CF:6E:21:B8:D4:A7:DC:87:01:B4:AD:38:\n 7D:AA:CC:62:CF:56:75\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:\n 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3\n Timestamp : Oct 19 04:31:31.737 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:46:02:21:00:C4:FF:E0:84:AF:C5:2C:E4:2D:A8:C5:\n 45:E9:1B:1E:7C:E5:B7:4F:43:9A:CA:49:33:C0:3B:1E:\n 10:3B:1C:46:4D:02:21:00:AE:BB:D0:59:FD:CC:4C:52:\n 1B:F4:53:61:D9:40:E7:8B:EA:E5:81:0A:41:D4:F8:C5:\n 8C:62:B5:88:CB:C6:13:0A",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"server.maroskab.go.id"
]
},
"subject_key_id": "e69d12cf7cdfdeeee994ce6add42a751590633f4"
},
"fingerprint_md5": "B19140F0EFD4DDC45CDFD36AD697AE81",
"fingerprint_sha1": "930E84B5E21A33538F85F688258EA247243C0F59",
"fingerprint_sha256": "B327C62C909495CF64C649367CB4195737F5891F47B4C1D27030D9D06ED6EAC6",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-13T01:26:34",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "532578985352222932061751916026546824756912",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886dd4da16868aa47a2f5c5570d7b7ed0f1aeb4777e7d55228ce08d9218f4a3c022010b57f34a8a7417a0c1ea16c90cf6e21b8d4a7dc8701b4ad387daacc62cf5675"
},
"timestamp": "2025-10-19T04:31:31.749000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "499c9b69de1d7cecfc36decd8764a6b85baf0a878019d15552fbe9eb29ddf8c3",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3046022100c4ffe084afc52ce42da8c545e91b1e7ce5b74f439aca4933c03b1e103b1c464d022100aebbd059fdcc4c521bf45361d940e78beae5810a41d4f8c58c62b588cbc6130a"
},
"timestamp": "2025-10-19T04:31:31.737000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"server.maroskab.go.id"
]
},
"subject_alt_name": {
"dns_names": [
"server.maroskab.go.id"
],
"extended_dns_names": [
{
"domain": "maroskab",
"fld": "maroskab.go.id",
"subdomain": "server",
"tld": "go.id"
}
]
},
"subject_dn": "/CN=server.maroskab.go.id",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "f2491bb70285d6f92b915c0c8e1dfbba987b28abacbdbba313c7dfb2920b00c3",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "91f59c6efe5fe87c0b11054457975e37b34d27411c60403e48c98b4abea6951d",
"tbs_noct_fingerprint": "cbca526fd477e1a792c925a865e76c81fae35a03c78e5cdc712b8d3fe7f75b8c",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-17T03:33:00",
"not_before": "2025-10-19T03:33:01"
},
"version": 2
},
"fingerprint_sha256": "B327C62C909495CF64C649367CB4195737F5891F47B4C1D27030D9D06ED6EAC6",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-04T01:33:10.649Z"
},
{
"port": 143,
"protocol": "tcp",
"name": "imap",
"version": "",
"product": "Dovecot imapd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"imap": {
"banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/49.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 19 04:31:31.749 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:D4:DA:16:86:8A:A4:7A:2F:5C:\n 55:70:D7:B7:ED:0F:1A:EB:47:77:E7:D5:52:28:CE:08:\n D9:21:8F:4A:3C:02:20:10:B5:7F:34:A8:A7:41:7A:0C:\n 1E:A1:6C:90:CF:6E:21:B8:D4:A7:DC:87:01:B4:AD:38:\n 7D:AA:CC:62:CF:56:75\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:\n 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3\n Timestamp : Oct 19 04:31:31.737 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:46:02:21:00:C4:FF:E0:84:AF:C5:2C:E4:2D:A8:C5:\n 45:E9:1B:1E:7C:E5:B7:4F:43:9A:CA:49:33:C0:3B:1E:\n 10:3B:1C:46:4D:02:21:00:AE:BB:D0:59:FD:CC:4C:52:\n 1B:F4:53:61:D9:40:E7:8B:EA:E5:81:0A:41:D4:F8:C5:\n 8C:62:B5:88:CB:C6:13:0A",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"server.maroskab.go.id"
]
},
"subject_key_id": "e69d12cf7cdfdeeee994ce6add42a751590633f4"
},
"fingerprint_md5": "B19140F0EFD4DDC45CDFD36AD697AE81",
"fingerprint_sha1": "930E84B5E21A33538F85F688258EA247243C0F59",
"fingerprint_sha256": "B327C62C909495CF64C649367CB4195737F5891F47B4C1D27030D9D06ED6EAC6",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-10T06:26:34",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "532578985352222932061751916026546824756912",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886dd4da16868aa47a2f5c5570d7b7ed0f1aeb4777e7d55228ce08d9218f4a3c022010b57f34a8a7417a0c1ea16c90cf6e21b8d4a7dc8701b4ad387daacc62cf5675"
},
"timestamp": "2025-10-19T04:31:31.749000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "499c9b69de1d7cecfc36decd8764a6b85baf0a878019d15552fbe9eb29ddf8c3",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3046022100c4ffe084afc52ce42da8c545e91b1e7ce5b74f439aca4933c03b1e103b1c464d022100aebbd059fdcc4c521bf45361d940e78beae5810a41d4f8c58c62b588cbc6130a"
},
"timestamp": "2025-10-19T04:31:31.737000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"server.maroskab.go.id"
]
},
"subject_alt_name": {
"dns_names": [
"server.maroskab.go.id"
],
"extended_dns_names": [
{
"domain": "maroskab",
"fld": "maroskab.go.id",
"subdomain": "server",
"tld": "go.id"
}
]
},
"subject_dn": "/CN=server.maroskab.go.id",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "f2491bb70285d6f92b915c0c8e1dfbba987b28abacbdbba313c7dfb2920b00c3",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "91f59c6efe5fe87c0b11054457975e37b34d27411c60403e48c98b4abea6951d",
"tbs_noct_fingerprint": "cbca526fd477e1a792c925a865e76c81fae35a03c78e5cdc712b8d3fe7f75b8c",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-17T03:33:00",
"not_before": "2025-10-19T03:33:01"
},
"version": 2
},
"fingerprint_sha256": "B327C62C909495CF64C649367CB4195737F5891F47B4C1D27030D9D06ED6EAC6",
"precert": false,
"raw": "MIIFBzCCA++gAwIBAgISBh0b5ZBqR/Z1PrfBWBnuzT6wMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTMwHhcNMjUxMDE5MDMzMzAxWhcNMjYwMTE3MDMzMzAwWjAgMR4wHAYDVQQDExVzZXJ2ZXIubWFyb3NrYWIuZ28uaWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSaBr3+9SZB1RcjE9uQR6ZflFua9NaB/kCFiJ0yv9miYwAykwzzx2tSDCgPVEkcJ7kYlxnRXvXAbG+7A1NjLCIM+VzgDWh4hQqht5EyBtLl4Gvgmm11gtEAXkZYPblnSb5Y8Hu0SK9jpaEnNxPTQZwV1hr2jkwHWIsdFyQOuFm9PK6lvvdzt5GVZ3QfZ6aRUZbEZQl66S7eYGX4BwD8U4CSvZVsT9WZv0sPapciN3MbIekrdf1bVva8dLMUO1+SfQHwivRSGMkvb5KSiyChNCvZOD7/suE4ZA86WZ7tL6VKK+1IL+9bE8LAM7TX6yOs7VS5HwmX7LkW1DoAe11+El1AgMBAAGjggImMIICIjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOadEs98397u6ZTOat1Cp1FZBjP0MB8GA1UdIwQYMBaAFOernw8sM6BT015PeMiyhA471pIzMDMGCCsGAQUFBwEBBCcwJTAjBggrBgEFBQcwAoYXaHR0cDovL3IxMy5pLmxlbmNyLm9yZy8wIAYDVR0RBBkwF4IVc2VydmVyLm1hcm9za2FiLmdvLmlkMBMGA1UdIAQMMAowCAYGZ4EMAQIBMC4GA1UdHwQnMCUwI6AhoB+GHWh0dHA6Ly9yMTMuYy5sZW5jci5vcmcvNDkuY3JsMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAyzj3FYl8hKFEX1vB3fvJbvKaWc1HCmkFhbDLFMMUWOcAAAGZ+rynpQAABAMARzBFAiEAiG3U2haGiqR6L1xVcNe37Q8a60d359VSKM4I2SGPSjwCIBC1fzSop0F6DB6hbJDPbiG41KfchwG0rTh9qsxiz1Z1AHcASZybad4dfOz8Nt7Nh2SmuFuvCoeAGdFVUvvp6ynd+MMAAAGZ+rynmQAABAMASDBGAiEAxP/ghK/FLOQtqMVF6RsefOW3T0OaykkzwDseEDscRk0CIQCuu9BZ/cxMUhv0U2HZQOeL6uWBCkHU+MWMYrWIy8YTCjANBgkqhkiG9w0BAQsFAAOCAQEAmt0q5l3lobfghFDCi5ezVVrNFDzq9mvl1XxSUpno17qukZBLcCsDlL1zMGeKdQ3n2vWr3F1fIrSWkv9nHv6W1HJupKJzfn43PWNaUg2jqNpEcz7+8jZ8ooFX68I7vCAjktIVmtPj3sUOdt/7aUMzBjiYUTT7LbHTl+zdLf4Q47XmNOmBG3Wl/9xIO0l1QSj2dg9ltT57ueBBbg9v6mVsOjo6ylHUmDqCj6sQEAP+w8Wb1rLe+XdqD9dFcFDsnrV3Ba8Aov+RY0ulY1sOwC5GvHucoUTghvDySh6VP1z2zaXsPB7eT+XhqEvKkfgSit3dk8Tw459XiVsBX6hdtqK4Cw==",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-01T06:59:22.246Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<!DOCTYPE html><html lang=\"en-US\"><head><title>Just a moment...</title><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\"><meta name=\"robots\" content=\"noindex,nofollow\"><meta name=\"viewport\" content=\"width=device-width,initial-scale=1\"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,\"Segoe UI\",Roboto,\"Helvetica Neue\",Arial,\"Noto Sans\",sans-serif,\"Apple Color Emoji\",\"Segoe UI Emoji\",\"Segoe UI Symbol\",\"Noto Color Emoji\"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url(\"data:image/svg+xml;base64,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\");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv=\"refresh\" content=\"360\"></head><body><div class=\"main-wrapper\" role=\"main\"><div class=\"main-content\"><noscript><div class=\"h2\"><span id=\"challenge-error-text\">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: 'maroskab.go.id',cType: 'managed',cRay: '9a7338fca9e491f6',cH: 'p.SCL_gFg9CZn.MZRC6s_cNhQ37KEpzhryBZIXk_5Ms-1764598798-1.2.1.1-cZd8KnJlP_i2HjtS.XfNDeSEVrhf8bDYe5sjcyifwRQiG5JySCWBoruaFMjWkFHx',cUPMDTk:\"\\/?__cf_chl_tk=3Nstr3vX39XbCndAVYRdpmtQiPG3jwPq14IGdYtbYtY-1764598798-1.0.1.1-qQA2jX9lgJwf5ZpBUEg.70eocpQaEIiSRzjBtl_yj7k\",cFPWv: 'b',cITimeS: '1764598798',cTplC:0,cTplV:5,cTplB: '0',fa:\"\\/?__cf_chl_f_tk=3Nstr3vX39XbCndAVYRdpmtQiPG3jwPq14IGdYtbYtY-1764598798-1.0.1.1-qQA2jX9lgJwf5ZpBUEg.70eocpQaEIiSRzjBtl_yj7k\",md: 'm1sEyhOt2MvsvELrAriY8rMnuL3NGWgmXJf6FXQJyKE-1764598798-1.2.1.1-aRgQERSB4CsCz6T9_STdX_sArBFCWWayIO9r9btAgpur5Y4HTNpHn4WXwlSr4MnQn6GYNWikD256BPlD5GHnGyjLGJpB0tF2LyRoT3LIf5Uqg3jtr4n5igjF6OFXiy2Ynqttqg4F7Mr14jnRMTwEFTMRDzMu3yJQjns4VPgIKyQ.dvGer3pxzj3wRbQbgRMjX5mRjbMqamwB5TXNmAPjyenEDoDYH7dJvCefGbvG_nNHFkh.UXAyUGjf2wk0QMvZZKJ41o44_xtgQOnHkNnonjPaORUhB5E5pcF_FL6bIsmBTmuzZvSgW7efADNDv9yLdzMDNkp6ddBfx0ne_Ivtf7FNYNtwGEz6z_KQEIXbrPc4jw1WLVkqTubRyybgLEjzVCF5dXzdUq_I_0rUyInifJXUEtQyMyyeJQCZYDigF8ExH.cO1GczZiVmD0v9bYDuDxWTCUKSX2WNgFzch6fNKLfha9tw0Uru4gNDuk.yoRABODHFhprtDc806.DiVjkQMP5.dg7GdC_Ke7S8F7wjGCi2F.sF6fmj_Fyd9prqJUE0Dd1TzCBS7M5CEbvT3XzBQgfLsKxktqxZXP8gVNoHpozUKl5Gy74J9Ibw3vX99z0x4_a0Aaw3oBEa_ZuYdb2O0P2FeTtLZMoqYYKMl6wHjjy6MxbEuhgVBU3OkKDK3tHZzNOZB4U6yvwF9umtKQFvbkW4xVllQtPnJ1lSv8BTU76sIunQXgxFf790Ep6iXl87jdsiMxEgDJJUV2QABqP..Ze.hdG6uOne4F9TGuZWVoyKfqeSIiVeNYjvjG6myaY.encio_fu9nnDsCb3moFL01umlhfIC5kPACRqI0a4Kg',mdrd: 'XPVFq4ImJrXV1Ksv8aJB9oASqcsCEF.LGG2XSxSc2fY-1764598798-1.2.1.1-cUrzRUI5x29eVbYZTeceJbze9JUhTBqigG4mwF._0F1ssrWt4UfhgEh.QQoIpdIXhFDWzxU7WX_O5wJSFba3u1LGsBKKaE6FkwKMTXBvciRMf_Vzw3TmTMX7p8YmxrrxbiDhWyGuKiH73.4BRGgDoGcCjon_B3LNyH6a3xFV_L5fnhqFVlFvQz000cX1rPOqGOZoaHLXJCTfzhJizvDnVClAOdw4x8mJuvgaWELOkPr7qoQJrDlPz6oJ2.7UJPaTPxRBUGFwPde.LY8.CHcTZiajJQfz8b1SF8RMVH6VbcrkvJ6NLo5p9tocB58UO38ocLBdwyLrjCCLNLowuR1F7gkmSe15CuIWzvqUV2geGujwV9ncJd_YT0vIpncVXjPE0aUkvfCe92wGEKQ_IqDdb2LlYd1VrL1JtvPVaMZPF4NnRroK1O.X_j1BE9Y5T54CVZyGmUG3zAwT9llNxlvuXVUdAJG_DL1hNYgO32o2Mey4cj8I53XnoVO7aOfD1qDYYz1TIrtt1p3fa7Z3Jk4PNu.SU54AuEKEwIqv0EhwM9qaLE08E7e9Qh_gglMlkIRBX2nL2077q8NFsdpTuh2cvIlipUOm0pxcoxjde1vUw_fJvWd.dIFxdOH1Sq6D9NiqDLnRr0Y3g4JVnYfkZKoMe6wqd_WOVLBkMHSwBTn34SEGvWsAw8NyLWvGmtjrYGP6p93LxFmmAOBRd0yVajmQBmo6uaLAehW7LIEPcWqwpSS0qddpIuIx1VwIuhVoOms6k3ROyNs9FiJzJANJt3ffF36fFdjKrtqxVlRXmkn07Z0ia8QiKqwBqkJRZzyL8HsMY8Kf4MFnFZG5Uo7TiZbxds_3fy5Vh5tIOsxnVSuUOGrZ6L2kOPVYt5KCxFuUlghiABm8dgGM7RwU5sRZTvaxlX309R.U24.kWLalUP9dCntzyXLY0dQmJPrQY0SLlCPJcUyK7ALNXzneulpomfLA2ektBAlqK7Zfk2z1p9O8PIVE2KADW9vmBQbbXWPo6ZGYA9E05oNoRelf3XVW9AW68MxYNgo4SXBkOY2XOGvLyIcybt_ukSVEeuNUJEi4Xd..Y4YBySjAOcSRU.ciew2p.xR8tw7p.p8u94Zq.WA10YMY8pxQ4zoKQFiWaJWCF17g.se6DtjlJCOCOjBVXmxdINmqVTA3Q0QnyCz7wKHfjigpOBdzVRg1UF2BLGbfA0z0Mf1MWoraZQaRbawjrdmOjIVVxaOytVoXZg2Ao0i9Oqd6Tsr2sW4D5x8eVzd101Mcr7ex1gIlQi4TTyxVklLLFFQdGseON.SnVHb0dscHDBEckypXkWu3gfZ_8wSsBlKye5kzVTSEOtUskqkCSdk5njUau_cCalRsAkVtmQZWbFuofP0sLT4wtq.ICtHc8iAOCNIdZbFBA53lln.bmfhmC6W2DyKwsANOq5zP3XY3SpNo9r01M8csgDvnuqjsk5inN_OLelgt5xp64YoXRvD5TwwfuUbyw4YzwzOkeueNY5QwYUPE3N8Scif7NzwchtSyrM6vZEe8jA.yIDGCCv1gO8Mt0h76mEAmjhVmWTxeynzXi4TRi6OAkuawzt6kvOxhDOG4tg1ZBO2L6iryAAUeUb2FKSVYN1GxSPzenQVAo_KUBPxwcTlWOJfvqpeSvuDXF0y.PLPONYAZBkXingdUSeEBSkDFR7H8q8HKYxnUJwCMGbT7qUZVUv_.v9fOB36NCu6aYWpPE2kaDi8zE2ManCbiZaOlUMFRZJhA.qrEZOAEgNuQYC1v1FZJdd44J75p9z2V3GAtyHSugLToOfgHipXb9c_ewXNW15LuWb9TBT6ZBGB8W81QRZhlG4QaQ.QWuXHXJotfPWdIFybynT507g',};var a = document.createElement('script');a.src = '/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9a7338fca9e491f6';window._cf_chl_opt.cOgUHash = location.hash === '' && location.href.indexOf('#') !== -1 ? '#' : location.hash;window._cf_chl_opt.cOgUQuery = location.search === '' && location.href.slice(0, location.href.length - window._cf_chl_opt.cOgUHash.length).indexOf('?') !== -1 ? '?' : location.search;if (window.history && window.history.replaceState) {var ogU = location.pathname + window._cf_chl_opt.cOgUQuery + window._cf_chl_opt.cOgUHash;history.replaceState(null, null,\"\\/?__cf_chl_rt_tk=3Nstr3vX39XbCndAVYRdpmtQiPG3jwPq14IGdYtbYtY-1764598798-1.0.1.1-qQA2jX9lgJwf5ZpBUEg.70eocpQaEIiSRzjBtl_yj7k\"+ window._cf_chl_opt.cOgUHash);a.onload = function() {history.replaceState(null, null, ogU);}}document.getElementsByTagName('head')[0].appendChild(a);}());</script></body></html>",
"body_murmur": -562234361,
"body_sha256": "0b66499e0c88ef5fa848591dcf28aa98339b4a38ce67fc3a2c95320709b6b30f",
"component": [
"Cloudflare"
],
"content_length": -1,
"headers": {
"alt_svc": [
"h3=\":443\"; ma=86400"
],
"cache_control": [
"private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0"
],
"content_type": [
"text/html; charset=UTF-8"
],
"date": [
"Mon, 01 Dec 2025 14:19:58 GMT"
],
"expires": [
"Thu, 01 Jan 1970 00:00:01 GMT"
],
"server": [
"cloudflare"
],
"strict_transport_security": [
"max-age=0"
],
"unknown": [
{
"key": "server_timing",
"value": [
"chlray;desc=\"9a7338fca9e491f6\"",
"cfL4;desc=\"?proto=TCP&rtt=830&min_rtt=822&rtt_var=187&sent=5&recv=7&lost=0&retrans=0&sent_bytes=3141&recv_bytes=539&delivery_rate=5189964&cwnd=254&unsent_bytes=0&cid=ff9914bfd1d89e22&ts=39&x=0\""
]
},
{
"key": "report_to",
"value": [
"{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=m6Udhr0WrkI%2BFJlRfwdT4I%2BOXN9zDuYK%2B4FgwqWNlZWF8J9xoWPOex0xpzKIUhrePlzRa4bncj4bcmucimhaRRZvJ7S%2BmeWkMPsY2l3Hs3WwKM9ORFmRuabnY6yx0pCpvg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}"
]
},
{
"key": "accept_ch",
"value": [
"Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA"
]
},
{
"key": "cross_origin_opener_policy",
"value": [
"same-origin"
]
},
{
"key": "origin_agent_cluster",
"value": [
"?1"
]
},
{
"key": "critical_ch",
"value": [
"Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA"
]
},
{
"key": "cross_origin_embedder_policy",
"value": [
"require-corp"
]
},
{
"key": "cross_origin_resource_policy",
"value": [
"same-origin"
]
},
{
"key": "cf_ray",
"value": [
"9a7338fca9e491f6-FRA"
]
},
{
"key": "cf_mitigated",
"value": [
"challenge"
]
},
{
"key": "permissions_policy",
"value": [
"accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()"
]
},
{
"key": "referrer_policy",
"value": [
"same-origin"
]
},
{
"key": "nel",
"value": [
"{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}"
]
}
],
"vary": [
"Accept-Encoding"
],
"x_content_type_options": [
"nosniff"
],
"x_frame_options": [
"SAMEORIGIN"
]
},
"protocol": "HTTP/1.1",
"redirects": [
{
"content_length": -1,
"headers": {
"content_type": [
"text/html; charset=UTF-8"
],
"date": [
"Mon, 01 Dec 2025 14:19:57 GMT"
],
"location": [
"https://maroskab.go.id/"
],
"server": [
"Apache"
],
"unknown": [
{
"key": "x_redirect_by",
"value": [
"WordPress"
]
}
]
},
"location": "https://maroskab.go.id/",
"protocol": "HTTP/1.1",
"status_code": 301,
"status_line": "301 Moved Permanently"
}
],
"request": {
"headers": {
"accept": [
"*/*"
],
"referer": [
"https://182.23.82.132"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "maroskab.go.id",
"path": "/",
"scheme": "https"
}
},
"status_code": 403,
"title": "Just a moment...",
"transfer_encoding": [
"chunked"
]
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r10.i.lencr.org/"
],
"ocsp_urls": [
"http://r10.o.lencr.org"
]
},
"authority_key_id": "bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:\n 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B\n Timestamp : Jun 19 19:17:00.309 2024 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:20:5C:FA:A1:88:0F:7C:87:FC:0F:22:27:2B:\n 67:9F:4A:A3:EA:63:D4:D7:53:A1:0F:68:D5:9E:90:42:\n 80:D0:41:77:02:21:00:E2:3A:22:D3:C0:D8:2D:EA:E4:\n 59:4F:D4:BC:B2:3F:03:F3:84:3B:A0:55:2B:D0:1F:04:\n A4:84:24:C6:60:A7:6E\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:\n 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C\n Timestamp : Jun 19 19:17:00.491 2024 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:F5:92:AF:B2:6D:A9:9A:24:20:18:57:\n 50:A8:71:10:3F:A8:5E:C3:6A:85:5F:46:A7:F6:D0:51:\n 67:06:3E:93:59:02:20:17:F4:B0:36:2F:67:A1:C4:7C:\n 87:3C:D2:14:3A:53:18:9E:BB:E9:62:11:CC:07:91:72:\n 4F:A2:C1:4A:59:0F:5B",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"cpanel.maroskab.go.id",
"maroskab.go.id",
"www.maroskab.go.id"
]
},
"subject_key_id": "26922c6aa268215ec1b22fb9679bb7cb43c7f9d3"
},
"fingerprint_md5": "8301E529548E8DECC34E42CF5D9E85D0",
"fingerprint_sha1": "A8104A12D128340FA5A4D0323B99D4EBE20B1DCA",
"fingerprint_sha256": "77AF8281A1C1DBF509BC4EA3166D3036D468CA64E0BCF6FF38CA888B01F9A3A2",
"issuer": {
"common_name": [
"R10"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R10",
"jarm": "15d3fd16d29d29d00042d43d0000009ec686233a4398bea334ba5e62e34a01",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "296664469447392864492713550115518487498602",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304502205cfaa1880f7c87fc0f22272b679f4aa3ea63d4d753a10f68d59e904280d04177022100e23a22d3c0d82deae4594fd4bcb23f03f3843ba0552bd01f04a48424c660a76e"
},
"timestamp": "2024-06-19T19:17:00.309000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100f592afb26da99a2420185750a871103fa85ec36a855f46a7f6d05167063e9359022017f4b0362f67a1c47c873cd2143a53189ebbe96211cc0791724fa2c14a590f5b"
},
"timestamp": "2024-06-19T19:17:00.491000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"maroskab.go.id"
]
},
"subject_alt_name": {
"dns_names": [
"maroskab.go.id",
"cpanel.maroskab.go.id",
"www.maroskab.go.id"
],
"extended_dns_names": [
{
"domain": "maroskab",
"fld": "maroskab.go.id",
"tld": "go.id"
},
{
"domain": "maroskab",
"fld": "maroskab.go.id",
"subdomain": "cpanel",
"tld": "go.id"
},
{
"domain": "maroskab",
"fld": "maroskab.go.id",
"subdomain": "www",
"tld": "go.id"
}
]
},
"subject_dn": "/CN=maroskab.go.id",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "0afe148e5f9b0c2fc90e8b2ff941848d8325b8e54891fa3ce8797c61d37bcb4f",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "773536a790d5adccf71f9e868d97487dec2009777e120118a0434afd36f607eb",
"tbs_noct_fingerprint": "30b718deb8b435e51c08be73150fe142ac5c0daf880560459d8e1e2253672063",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2024-09-17T18:16:59",
"not_before": "2024-06-19T18:17:00"
},
"version": 2
},
"fingerprint_sha256": "77AF8281A1C1DBF509BC4EA3166D3036D468CA64E0BCF6FF38CA888B01F9A3A2",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "https://182.23.82.132/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-02T00:41:02.039Z"
},
{
"port": 465,
"protocol": "tcp",
"name": "smtp",
"version": "4.98.1",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.98.1",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.98\\.1",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-04T06:10:57.765Z"
},
{
"port": 587,
"protocol": "tcp",
"name": "smtp",
"version": "4.98.1",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.98.1",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.98\\.1",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220-server.maroskab.go.id ESMTP Exim 4.98.1 #2 Fri, 05 Dec 2025 05:07:00 +0800 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/49.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 19 04:31:31.749 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:D4:DA:16:86:8A:A4:7A:2F:5C:\n 55:70:D7:B7:ED:0F:1A:EB:47:77:E7:D5:52:28:CE:08:\n D9:21:8F:4A:3C:02:20:10:B5:7F:34:A8:A7:41:7A:0C:\n 1E:A1:6C:90:CF:6E:21:B8:D4:A7:DC:87:01:B4:AD:38:\n 7D:AA:CC:62:CF:56:75\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:\n 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3\n Timestamp : Oct 19 04:31:31.737 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:46:02:21:00:C4:FF:E0:84:AF:C5:2C:E4:2D:A8:C5:\n 45:E9:1B:1E:7C:E5:B7:4F:43:9A:CA:49:33:C0:3B:1E:\n 10:3B:1C:46:4D:02:21:00:AE:BB:D0:59:FD:CC:4C:52:\n 1B:F4:53:61:D9:40:E7:8B:EA:E5:81:0A:41:D4:F8:C5:\n 8C:62:B5:88:CB:C6:13:0A",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"server.maroskab.go.id"
]
},
"subject_key_id": "e69d12cf7cdfdeeee994ce6add42a751590633f4"
},
"fingerprint_md5": "B19140F0EFD4DDC45CDFD36AD697AE81",
"fingerprint_sha1": "930E84B5E21A33538F85F688258EA247243C0F59",
"fingerprint_sha256": "B327C62C909495CF64C649367CB4195737F5891F47B4C1D27030D9D06ED6EAC6",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "532578985352222932061751916026546824756912",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886dd4da16868aa47a2f5c5570d7b7ed0f1aeb4777e7d55228ce08d9218f4a3c022010b57f34a8a7417a0c1ea16c90cf6e21b8d4a7dc8701b4ad387daacc62cf5675"
},
"timestamp": "2025-10-19T04:31:31.749000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "499c9b69de1d7cecfc36decd8764a6b85baf0a878019d15552fbe9eb29ddf8c3",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3046022100c4ffe084afc52ce42da8c545e91b1e7ce5b74f439aca4933c03b1e103b1c464d022100aebbd059fdcc4c521bf45361d940e78beae5810a41d4f8c58c62b588cbc6130a"
},
"timestamp": "2025-10-19T04:31:31.737000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"server.maroskab.go.id"
]
},
"subject_alt_name": {
"dns_names": [
"server.maroskab.go.id"
],
"extended_dns_names": [
{
"domain": "maroskab",
"fld": "maroskab.go.id",
"subdomain": "server",
"tld": "go.id"
}
]
},
"subject_dn": "/CN=server.maroskab.go.id",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "f2491bb70285d6f92b915c0c8e1dfbba987b28abacbdbba313c7dfb2920b00c3",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "91f59c6efe5fe87c0b11054457975e37b34d27411c60403e48c98b4abea6951d",
"tbs_noct_fingerprint": "cbca526fd477e1a792c925a865e76c81fae35a03c78e5cdc712b8d3fe7f75b8c",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-17T03:33:00",
"not_before": "2025-10-19T03:33:01"
},
"version": 2
},
"fingerprint_sha256": "B327C62C909495CF64C649367CB4195737F5891F47B4C1D27030D9D06ED6EAC6",
"precert": false,
"raw": "MIIFBzCCA++gAwIBAgISBh0b5ZBqR/Z1PrfBWBnuzT6wMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTMwHhcNMjUxMDE5MDMzMzAxWhcNMjYwMTE3MDMzMzAwWjAgMR4wHAYDVQQDExVzZXJ2ZXIubWFyb3NrYWIuZ28uaWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSaBr3+9SZB1RcjE9uQR6ZflFua9NaB/kCFiJ0yv9miYwAykwzzx2tSDCgPVEkcJ7kYlxnRXvXAbG+7A1NjLCIM+VzgDWh4hQqht5EyBtLl4Gvgmm11gtEAXkZYPblnSb5Y8Hu0SK9jpaEnNxPTQZwV1hr2jkwHWIsdFyQOuFm9PK6lvvdzt5GVZ3QfZ6aRUZbEZQl66S7eYGX4BwD8U4CSvZVsT9WZv0sPapciN3MbIekrdf1bVva8dLMUO1+SfQHwivRSGMkvb5KSiyChNCvZOD7/suE4ZA86WZ7tL6VKK+1IL+9bE8LAM7TX6yOs7VS5HwmX7LkW1DoAe11+El1AgMBAAGjggImMIICIjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOadEs98397u6ZTOat1Cp1FZBjP0MB8GA1UdIwQYMBaAFOernw8sM6BT015PeMiyhA471pIzMDMGCCsGAQUFBwEBBCcwJTAjBggrBgEFBQcwAoYXaHR0cDovL3IxMy5pLmxlbmNyLm9yZy8wIAYDVR0RBBkwF4IVc2VydmVyLm1hcm9za2FiLmdvLmlkMBMGA1UdIAQMMAowCAYGZ4EMAQIBMC4GA1UdHwQnMCUwI6AhoB+GHWh0dHA6Ly9yMTMuYy5sZW5jci5vcmcvNDkuY3JsMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAyzj3FYl8hKFEX1vB3fvJbvKaWc1HCmkFhbDLFMMUWOcAAAGZ+rynpQAABAMARzBFAiEAiG3U2haGiqR6L1xVcNe37Q8a60d359VSKM4I2SGPSjwCIBC1fzSop0F6DB6hbJDPbiG41KfchwG0rTh9qsxiz1Z1AHcASZybad4dfOz8Nt7Nh2SmuFuvCoeAGdFVUvvp6ynd+MMAAAGZ+rynmQAABAMASDBGAiEAxP/ghK/FLOQtqMVF6RsefOW3T0OaykkzwDseEDscRk0CIQCuu9BZ/cxMUhv0U2HZQOeL6uWBCkHU+MWMYrWIy8YTCjANBgkqhkiG9w0BAQsFAAOCAQEAmt0q5l3lobfghFDCi5ezVVrNFDzq9mvl1XxSUpno17qukZBLcCsDlL1zMGeKdQ3n2vWr3F1fIrSWkv9nHv6W1HJupKJzfn43PWNaUg2jqNpEcz7+8jZ8ooFX68I7vCAjktIVmtPj3sUOdt/7aUMzBjiYUTT7LbHTl+zdLf4Q47XmNOmBG3Wl/9xIO0l1QSj2dg9ltT57ueBBbg9v6mVsOjo6ylHUmDqCj6sQEAP+w8Wb1rLe+XdqD9dFcFDsnrV3Ba8Aov+RY0ulY1sOwC5GvHucoUTghvDySh6VP1z2zaXsPB7eT+XhqEvKkfgSit3dk8Tw459XiVsBX6hdtqK4Cw==",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-04T21:07:00.582Z"
},
{
"port": 993,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-04T10:26:45.466Z"
},
{
"port": 995,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-01T02:21:05.291Z"
},
{
"port": 5060,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-01T06:13:47.638Z"
}
],
"services_hash": "6da18fb78033094ae98556aff20b4005cc209bfee730f490c24e003adc476027",
"last_updated_at": "2025-12-04T21:07:00.582Z",
"banner": [
"ssh",
"http",
"pop3",
"tls",
"imap",
"smtp"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-0431": {
"id": "CVE-1999-0431",
"references": [
"https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0431",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0431"
],
"score": 5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "Linux 2.2.3 and earlier allow a remote attacker to perform an IP fragmentation attack, causing a denial of service.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"weakness": "NVD-CWE-Other"
},
"CVE-1999-0656": {
"id": "CVE-1999-0656",
"references": [
"http://ca.com/au/securityadvisor/vulninfo/Vuln.aspx?ID=1638",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/348",
"http://ca.com/au/securityadvisor/vulninfo/Vuln.aspx?ID=1638",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/348"
],
"score": 5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names.",
"vector_string": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"weakness": "CWE-16"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"80/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-1999-1285": {
"id": "CVE-1999-1285",
"references": [
"http://marc.info/?l=bugtraq&m=91495921611500&w=2",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/1472",
"http://marc.info/?l=bugtraq&m=91495921611500&w=2",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/1472"
],
"score": 2.1,
"services": [
"22/ssh"
],
"severity": "low",
"summary": "Linux 2.1.132 and earlier allows local users to cause a denial of service (resource exhaustion) by reading a large buffer from a random device (e.g. /dev/urandom), which cannot be interrupted until the read has completed.",
"vector_string": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
"weakness": "NVD-CWE-Other"
},
"CVE-1999-1442": {
"id": "CVE-1999-1442",
"references": [
"http://uwsg.iu.edu/hypermail/linux/kernel/9805.3/0855.html",
"http://www.cs.helsinki.fi/linux/linux-kernel/Year-1998/1998-25/0816.html",
"http://www.securityfocus.com/bid/105"
],
"score": 7.2,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instructions, possibly related to accessing addresses outside of segments.",
"vector_string": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2007-2768": {
"id": "CVE-2007-2768",
"references": [
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/",
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/"
],
"score": 4.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.",
"vector_string": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"weakness": "CWE-200"
},
"CVE-2008-3844": {
"id": "CVE-2008-3844",
"references": [
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747",
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747"
],
"score": 9.3,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.",
"vector_string": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"weakness": "CWE-20"
},
"CVE-2022-3424": {
"id": "CVE-2022-3424",
"references": [
"https://bugzilla.redhat.com/show_bug.cgi?id=2132640",
"https://github.com/torvalds/linux/commit/643a16a0eb1d6ac23744bb6e90a00fc21148a9dc",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html",
"https://lore.kernel.org/all/20221019031445.901570-1-zyytlz.wz%40163.com/",
"https://security.netapp.com/advisory/ntap-20230406-0005/",
"https://www.spinics.net/lists/kernel/msg4518970.html",
"https://bugzilla.redhat.com/show_bug.cgi?id=2132640",
"https://github.com/torvalds/linux/commit/643a16a0eb1d6ac23744bb6e90a00fc21148a9dc",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html",
"https://lore.kernel.org/all/20221019031445.901570-1-zyytlz.wz%40163.com/",
"https://security.netapp.com/advisory/ntap-20230406-0005/",
"https://www.spinics.net/lists/kernel/msg4518970.html"
],
"score": 7.8,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-416"
},
"CVE-2022-3707": {
"id": "CVE-2022-3707",
"references": [
"https://bugzilla.redhat.com/show_bug.cgi?id=2137979",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html",
"https://lore.kernel.org/all/20221007013708.1946061-1-zyytlz.wz%40163.com/",
"https://bugzilla.redhat.com/show_bug.cgi?id=2137979",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html",
"https://lore.kernel.org/all/20221007013708.1946061-1-zyytlz.wz%40163.com/"
],
"score": 5.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overload, causing a fail in the intel_gvt_dma_map_guest_page function. This issue could allow a local user to crash the system.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-460"
},
"CVE-2023-0030": {
"id": "CVE-2023-0030",
"references": [
"https://bugzilla.redhat.com/show_bug.cgi?id=2157270",
"https://github.com/torvalds/linux/commit/729eba3355674f2d9524629b73683ba1d1cd3f10",
"https://security.netapp.com/advisory/ntap-20230413-0010/",
"https://bugzilla.redhat.com/show_bug.cgi?id=2157270",
"https://github.com/torvalds/linux/commit/729eba3355674f2d9524629b73683ba1d1cd3f10",
"https://security.netapp.com/advisory/ntap-20230413-0010/",
"https://bugzilla.redhat.com/show_bug.cgi?id=2157270"
],
"score": 7.8,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "A use-after-free flaw was found in the Linux kernel’s nouveau driver in how a user triggers a memory overflow that causes the nvkm_vma_tail function to fail. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-416"
},
"CVE-2023-1390": {
"id": "CVE-2023-1390",
"references": [
"https://gist.github.com/netspooky/bee2d07022f6350bb88eaa48e571d9b5",
"https://github.com/torvalds/linux/commit/b77413446408fdd256599daf00d5be72b5f3e7c6",
"https://infosec.exchange/%40_mattata/109427999461122360",
"https://security.netapp.com/advisory/ntap-20230420-0001/",
"https://gist.github.com/netspooky/bee2d07022f6350bb88eaa48e571d9b5",
"https://github.com/torvalds/linux/commit/b77413446408fdd256599daf00d5be72b5f3e7c6",
"https://infosec.exchange/%40_mattata/109427999461122360",
"https://security.netapp.com/advisory/ntap-20230420-0001/"
],
"score": 7.5,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "A remote denial of service vulnerability was found in the Linux kernel’s TIPC kernel module. The while loop in tipc_link_xmit() hits an unknown state while attempting to parse SKBs, which are not in the queue. Sending two small UDP packets to a system with a UDP bearer results in the CPU utilization for the system to instantly spike to 100%, causing a denial of service condition.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-1050"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"80/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
},
"CVE-2023-28466": {
"id": "CVE-2023-28466",
"references": [
"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=49c47cc21b5b7a3d8deb18fc57b0aa2ab1286962",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html",
"https://security.netapp.com/advisory/ntap-20230427-0006/",
"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=49c47cc21b5b7a3d8deb18fc57b0aa2ab1286962",
"https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html",
"https://security.netapp.com/advisory/ntap-20230427-0006/"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6.2.6 lacks a lock_sock call, leading to a race condition (with a resultant use-after-free or NULL pointer dereference).",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-476"
},
"CVE-2023-28531": {
"id": "CVE-2023-28531",
"references": [
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230413-0008/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openwall.com/lists/oss-security/2023/03/15/8",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230413-0008/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openwall.com/lists/oss-security/2023/03/15/8"
],
"score": 9.8,
"services": [
"22/ssh"
],
"severity": "critical",
"summary": "ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-noinfo"
},
"CVE-2023-38408": {
"id": "CVE-2023-38408",
"references": [
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408",
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408"
],
"score": 9.8,
"services": [
"22/ssh"
],
"severity": "critical",
"summary": "The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-428"
},
"CVE-2023-48795": {
"id": "CVE-2023-48795",
"references": [
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html",
"https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html",
"https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability"
],
"score": 5.9,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in [email protected] and (if CBC is used) the [email protected] MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-354"
},
"CVE-2023-51384": {
"id": "CVE-2023-51384",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 5.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-2023-51385": {
"id": "CVE-2023-51385",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"http://www.openwall.com/lists/oss-security/2025/10/07/1",
"http://www.openwall.com/lists/oss-security/2025/10/12/1",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 6.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"weakness": "CWE-78"
},
"CVE-2023-51767": {
"id": "CVE-2023-51767",
"references": [
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767",
"https://www.openwall.com/lists/oss-security/2025/09/22/1",
"http://www.openwall.com/lists/oss-security/2025/09/22/1",
"http://www.openwall.com/lists/oss-security/2025/09/22/2",
"http://www.openwall.com/lists/oss-security/2025/09/23/1",
"http://www.openwall.com/lists/oss-security/2025/09/23/3",
"http://www.openwall.com/lists/oss-security/2025/09/23/4",
"http://www.openwall.com/lists/oss-security/2025/09/23/5",
"http://www.openwall.com/lists/oss-security/2025/09/24/4",
"http://www.openwall.com/lists/oss-security/2025/09/24/7",
"http://www.openwall.com/lists/oss-security/2025/09/25/2",
"http://www.openwall.com/lists/oss-security/2025/09/25/6",
"http://www.openwall.com/lists/oss-security/2025/09/26/2",
"http://www.openwall.com/lists/oss-security/2025/09/26/4",
"http://www.openwall.com/lists/oss-security/2025/09/27/1",
"http://www.openwall.com/lists/oss-security/2025/09/27/2",
"http://www.openwall.com/lists/oss-security/2025/09/27/3",
"http://www.openwall.com/lists/oss-security/2025/09/27/4",
"http://www.openwall.com/lists/oss-security/2025/09/27/5",
"http://www.openwall.com/lists/oss-security/2025/09/27/6",
"http://www.openwall.com/lists/oss-security/2025/09/27/7",
"http://www.openwall.com/lists/oss-security/2025/09/28/7",
"http://www.openwall.com/lists/oss-security/2025/09/29/1",
"http://www.openwall.com/lists/oss-security/2025/09/29/4",
"http://www.openwall.com/lists/oss-security/2025/09/29/5",
"http://www.openwall.com/lists/oss-security/2025/09/29/6",
"http://www.openwall.com/lists/oss-security/2025/10/01/1",
"http://www.openwall.com/lists/oss-security/2025/10/01/2",
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "OpenSSH through 10.0, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges. NOTE: this is disputed by the Supplier, who states \"we do not consider it to be the application's responsibility to defend against platform architectural weaknesses.\"",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
},
"CVE-2024-6387": {
"id": "CVE-2024-6387",
"references": [
"https://access.redhat.com/errata/RHSA-2024:4312",
"https://access.redhat.com/errata/RHSA-2024:4340",
"https://access.redhat.com/errata/RHSA-2024:4389",
"https://access.redhat.com/errata/RHSA-2024:4469",
"https://access.redhat.com/errata/RHSA-2024:4474",
"https://access.redhat.com/errata/RHSA-2024:4479",
"https://access.redhat.com/errata/RHSA-2024:4484",
"https://access.redhat.com/security/cve/CVE-2024-6387",
"https://bugzilla.redhat.com/show_bug.cgi?id=2294604",
"https://santandersecurityresearch.github.io/blog/sshing_the_masses.html",
"https://www.openssh.com/txt/release-9.8",
"https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt",
"http://seclists.org/fulldisclosure/2024/Jul/18",
"http://seclists.org/fulldisclosure/2024/Jul/19",
"http://seclists.org/fulldisclosure/2024/Jul/20",
"http://www.openwall.com/lists/oss-security/2024/07/01/12",
"http://www.openwall.com/lists/oss-security/2024/07/01/13",
"http://www.openwall.com/lists/oss-security/2024/07/02/1",
"http://www.openwall.com/lists/oss-security/2024/07/03/1",
"http://www.openwall.com/lists/oss-security/2024/07/03/11",
"http://www.openwall.com/lists/oss-security/2024/07/03/2",
"http://www.openwall.com/lists/oss-security/2024/07/03/3",
"http://www.openwall.com/lists/oss-security/2024/07/03/4",
"http://www.openwall.com/lists/oss-security/2024/07/03/5",
"http://www.openwall.com/lists/oss-security/2024/07/04/1",
"http://www.openwall.com/lists/oss-security/2024/07/04/2",
"http://www.openwall.com/lists/oss-security/2024/07/08/2",
"http://www.openwall.com/lists/oss-security/2024/07/08/3",
"http://www.openwall.com/lists/oss-security/2024/07/09/2",
"http://www.openwall.com/lists/oss-security/2024/07/09/5",
"http://www.openwall.com/lists/oss-security/2024/07/10/1",
"http://www.openwall.com/lists/oss-security/2024/07/10/2",
"http://www.openwall.com/lists/oss-security/2024/07/10/3",
"http://www.openwall.com/lists/oss-security/2024/07/10/4",
"http://www.openwall.com/lists/oss-security/2024/07/10/6",
"http://www.openwall.com/lists/oss-security/2024/07/11/1",
"http://www.openwall.com/lists/oss-security/2024/07/11/3",
"http://www.openwall.com/lists/oss-security/2024/07/23/4",
"http://www.openwall.com/lists/oss-security/2024/07/23/6",
"http://www.openwall.com/lists/oss-security/2024/07/28/2",
"http://www.openwall.com/lists/oss-security/2024/07/28/3",
"https://access.redhat.com/errata/RHSA-2024:4312",
"https://access.redhat.com/errata/RHSA-2024:4340",
"https://access.redhat.com/errata/RHSA-2024:4389",
"https://access.redhat.com/errata/RHSA-2024:4469",
"https://access.redhat.com/errata/RHSA-2024:4474",
"https://access.redhat.com/errata/RHSA-2024:4479",
"https://access.redhat.com/errata/RHSA-2024:4484",
"https://access.redhat.com/security/cve/CVE-2024-6387",
"https://archlinux.org/news/the-sshd-service-needs-to-be-restarted-after-upgrading-to-openssh-98p1/",
"https://arstechnica.com/security/2024/07/regresshion-vulnerability-in-openssh-gives-attackers-root-on-linux/",
"https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server",
"https://bugzilla.redhat.com/show_bug.cgi?id=2294604",
"https://explore.alas.aws.amazon.com/CVE-2024-6387.html",
"https://forum.vmssoftware.com/viewtopic.php?f=8&t=9132",
"https://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2024-002.txt.asc",
"https://github.com/AlmaLinux/updates/issues/629",
"https://github.com/Azure/AKS/issues/4379",
"https://github.com/PowerShell/Win32-OpenSSH/discussions/2248",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2249",
"https://github.com/microsoft/azurelinux/issues/9555",
"https://github.com/openela-main/openssh/commit/e1f438970e5a337a17070a637c1b9e19697cad09",
"https://github.com/oracle/oracle-linux/issues/149",
"https://github.com/rapier1/hpn-ssh/issues/87",
"https://github.com/zgzhang/cve-2024-6387-poc",
"https://lists.almalinux.org/archives/list/[email protected]/thread/23BF5BMGFVEVUI2WNVAGMLKT557EU7VY/",
"https://lists.mindrot.org/pipermail/openssh-unix-announce/2024-July/000158.html",
"https://lists.mindrot.org/pipermail/openssh-unix-dev/2024-July/041431.html",
"https://news.ycombinator.com/item?id=40843778",
"https://packetstorm.news/files/id/190587/",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0010",
"https://santandersecurityresearch.github.io/blog/sshing_the_masses.html",
"https://security-tracker.debian.org/tracker/CVE-2024-6387",
"https://security.netapp.com/advisory/ntap-20240701-0001/",
"https://sig-security.rocky.page/issues/CVE-2024-6387/",
"https://stackdiary.com/openssh-race-condition-in-sshd-allows-remote-code-execution/",
"https://support.apple.com/kb/HT214118",
"https://support.apple.com/kb/HT214119",
"https://support.apple.com/kb/HT214120",
"https://ubuntu.com/security/CVE-2024-6387",
"https://ubuntu.com/security/notices/USN-6859-1",
"https://www.akamai.com/blog/security-research/2024-openssh-vulnerability-regression-what-to-know-and-do",
"https://www.arista.com/en/support/advisories-notices/security-advisory/19904-security-advisory-0100",
"https://www.exploit-db.com/exploits/52269",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-24:04.openssh.asc",
"https://www.openssh.com/txt/release-9.8",
"https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt",
"https://www.splunk.com/en_us/blog/security/cve-2024-6387-regresshion-vulnerability.html",
"https://www.suse.com/security/cve/CVE-2024-6387.html",
"https://www.theregister.com/2024/07/01/regresshion_openssh/",
"https://www.vicarius.io/vsociety/posts/regresshion-an-openssh-regression-error-cve-2024-6387"
],
"score": 8.1,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-364"
}
}
}