182.239.58.90
{
"scan_id": 1766953139,
"ip": "182.239.58.90",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.239.48.0/20",
"postal_code": "",
"coordinates": {
"latitude": "22.2578",
"longitude": "114.1657"
},
"geo_point": "22.2578, 114.1657",
"locale_code": "en",
"continent": "Asia",
"country_code": "HK",
"country_name": "Hong Kong",
"city": ""
},
"location_updated_at": "2025-12-30T08:54:22Z",
"asn": {
"number": "AS55334",
"organization": "Access Solutions Limited",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.239.58.0/24",
"organization": "Access Solutions Limited",
"descr": "Access Solutions Limited,\nRM925, 9/F, BLK A, Hoi Luen Industrial Centre,,\n55 Hoi Yuen Road, Kwun Tong,",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T11:27:16Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-12-30T08:54:22Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-12-30T10:58:14Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-12-30T08:54:22Z"
}
],
"services": [
{
"port": 21,
"protocol": "tcp",
"name": "ftp",
"version": "",
"product": "Pure-FTPd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:pureftpd:pure-ftpd",
"part": "a",
"vendor": "pureftpd",
"product": "pure\\-ftpd",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ftp": {
"banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 17:43. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://crt.sectigo.com/SectigoPublicServerAuthenticationCADVR36.crt"
],
"ocsp_urls": [
"http://ocsp.sectigo.com"
]
},
"authority_key_id": "68c01216180eafcef687a63257a346515dcb0727",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"cps": [
"https://sectigo.com/CPS"
],
"id": "1.3.6.1.4.1.6449.1.2.2.7"
},
{
"id": "2.23.140.1.2.1"
}
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : D7:6D:7D:10:D1:A7:F5:77:C2:C7:E9:5F:D7:00:BF:F9:\n 82:C9:33:5A:65:E1:D0:B3:01:73:17:C0:C8:C5:69:77\n Timestamp : Nov 26 03:58:22.315 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:B6:AC:DD:DD:99:2D:7A:27:DD:08:E2:\n 77:76:5C:6F:41:EB:AD:7F:9D:56:82:C6:55:0F:4A:1B:\n C6:84:24:44:53:02:20:05:DB:07:B5:70:4C:68:7F:C3:\n 3B:10:E0:F3:B0:67:B0:BF:A4:1F:D7:40:1F:1F:54:A3:\n E8:C5:FB:A8:0D:D6:C3\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : AF:67:88:3B:57:B0:4E:DD:8F:A6:D9:7E:F6:2E:A8:EB:\n 81:0A:C7:71:60:F0:24:5E:55:D6:0C:2F:E7:85:87:3A\n Timestamp : Nov 26 03:58:22.501 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:20:19:30:A9:53:0C:C7:68:B9:36:83:8C:0C:\n 49:C6:F0:0B:43:76:9B:12:88:E1:03:66:B2:DB:21:7C:\n D1:44:72:93:02:21:00:8C:52:8E:1E:CC:23:6A:71:62:\n 10:2F:2E:3B:AC:BB:70:86:CE:2F:79:21:53:81:A7:61:\n 50:D5:13:F3:3C:A6:02\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : AC:AB:30:70:6C:EB:EC:84:31:F4:13:D2:F4:91:5F:11:\n 1E:42:24:43:B1:F2:A6:8C:4F:3C:2B:3B:A7:1E:02:C3\n Timestamp : Nov 26 03:58:22.307 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:44:02:20:7E:93:C8:B7:8B:F6:00:E7:BB:BF:3A:67:\n E1:37:BC:74:B4:6C:7F:6F:C0:67:D9:D2:3D:D8:D7:BC:\n AE:89:29:32:02:20:0A:75:DC:71:6C:7A:AA:16:2D:76:\n BC:26:8C:37:9C:1E:6F:B5:41:AE:52:3F:3A:B8:18:A6:\n 73:1C:6A:7C:4A:40",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"*.cloudmail.com.hk",
"cloudmail.com.hk"
]
},
"subject_key_id": "e927d048380a4c19ca67b5633bde3751ddeebf2c"
},
"fingerprint_md5": "6C0816CE9ACAE6FF77AD42A10B055798",
"fingerprint_sha1": "2CFF31E19FE5897C323EDF4F0A41DA08F956D93D",
"fingerprint_sha256": "81E8A0AED3BF3BA31DCECFF1F7D6AFA7A276DDE752E394247E5A85A66708EA38",
"issuer": {
"common_name": [
"Sectigo Public Server Authentication CA DV R36"
],
"country": [
"GB"
],
"organization": [
"Sectigo Limited"
]
},
"issuer_dn": "/C=GB/O=Sectigo Limited/CN=Sectigo Public Server Authentication CA DV R36",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"next_update": "2025-12-26T15:47:33",
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "219426588080579543213152029640570724195",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "d76d7d10d1a7f577c2c7e95fd700bff982c9335a65e1d0b3017317c0c8c56977",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100b6acdddd992d7a27dd08e277765c6f41ebad7f9d5682c6550f4a1bc684244453022005db07b5704c687fc33b10e0f3b067b0bfa41fd7401f1f54a3e8c5fba80dd6c3"
},
"timestamp": "2025-11-26T03:58:22.315000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "af67883b57b04edd8fa6d97ef62ea8eb810ac77160f0245e55d60c2fe785873a",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304502201930a9530cc768b936838c0c49c6f00b43769b1288e10366b2db217cd14472930221008c528e1ecc236a7162102f2e3bacbb7086ce2f79215381a76150d513f33ca602"
},
"timestamp": "2025-11-26T03:58:22.501000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "acab30706cebec8431f413d2f4915f111e422443b1f2a68c4f3c2b3ba71e02c3",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304402207e93c8b78bf600e7bbbf3a67e137bc74b46c7f6fc067d9d23dd8d7bcae89293202200a75dc716c7aaa162d76bc268c379c1e6fb541ae523f3ab818a6731c6a7c4a40"
},
"timestamp": "2025-11-26T03:58:22.307000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"*.cloudmail.com.hk"
]
},
"subject_alt_name": {
"dns_names": [
"*.cloudmail.com.hk",
"cloudmail.com.hk"
],
"extended_dns_names": [
{
"domain": "cloudmail",
"fld": "cloudmail.com.hk",
"subdomain": "*",
"tld": "com.hk"
},
{
"domain": "cloudmail",
"fld": "cloudmail.com.hk",
"tld": "com.hk"
}
]
},
"subject_dn": "/CN=*.cloudmail.com.hk",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a08705642824e20f5d1e9b1faa5e1528ec2ea085d56fa346a3eb55d7ec3038a8",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "MHhkM2ZiNjcyZjBjNDE0YjkxYWY4NWIyOWI2OGZkZTZhMTU0OGI4ZThmZGI4NTAwMDk0ZjliN2M5OTRkMGY0MjJiNjI5MzhjNzNhMmZmN2RkMDYyMjJhMGMxOGQyMmRjNDk2YjU3MGM1ZDZiYTZjN2E1YTY5N2Y1NzlhMjM0MTNlZDM1NmRmOWZlNGIzODU5YWJmODIzM2RlMTljZjQwYmZkZTJiYTRjMjlhMWRhY2QzYmEwODEzZGRjMzY2MzNhNDE3NWM4NGRiODgxNzA4MDRkOTM4ZTZmYzFiOGVjMmQ2Njc3NDRhYTcxZWQ5YjZkZTZiM2E4NGYyNGZmYTNlZWE5NGVhMzg2YjAxMjFjYWJhMDQ2YTAxODExYzE2ZDE0NTc4OTdmOGZkMjlhYWM5MDYwYzJmNjc4ZGE4NTJlMjE2ZDgxZTA2OTFhMzA1NDA2OGQwZmJkYTBkYjk4NmEwZTMxZjYzZGU1OTMwNjc4MDk2NjZhYzE2MjVjNTVhZTBhNDAzODU3MTQ0MzM1MDRhZGNkMzYzN2QyMTc2ODc2YTUxZmQ2NDNjMGNhODVkMmI2ODcwNTZmYWI1NTM3NDIxMjRhNjZmYzI0MzFkZGI4MWI4ODhhZmU4YWRlNDA4NzE5Yjk0NzIxMDUxNjdkZGJjNDFmOWMwOWQ2ZDM0NDFmYWQyOQ=="
}
},
"tbs_fingerprint": "a0cfb6b72da387028aca9bdb1e9a1f154cc733d6bcc2fc9d138cb02da1560b7f",
"tbs_noct_fingerprint": "8c72a1ae95b4092fd5a7051a2a16222f745b0b20113ceaa8a89dfd23b0b86221",
"validation_level": "DV",
"validity": {
"length_seconds": 34214400,
"not_after": "2026-12-26T23:59:59",
"not_before": "2025-11-26T00:00:00"
},
"version": 2
},
"fingerprint_sha256": "81E8A0AED3BF3BA31DCECFF1F7D6AFA7A276DDE752E394247E5A85A66708EA38",
"precert": false,
"raw": "MIIGjzCCBPegAwIBAgIRAKUUBg5x4qrtIsJQLzAgX2MwDQYJKoZIhvcNAQELBQAwYDELMAkGA1UEBhMCR0IxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE3MDUGA1UEAxMuU2VjdGlnbyBQdWJsaWMgU2VydmVyIEF1dGhlbnRpY2F0aW9uIENBIERWIFIzNjAeFw0yNTExMjYwMDAwMDBaFw0yNjEyMjYyMzU5NTlaMB0xGzAZBgNVBAMMEiouY2xvdWRtYWlsLmNvbS5oazCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANP7Zy8MQUuRr4Wym2j95qFUi46P24UACU+bfJlND0IrYpOMc6L/fdBiIqDBjSLcSWtXDF1rpselppf1eaI0E+01bfn+SzhZq/gjPeGc9Av94rpMKaHazTuggT3cNmM6QXXITbiBcIBNk45vwbjsLWZ3RKpx7Ztt5rOoTyT/o+6pTqOGsBIcq6BGoBgRwW0UV4l/j9KarJBgwvZ42oUuIW2B4GkaMFQGjQ+9oNuYag4x9j3lkwZ4CWZqwWJcVa4KQDhXFEM1BK3NNjfSF2h2pR/WQ8DKhdK2hwVvq1U3QhJKZvwkMd24G4iK/oreQIcZuUchBRZ928QfnAnW00QfrSkCAwEAAaOCAwUwggMBMB8GA1UdIwQYMBaAFGjAEhYYDq/O9oemMlejRlFdywcnMB0GA1UdDgQWBBTpJ9BIOApMGcpntWM73jdR3e6/LDAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIwQDA0BgsrBgEEAbIxAQICBzAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgEwgYQGCCsGAQUFBwEBBHgwdjBPBggrBgEFBQcwAoZDaHR0cDovL2NydC5zZWN0aWdvLmNvbS9TZWN0aWdvUHVibGljU2VydmVyQXV0aGVudGljYXRpb25DQURWUjM2LmNydDAjBggrBgEFBQcwAYYXaHR0cDovL29jc3Auc2VjdGlnby5jb20wLwYDVR0RBCgwJoISKi5jbG91ZG1haWwuY29tLmhrghBjbG91ZG1haWwuY29tLmhrMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdgDXbX0Q0af1d8LH6V/XAL/5gskzWmXh0LMBcxfAyMVpdwAAAZq+T/RrAAAEAwBHMEUCIQC2rN3dmS16J90I4nd2XG9B661/nVaCxlUPShvGhCREUwIgBdsHtXBMaH/DOxDg87BnsL+kH9dAHx9Uo+jF+6gN1sMAdgCvZ4g7V7BO3Y+m2X72LqjrgQrHcWDwJF5V1gwv54WHOgAAAZq+T/UlAAAEAwBHMEUCIBkwqVMMx2i5NoOMDEnG8AtDdpsSiOEDZrLbIXzRRHKTAiEAjFKOHswjanFiEC8uO6y7cIbOL3khU4GnYVDVE/M8pgIAdQCsqzBwbOvshDH0E9L0kV8RHkIkQ7HypoxPPCs7px4CwwAAAZq+T/RjAAAEAwBGMEQCIH6TyLeL9gDnu786Z+E3vHS0bH9vwGfZ0j3Y17yuiSkyAiAKddxxbHqqFi12vCaMN5web7VBrlI/OrgYpnMcanxKQDANBgkqhkiG9w0BAQsFAAOCAYEAgmHl2FVvEWMSLkmOUf6viRVAFjVgDDR5NyGgRl/Ofd56kIRUUQl5UWvM9ge26WMbqfrGDGUz08EWDGcNnKxKYhPwlu3IcJp5wPUTWq3dJb3zqgAqBg7dN62B/3RusSBp1ZEmv4gDTLMcOTFc1EFCbfxY45jcTm7ooAsAgXhbLn/sfv46bpLutM4M5uJGBycWVf5kEqzIICVZpv7XmnRF1MVtMQ/10cpJp/4svsoyzpXFLt4RIFG8co2cBPWoYDaZNAtX03Cbu8Cn9TOQyP0MOURcg4RlpfxGUMsvPWGzy3eINJQzXktjrPvQWITFMRvjcGFyhcfQm+6ts2M8AWRKZhiQ+oAtE79kVI30lIwS0mc4N9psePk6ltTHD2fnvNkuP4CGe4DIXF1dW6Nkqnfd4o0DkoYR4IkSObn5mBsF7kMvv7HQXaHAYwz7Mtcn5aKKRA1pRboX6Kl7D/gnmT/72WJCOS1sra/M6xYRx+PwpfOkRFz47FI7XL8eamIVfDJm",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-21T10:25:21.736Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<html><head><META HTTP-EQUIV=\"Cache-control\" CONTENT=\"no-cache\"><META HTTP-EQUIV=\"refresh\" CONTENT=\"0;URL=/cgi-sys/defaultwebpage.cgi\"></head><body></body></html>\n",
"body_murmur": -1507725539,
"body_sha256": "9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24",
"component": [
"Apache HTTP Server"
],
"content_length": 163,
"headers": {
"accept_ranges": [
"bytes"
],
"cache_control": [
"no-cache, no-store, must-revalidate"
],
"content_length": [
"163"
],
"content_type": [
"text/html"
],
"date": [
"Wed, 31 Dec 2025 05:55:59 GMT"
],
"expires": [
"0"
],
"last_modified": [
"Wed, 17 Jun 2020 20:01:33 GMT"
],
"pragma": [
"no-cache"
],
"server": [
"Apache"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.239.58.90",
"path": "",
"scheme": "http"
}
},
"status_code": 200
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "http://182.239.58.90/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-31T05:56:00.981Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<html><head><META HTTP-EQUIV=\"Cache-control\" CONTENT=\"no-cache\"><META HTTP-EQUIV=\"refresh\" CONTENT=\"0;URL=/cgi-sys/defaultwebpage.cgi\"></head><body></body></html>\n",
"body_murmur": -1507725539,
"body_sha256": "9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24",
"component": [
"Apache HTTP Server"
],
"content_length": 163,
"headers": {
"accept_ranges": [
"bytes"
],
"cache_control": [
"no-cache, no-store, must-revalidate"
],
"content_length": [
"163"
],
"content_type": [
"text/html"
],
"date": [
"Tue, 30 Dec 2025 20:09:33 GMT"
],
"expires": [
"0"
],
"last_modified": [
"Wed, 17 Jun 2020 20:01:33 GMT"
],
"pragma": [
"no-cache"
],
"server": [
"Apache"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.239.58.90",
"path": "",
"scheme": "https"
}
},
"status_code": 200
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://crt.sectigo.com/SectigoPublicServerAuthenticationCADVR36.crt"
],
"ocsp_urls": [
"http://ocsp.sectigo.com"
]
},
"authority_key_id": "68c01216180eafcef687a63257a346515dcb0727",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"cps": [
"https://sectigo.com/CPS"
],
"id": "1.3.6.1.4.1.6449.1.2.2.7"
},
{
"id": "2.23.140.1.2.1"
}
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : D7:6D:7D:10:D1:A7:F5:77:C2:C7:E9:5F:D7:00:BF:F9:\n 82:C9:33:5A:65:E1:D0:B3:01:73:17:C0:C8:C5:69:77\n Timestamp : Nov 26 03:58:22.315 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:B6:AC:DD:DD:99:2D:7A:27:DD:08:E2:\n 77:76:5C:6F:41:EB:AD:7F:9D:56:82:C6:55:0F:4A:1B:\n C6:84:24:44:53:02:20:05:DB:07:B5:70:4C:68:7F:C3:\n 3B:10:E0:F3:B0:67:B0:BF:A4:1F:D7:40:1F:1F:54:A3:\n E8:C5:FB:A8:0D:D6:C3\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : AF:67:88:3B:57:B0:4E:DD:8F:A6:D9:7E:F6:2E:A8:EB:\n 81:0A:C7:71:60:F0:24:5E:55:D6:0C:2F:E7:85:87:3A\n Timestamp : Nov 26 03:58:22.501 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:20:19:30:A9:53:0C:C7:68:B9:36:83:8C:0C:\n 49:C6:F0:0B:43:76:9B:12:88:E1:03:66:B2:DB:21:7C:\n D1:44:72:93:02:21:00:8C:52:8E:1E:CC:23:6A:71:62:\n 10:2F:2E:3B:AC:BB:70:86:CE:2F:79:21:53:81:A7:61:\n 50:D5:13:F3:3C:A6:02\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : AC:AB:30:70:6C:EB:EC:84:31:F4:13:D2:F4:91:5F:11:\n 1E:42:24:43:B1:F2:A6:8C:4F:3C:2B:3B:A7:1E:02:C3\n Timestamp : Nov 26 03:58:22.307 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:44:02:20:7E:93:C8:B7:8B:F6:00:E7:BB:BF:3A:67:\n E1:37:BC:74:B4:6C:7F:6F:C0:67:D9:D2:3D:D8:D7:BC:\n AE:89:29:32:02:20:0A:75:DC:71:6C:7A:AA:16:2D:76:\n BC:26:8C:37:9C:1E:6F:B5:41:AE:52:3F:3A:B8:18:A6:\n 73:1C:6A:7C:4A:40",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"*.cloudmail.com.hk",
"cloudmail.com.hk"
]
},
"subject_key_id": "e927d048380a4c19ca67b5633bde3751ddeebf2c"
},
"fingerprint_md5": "6C0816CE9ACAE6FF77AD42A10B055798",
"fingerprint_sha1": "2CFF31E19FE5897C323EDF4F0A41DA08F956D93D",
"fingerprint_sha256": "81E8A0AED3BF3BA31DCECFF1F7D6AFA7A276DDE752E394247E5A85A66708EA38",
"issuer": {
"common_name": [
"Sectigo Public Server Authentication CA DV R36"
],
"country": [
"GB"
],
"organization": [
"Sectigo Limited"
]
},
"issuer_dn": "/C=GB/O=Sectigo Limited/CN=Sectigo Public Server Authentication CA DV R36",
"jarm": "07d14d16d21d21d00042d43d00000076e5b3c488a88e5790970b78ffb8afc2",
"redacted": false,
"revocation": {
"ocsp": {
"next_update": "2026-01-06T03:47:37",
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "219426588080579543213152029640570724195",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "d76d7d10d1a7f577c2c7e95fd700bff982c9335a65e1d0b3017317c0c8c56977",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100b6acdddd992d7a27dd08e277765c6f41ebad7f9d5682c6550f4a1bc684244453022005db07b5704c687fc33b10e0f3b067b0bfa41fd7401f1f54a3e8c5fba80dd6c3"
},
"timestamp": "2025-11-26T03:58:22.315000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "af67883b57b04edd8fa6d97ef62ea8eb810ac77160f0245e55d60c2fe785873a",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304502201930a9530cc768b936838c0c49c6f00b43769b1288e10366b2db217cd14472930221008c528e1ecc236a7162102f2e3bacbb7086ce2f79215381a76150d513f33ca602"
},
"timestamp": "2025-11-26T03:58:22.501000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "acab30706cebec8431f413d2f4915f111e422443b1f2a68c4f3c2b3ba71e02c3",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304402207e93c8b78bf600e7bbbf3a67e137bc74b46c7f6fc067d9d23dd8d7bcae89293202200a75dc716c7aaa162d76bc268c379c1e6fb541ae523f3ab818a6731c6a7c4a40"
},
"timestamp": "2025-11-26T03:58:22.307000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"*.cloudmail.com.hk"
]
},
"subject_alt_name": {
"dns_names": [
"*.cloudmail.com.hk",
"cloudmail.com.hk"
],
"extended_dns_names": [
{
"domain": "cloudmail",
"fld": "cloudmail.com.hk",
"subdomain": "*",
"tld": "com.hk"
},
{
"domain": "cloudmail",
"fld": "cloudmail.com.hk",
"tld": "com.hk"
}
]
},
"subject_dn": "/CN=*.cloudmail.com.hk",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a08705642824e20f5d1e9b1faa5e1528ec2ea085d56fa346a3eb55d7ec3038a8",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "a0cfb6b72da387028aca9bdb1e9a1f154cc733d6bcc2fc9d138cb02da1560b7f",
"tbs_noct_fingerprint": "8c72a1ae95b4092fd5a7051a2a16222f745b0b20113ceaa8a89dfd23b0b86221",
"validation_level": "DV",
"validity": {
"length_seconds": 34214400,
"not_after": "2026-12-26T23:59:59",
"not_before": "2025-11-26T00:00:00"
},
"version": 2
},
"fingerprint_sha256": "81E8A0AED3BF3BA31DCECFF1F7D6AFA7A276DDE752E394247E5A85A66708EA38",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "https://182.239.58.90/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-31T15:37:09.804Z"
}
],
"services_hash": "c1b810d4cb9c8275c70bfa24c029c42e660a35515fbc700d969f0204ef8e93af",
"last_updated_at": "2025-12-31T15:37:09.804Z",
"banner": [
"http",
"tls",
"ftp"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"80/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"80/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
}
}
}