Lotusdew Q7zyq6

ly
On
se
lU
Lotusdew
Report generated by Nessus™ Mon, 09 Oct 2023 19:01:44 India Standard Time
ia
r Tr
Fo
TABLE OF CONTENTS
Vulnerabilities by Host
• 10.13.100.100............................................................................................................................................................. 4
• 10.13.100.101...........................................................................................................................................................22
• 10.13.100.102...........................................................................................................................................................30
• 10.13.100.103...........................................................................................................................................................98
ly
• 10.13.100.104.........................................................................................................................................................200
• 10.13.100.105.........................................................................................................................................................255
On
• 10.13.100.106.........................................................................................................................................................274
• 10.13.100.110.........................................................................................................................................................315
• 10.13.100.111.........................................................................................................................................................372
•
•
se
10.13.100.115.........................................................................................................................................................411
10.13.100.116.........................................................................................................................................................452
lU
• 10.13.100.118.........................................................................................................................................................698
• 10.13.100.119.........................................................................................................................................................746
• 10.13.100.120.........................................................................................................................................................807
ia
• 10.13.100.125.........................................................................................................................................................815
• 10.13.100.126.........................................................................................................................................................870
Tr
• 10.13.100.131.........................................................................................................................................................875
• 10.13.100.137.........................................................................................................................................................924
• 10.13.100.139.........................................................................................................................................................928
r
• 10.13.100.140.........................................................................................................................................................994
Fo
• 10.13.100.144.......................................................................................................................................................1027
• 10.13.100.147.......................................................................................................................................................1055
• 10.13.100.151.......................................................................................................................................................1155
• 10.13.100.154.......................................................................................................................................................1195
• 10.13.100.159.......................................................................................................................................................1200
• 10.13.100.254.......................................................................................................................................................1241
ly
On
se
lU
Vulnerabilities by Host
ria
rT
Fo
10.13.100.100
0 1 1 0 12
CRITICAL HIGH MEDIUM LOW INFO
Host Information
IP: 10.13.100.100
ly
MAC Address: 18:FD:74:E0:D3:0E 18:FD:74:E0:D3:0F 18:FD:74:E0:D3:10 18:FD:74:E0:D3:11
18:FD:74:E0:D3:12 18:FD:74:E0:D3:13 18:FD:74:E0:D3:14 18:FD:74:E0:D3:15
18:FD:74:E0:D3:16 18:FD:74:E0:D3:17
On
Vulnerabilities
41028 - SNMP Agent Default Community Name (public)
Synopsis se
The community name of the remote SNMP server can be guessed.
lU
Description
It is possible to obtain the default community name of the remote SNMP server.
ia
An attacker may use this information to gain more knowledge about the remote host, or to change the
configuration of the remote system (if the default community allows such modifications).
Tr
Solution
Disable the SNMP service on the remote host if you do not use it.
Either filter incoming UDP packets going to this port, or change the default community string.
r
Risk Factor
Fo
High
VPR Score
5.9
CVSS v2.0 Base Score
7.5 (CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
10.13.100.100 4
CVSS v2.0 Temporal Score
5.5 (CVSS2#E:U/RL:OF/RC:C)
References
BID 2112
CVE CVE-1999-0517
Plugin Information
Published: 2002/11/25, Modified: 2022/06/01
Plugin Output
udp/161/snmp
The remote SNMP server replies to the following default community

string :
public
10.13.100.100 5
76474 - SNMP 'GETBULK' Reflection DDoS
Synopsis
The remote SNMP daemon is affected by a vulnerability that allows a reflected distributed denial of service
attack.
Description
The remote SNMP daemon is responding with a large amount of data to a 'GETBULK' request with a larger
than normal value for 'max-repetitions'. A remote attacker can use this SNMP server to conduct a reflected
distributed denial of service attack on an arbitrary remote host.
See Also
http://www.nessus.org/u?8b551b5c
Solution
Disable the SNMP service on the remote host if you do not use it.
Otherwise, restrict and monitor access to this service, and consider changing the default 'public'
community string.
Risk Factor
Medium
VPR Score
3.6
5.0 (CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
References
CVE CVE-2008-4309
Plugin Information
Plugin Output
10.13.100.100 6
udp/161/snmp
Nessus was able to determine the SNMP service can be abused in an SNMP
Reflection DDoS attack :
Request size (bytes) : 42

Response size (bytes) : 1401
10.13.100.100 7
35716 - Ethernet Card Manufacturer Detection
Synopsis
The manufacturer can be identified from the Ethernet OUI.
Description
Each ethernet MAC address starts with a 24-bit Organizationally Unique Identifier (OUI). These OUIs are
registered by IEEE.
See Also
https://standards.ieee.org/faqs/regauth.html
http://www.nessus.org/u?794673b4
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The following card manufacturers were identified :
18:FD:74:E0:D3:0E : Routerboard.com
18:FD:74:E0:D3:0F : Routerboard.com
18:FD:74:E0:D3:10 : Routerboard.com
10.13.100.100 8
86420 - Ethernet MAC Addresses
Synopsis
This plugin gathers MAC addresses from various sources and consolidates them into a list.
Description
This plugin gathers MAC addresses discovered from both remote probing of the host (e.g. SNMP and
Netbios) and from running local checks (e.g. ifconfig). It then consolidates the MAC addresses into a single,
unique, and uniform list.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The following is a consolidated list of detected MAC addresses:

- 18:FD:74:E0:D3:0E
- 18:FD:74:E0:D3:0F
- 18:FD:74:E0:D3:10
- 18:FD:74:E0:D3:11
- 18:FD:74:E0:D3:12
- 18:FD:74:E0:D3:13
- 18:FD:74:E0:D3:14
- 18:FD:74:E0:D3:15
- 18:FD:74:E0:D3:16
- 18:FD:74:E0:D3:17
10.13.100.100 9
24260 - HyperText Transfer Protocol (HTTP) Information
Synopsis
Some information about the remote HTTP configuration can be extracted.
Description
This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-
Alive and HTTP pipelining are enabled, etc...
This test is informational only and does not denote any security problem.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Response Code : HTTP/1.0 303 Use Instead
Protocol version : HTTP/1.0

SSL : no
Keep-Alive : no
Options allowed : (Not implemented)
Headers :
Location: /index.html
Content-Type: text/html
Response Body :
10.13.100.100 10
11219 - Nessus SYN scanner
Synopsis
It is possible to determine which TCP ports are open.
Description
This plugin is a SYN 'half-open' port scanner. It shall be reasonably quick even against a firewalled target.
Note that SYN scans are less intrusive than TCP (full connect) scans against broken services, but they might
cause problems for less robust firewalls and also leave unclosed connections on the remote target, if the
network is loaded.
Solution
Protect your target with an IP filter.
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Port 80/tcp was found to be open
10.13.100.100 11
19506 - Nessus Scan Information
Synopsis
This plugin displays information about the Nessus scan.
Description
This plugin displays, for each tested host, information about the scan itself :
- The version of the plugin set.

- The type of scanner (Nessus or Nessus Home).
- The version of the Nessus Engine.
- The port scanner(s) used.
- The port range scanned.
- The ping round trip time
- Whether credentialed or third-party patch management checks are possible.
- Whether the display of superseded patches is enabled
- The date of the scan.
- The duration of the scan.
- The number of hosts scanned in parallel.
- The number of checks done in parallel.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Information about this scan :
Nessus version : 10.6.1

Nessus build : 20021
Plugin feed version : 202310082203
Scanner edition used : Nessus
Scanner OS : WINDOWS
Scanner distribution : win-x86-64
Scan type : Normal
Scan name : Lotusdew
10.13.100.100 12
Scan policy used : Advanced Scan
Scanner IP : 10.13.100.122
Port scanner(s) : nessus_syn_scanner
Port range : default
Ping RTT : Unavailable
Thorough tests : no
Experimental tests : no
Plugin debugging enabled : no
Paranoia level : 1
Report verbosity : 1
Safe checks : yes
Optimize the test : yes
Credentialed checks : no
Patch management checks : None
Display superseded patches : yes (supersedence plugin launched)
CGI scanning : disabled
Web application tests : disabled
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
Allow post-scan editing : Yes
Nessus Plugin Signature Checking : Enabled
Audit File Signature Checking : Disabled
Scan Start Date : 2023/10/9 14:36 India Standard Time
Scan duration : 658 sec
Scan for malware : no
10.13.100.100 13
50350 - OS Identification Failed
Synopsis
It was not possible to determine the remote operating system.
Description
Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc), it was possible to gather one or
more fingerprints from the remote system. Unfortunately, though, Nessus does not currently know how to
use them to identify the overall system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
If you think these signatures would help us improve OS fingerprinting,

please send them to :
os-signatures@nessus.org
Be sure to include a brief description of the device itself, such as

the actual operating system or product / model names.
SNMP:!:CSS610-8G-2S+ SwOS v2.14

SinFP:!:
P1:B11003:F0x12:W2464:O0204ffff:M1232:
P2:B11003:F0x12:W2464:O0204ffff:M1232:
P3:B00000:F0x00:W0:O0:M0
P4:190701_7_p=80
10.13.100.100 14
35296 - SNMP Protocol Version Detection
Synopsis
This plugin reports the protocol version negotiated with the remote SNMP agent.
Description
By sending an SNMP 'get-next-request', it is possible to determine the protocol version of the remote SNMP
agent.
See Also
https://en.wikipedia.org/wiki/Simple_Network_Management_Protocol
Solution
Disable the SNMP service on the remote host if you do not use it, or filter incoming UDP packets going to
this port.
Risk Factor
None
Plugin Information
Plugin Output
udp/161/snmp
Nessus has negotiated SNMP communications at SNMPv2c.
10.13.100.100 15
10800 - SNMP Query System Information Disclosure
Synopsis
The System Information of the remote host can be obtained via SNMP.
Description
It is possible to obtain the system information about the remote host by sending SNMP requests with the
OID 1.3.6.1.2.1.1.1.
An attacker may use this information to gain more knowledge about the target host.
Solution
this port.
Risk Factor
None
Plugin Information
Plugin Output
udp/161/snmp
System information :
sysDescr : CSS610-8G-2S+ SwOS v2.14
sysObjectID : 1.3.6.1.4.1.14988.2
sysUptime : 0d 14h 8m 50s
sysContact :
sysName : MikroTik
sysLocation :
sysServices : 2
10.13.100.100 16
10551 - SNMP Request Network Interfaces Enumeration
Synopsis
The list of network interfaces cards of the remote host can be obtained via SNMP.
Description
It is possible to obtain the list of the network interfaces installed on the remote host by sending SNMP
requests with the OID 1.3.6.1.2.1.2.1.0
An attacker may use this information to gain more knowledge about the target host.
Solution
this port.
Risk Factor
None
Plugin Information
Plugin Output
udp/161/snmp
Interface 1 information :
ifIndex : 1
ifDescr : Port1
ifPhysAddress : 18fd74e0d30e
ifIndex : 2
ifDescr : Port2
ifPhysAddress : 18fd74e0d30f
ifIndex : 3
ifDescr : Port3
ifPhysAddress : 18fd74e0d310
ifIndex : 4
ifDescr : Port4
ifIndex : 5
10.13.100.100 17
ifDescr : Port5
ifIndex : 6
ifDescr : Port6
ifIndex : 7
ifDescr : Port7
ifIndex : 8
ifDescr : Port8
ifIndex : 9
ifDescr : SFP1
ifIndex : 10
ifDescr : SFP2
10.13.100.100 18
40448 - SNMP Supported Protocols Detection
Synopsis
This plugin reports all the protocol versions successfully negotiated with the remote SNMP agent.
Description
Extend the SNMP settings data already gathered by testing for\ SNMP versions other than the highest
negotiated.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/161/snmp
This host supports SNMP version SNMPv1.

This host supports SNMP version SNMPv2c.
10.13.100.100 19
22964 - Service Detection
Synopsis
The remote service could be identified.
Description
Nessus was able to identify the remote service by its banner or by looking at the error message it sends
when it receives an HTTP request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
A web server is running on this port.
10.13.100.100 20
10287 - Traceroute Information
Synopsis
It was possible to obtain traceroute information.
Description
Makes a traceroute to the remote host.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0
For your information, here is the traceroute from 10.13.100.122 to 10.13.100.100 :

10.13.100.122
10.13.100.100
Hop Count: 1
10.13.100.100 21
10.13.100.101
0 0 0 0 6
Host Information
IP: 10.13.100.101
ly
Vulnerabilities
On
10114 - ICMP Timestamp Request Remote Date Disclosure
Synopsis
It is possible to determine the exact time set on the remote host.
Description
se
lU
The remote host answers to an ICMP timestamp request. This allows an attacker to know the date that
is set on the targeted machine, which may assist an unauthenticated, remote attacker in defeating time-
based authentication protocols.
Timestamps returned from machines running Windows Vista / 7 / 2008 / 2008 R2 are deliberately incorrect,
but usually within 1000 seconds of the actual system time.
ia
Solution
Tr
Filter out the ICMP timestamp requests (13), and the outgoing ICMP timestamp replies (14).
Risk Factor
None
r
Fo
0.0 (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N)
0.0 (CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:N)
References
CVE CVE-1999-0524
10.13.100.101 22
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
The difference between the local and remote clocks is -8305 seconds.
10.13.100.101 23
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5005
10.13.100.101 24
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.101 25
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.101 26
50350 - OS Identification Failed
Synopsis
It was not possible to determine the remote operating system.
Description
Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc), it was possible to gather one or
more fingerprints from the remote system. Unfortunately, though, Nessus does not currently know how to
use them to identify the overall system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
If you think these signatures would help us improve OS fingerprinting,

please send them to :
os-signatures@nessus.org
Be sure to include a brief description of the device itself, such as

the actual operating system or product / model names.
SinFP:!:
P1:B10113:F0x12:W5840:O0204ffff:M1460:
P2:B10113:F0x12:W5792:O0204ffff0402080affffffff4445414401030301:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190701_7_p=5005
10.13.100.101 27
25220 - TCP/IP Timestamps Supported
Synopsis
The remote service implements TCP timestamps.
Description
The remote host implements TCP timestamps, as defined by RFC1323. A side effect of this feature is that
the uptime of the remote host can sometimes be computed.
See Also
http://www.ietf.org/rfc/rfc1323.txt
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.101 28
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.101
Hop Count: 1
10.13.100.101 29
10.13.100.102
1 2 10 1 35
Host Information
IP: 10.13.100.102
ly
OS: Dell iDRAC Controller, KYOCERA Printer, Linux Kernel 2.6
On
Vulnerabilities
20007 - SSL Version 2 and 3 Protocol Detection
Synopsis
se
The remote service encrypts traffic using a protocol with known weaknesses.
lU
Description
The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are
affected by several cryptographic flaws, including:
- An insecure padding scheme with CBC ciphers.

ia
- Insecure session renegotiation and resumption schemes.
An attacker can exploit these flaws to conduct man-in-the-middle attacks or to decrypt communications
Tr
between the affected service and clients.
Although SSL/TLS has a secure means for choosing the highest supported version of the protocol (so
that these versions will be used only if the client or server support nothing better), many web browsers
implement this in an unsafe way that allows an attacker to downgrade a connection (such as in POODLE).
Therefore, it is recommended that these protocols be disabled entirely.
r
NIST has determined that SSL 3.0 is no longer acceptable for secure communications. As of the date of
Fo
enforcement found in PCI DSS v3.1, any version of SSL will not meet the PCI SSC's definition of 'strong
cryptography'.
See Also
https://www.schneier.com/academic/paperfiles/paper-ssl.pdf
http://www.nessus.org/u?b06c7e95
http://www.nessus.org/u?247c4540
https://www.openssl.org/~bodo/ssl-poodle.pdf
http://www.nessus.org/u?5d15ba70
10.13.100.102 30
https://www.imperialviolet.org/2014/10/14/poodle.html
https://tools.ietf.org/html/rfc7507
Solution
Consult the application's documentation to disable SSL 2.0 and 3.0.

Use TLS 1.2 (with approved cipher suites) or higher instead.
Risk Factor
Critical
9.8 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
10.0 (CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Plugin Information
Plugin Output
tcp/443/www
- SSLv3 is enabled and the server supports at least one cipher.

Explanation: TLS 1.0 and SSL 3.0 cipher suites may be used with SSLv3
Low Strength Ciphers (<= 64-bit key)
Name Code KEX Auth Encryption MAC

---------------------- ---------- --- ---- --------------------- ---
DES-CBC-SHA RSA RSA DES-CBC(56)
SHA1
Medium Strength Ciphers (> 64-bit and < 112-bit key, or 3DES)

---------------------- ---------- --- ---- --------------------- ---
DES-CBC3-SHA RSA RSA 3DES-CBC(168)
SHA1
High Strength Ciphers (>= 112-bit key)

---------------------- ---------- --- ---- --------------------- ---
RC4-MD5 RSA RSA RC4(128) MD5
RC4-SHA RSA RSA RC4(128)
SHA1
10.13.100.102 31
The fields above are :
{Tenable ciphername}
{Cipher ID code}
Kex={key exchange}
Auth={authentication}
Encrypt={symmetric encryption method}
MAC={message authentication code}
{export flag}
10.13.100.102 32
35291 - SSL Certificate Signed Using Weak Hashing Algorithm
Synopsis
An SSL certificate in the certificate chain has been signed using a weak hash algorithm.
Description
The remote service uses an SSL certificate chain that has been signed using a cryptographically weak
hashing algorithm (e.g. MD2, MD4, MD5, or SHA1). These signature algorithms are known to be vulnerable
to collision attacks. An attacker can exploit this to generate another certificate with the same digital
signature, allowing an attacker to masquerade as the affected service.
Note that this plugin reports all SSL certificate chains signed with SHA-1 that expire after January 1, 2017
as vulnerable. This is in accordance with Google's gradual sunsetting of the SHA-1 cryptographic hash
algorithm.
Note that certificates in the chain that are contained in the Nessus CA database (known_CA.inc) have been
ignored.
See Also
http://www.nessus.org/u?9bb87bf2
http://www.nessus.org/u?e120eea1
http://www.nessus.org/u?5d894816
http://www.nessus.org/u?51db68aa
http://www.nessus.org/u?9dc7bfba
Solution
Contact the Certificate Authority to have the SSL certificate reissued.
Risk Factor
Medium
7.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
6.7 (CVSS:3.0/E:P/RL:O/RC:C)
VPR Score
5.1
10.13.100.102 33
5.0 (CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.9 (CVSS2#E:POC/RL:OF/RC:C)
References
BID 11849
BID 33065
CVE CVE-2004-2761
XREF CERT:836068
XREF CWE:310
Plugin Information
Plugin Output
tcp/443/www
The following certificates were part of the certificate chain sent by

the remote host, but contain hashes that are considered to be weak.
Subject : C=CN/ST=Guangdong/L=Shenzhen/O=TP-LINK Technologies CO., LTD./CN=TP-LINK CA/

E=service@tp-link.com.cn
Signature Algorithm : SHA-1 With RSA Encryption
Valid From : Mar 20 00:59:24 2019 GMT
Valid To : Mar 15 00:59:24 2039 GMT
Raw PEM certificate :
-----BEGIN CERTIFICATE-----
MIIDAjCCAmugAwIBAgIJALQrrzOjHAH5MA0GCSqGSIb3DQEBBQUAMIGZMQswCQYDVQQGEwJDTjESMBAGA1UECAwJR3Vhbmdkb25nMREwDwYDVQQHDA
+202KbYXca6j6/pGQBhhYN6ClDe7yO+vigBPFCwo/3kPHBRwcl/771Qz9VLltkbU895eh6OoWEJ9/
oLNBngb4t2IVF3H2Udm2Nr7f9AgMBAAGjUDBOMB0GA1UdDgQWBBRpqBUtNIfzEtaseZYJBrKvdmGy1zAfBgNVHSMEGDAWgBRpqBUtNIfzEtaseZYJB
MA0GCSqGSIb3DQEBBQUAA4GBAHi9vshrVbqihvmxWfLx0Ywn6pi8Mj0mDfvM34iAufz434z12UHh+63GKvceSdHDisIOFFuQ0k
+3lWhDOvNZxjrCuephKmbvWMPT5Iw61+BNl9vJf1m01YHN+lVLNYPdjjmtpVrRZTrzHTPNhRuWKDLeNlgMDpRzKRN1sw4QRlX2
-----END CERTIFICATE-----
10.13.100.102 34
42873 - SSL Medium Strength Cipher Suites Supported (SWEET32)
Synopsis
The remote service supports the use of medium strength SSL ciphers.
Description
The remote host supports the use of SSL ciphers that offer medium strength encryption. Nessus regards
medium strength as any encryption that uses key lengths at least 64 bits and less than 112 bits, or else that
uses the 3DES encryption suite.
Note that it is considerably easier to circumvent medium strength encryption if the attacker is on the same
physical network.
See Also
https://www.openssl.org/blog/blog/2016/08/24/sweet32/
https://sweet32.info
Solution
Reconfigure the affected application if possible to avoid use of medium strength ciphers.
Risk Factor
Medium
7.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
VPR Score
6.1
5.0 (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
References
CVE CVE-2016-2183
Plugin Information
10.13.100.102 35
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
DES-CBC3-SHA 0x00, 0x0A RSA RSA 3DES-CBC(168)
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.102 36
50686 - IP Forwarding Enabled
Synopsis
The remote host has IP forwarding enabled.
Description
The remote host has IP forwarding enabled. An attacker can exploit this to route packets through the host
and potentially bypass some firewalls / routers / NAC filtering.
Unless the remote host is a router, it is recommended that you disable IP forwarding.
Solution
On Linux, you can disable IP forwarding by doing :
echo 0 > /proc/sys/net/ipv4/ip_forward
On Windows, set the key 'IPEnableRouter' to 0 under
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters
On Mac OS X, you can disable IP forwarding by executing the command :
sysctl -w net.inet.ip.forwarding=0
For other systems, check with your vendor.
Risk Factor
Medium
6.5 (CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L)
VPR Score
4.0
5.8 (CVSS2#AV:A/AC:L/Au:N/C:P/I:P/A:P)
References
CVE CVE-1999-0511
Plugin Information
10.13.100.102 37
Plugin Output
tcp/0
IP forwarding appears to be enabled on the remote host.
Detected local MAC Address : 6c94662e3916

Response from local MAC Address : 6c94662e3916
Detected Gateway MAC Address : 2887ba71727f

Response from Gateway MAC Address : 2887ba71727f
10.13.100.102 38
136929 - JQuery 1.2 < 3.5.0 Multiple XSS
Synopsis
The remote web server is affected by multiple cross site scripting vulnerability.
Description
According to the self-reported version in the script, the version of JQuery hosted on the remote web server
is greater than or equal to 1.2 and prior to 3.5.0. It is, therefore, affected by multiple cross site scripting
vulnerabilities.
Note, the vulnerabilities referenced in this plugin have no security impact on PAN-OS, and/or the scenarios
required for successful exploitation do not exist on devices running a PAN-OS release.
See Also
https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
https://security.paloaltonetworks.com/PAN-SA-2020-0007
Solution
Upgrade to JQuery version 3.5.0 or later.
Risk Factor
Medium
6.1 (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
VPR Score
5.7
4.3 (CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
10.13.100.102 39
STIG Severity
II
References
CVE CVE-2020-11022
CVE CVE-2020-11023
XREF IAVB:2020-B-0030
XREF CEA-ID:CEA-2021-0004
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.102/js/libs/jquery.min.js
Installed version : 1.10.0
Fixed version : 3.5.0
10.13.100.102 40
Synopsis
Description
vulnerabilities.
See Also
Solution
Risk Factor
Medium
VPR Score
5.7
10.13.100.102 41
STIG Severity
II
References
CVE CVE-2020-11022
CVE CVE-2020-11023
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.102/js/libs/jquery.min.js
10.13.100.102 42
51192 - SSL Certificate Cannot Be Trusted
Synopsis
The SSL certificate for this service cannot be trusted.
Description
The server's X.509 certificate cannot be trusted. This situation can occur in three different ways, in which
the chain of trust can be broken, as stated below :
- First, the top of the certificate chain sent by the server might not be descended from a known public
certificate authority. This can occur either when the top of the chain is an unrecognized, self-signed
certificate, or when intermediate certificates are missing that would connect the top of the certificate chain
to a known public certificate authority.
- Second, the certificate chain may contain a certificate that is not valid at the time of the scan. This can
occur either when the scan occurs before one of the certificate's 'notBefore' dates, or after one of the
certificate's 'notAfter' dates.
- Third, the certificate chain may contain a signature that either didn't match the certificate's information
or could not be verified. Bad signatures can be fixed by getting the certificate with the bad signature to be
re-signed by its issuer. Signatures that could not be verified are the result of the certificate's issuer using a
signing algorithm that Nessus either does not support or does not recognize.
If the remote host is a public host in production, any break in the chain makes it more difficult for users
to verify the authenticity and identity of the web server. This could make it easier to carry out man-in-the-
middle attacks against the remote host.
See Also
https://www.itu.int/rec/T-REC-X.509/en
https://en.wikipedia.org/wiki/X.509
Solution
Purchase or generate a proper SSL certificate for this service.
Risk Factor
Medium
6.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
6.4 (CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N)
10.13.100.102 43
Plugin Information
Plugin Output
tcp/443/www
The following certificate was at the top of the certificate

chain sent by the remote host, but it is signed by an unknown
certificate authority :
|-Subject : C=CN/ST=Guangdong/L=Shenzhen/O=TP-LINK Technologies CO., LTD./CN=TP-LINK CA/

|-Issuer : C=CN/ST=Guangdong/L=Shenzhen/O=TP-LINK Technologies CO., LTD./CN=TP-LINK CA/
10.13.100.102 44
65821 - SSL RC4 Cipher Suites Supported (Bar Mitzvah)
Synopsis
The remote service supports the use of the RC4 cipher.
Description
The remote host supports the use of RC4 in one or more cipher suites.
The RC4 cipher is flawed in its generation of a pseudo-random stream of bytes so that a wide variety of
small biases are introduced into the stream, decreasing its randomness.
If plaintext is repeatedly encrypted (e.g., HTTP cookies), and an attacker is able to obtain many (i.e., tens of
millions) ciphertexts, the attacker may be able to derive the plaintext.
See Also
https://www.rc4nomore.com/
http://www.nessus.org/u?ac7327a0
http://cr.yp.to/talks/2013.03.12/slides.pdf
http://www.isg.rhul.ac.uk/tls/
https://www.imperva.com/docs/HII_Attacking_SSL_when_using_RC4.pdf
Solution
Reconfigure the affected application, if possible, to avoid use of RC4 ciphers. Consider using TLS 1.2 with
AES-GCM suites subject to browser and web server support.
Risk Factor
Medium
5.9 (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.4 (CVSS:3.0/E:U/RL:X/RC:C)
VPR Score
4.4
4.3 (CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N)
10.13.100.102 45
3.7 (CVSS2#E:U/RL:ND/RC:C)
References
BID 58796
BID 73684
CVE CVE-2013-2566
CVE CVE-2015-2808
Plugin Information
Plugin Output
tcp/443/www
List of RC4 cipher suites supported by the remote server :

---------------------- ---------- --- ---- --------------------- ---
RC4-MD5 0x00, 0x04 RSA RSA RC4(128) MD5
RC4-SHA 0x00, 0x05 RSA RSA RC4(128)
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.102 46
57582 - SSL Self-Signed Certificate
Synopsis
The SSL certificate chain for this service ends in an unrecognized self-signed certificate.
Description
The X.509 certificate chain for this service is not signed by a recognized certificate authority. If the remote
host is a public host in production, this nullifies the use of SSL as anyone could establish a man-in-the-
middle attack against the remote host.
Note that this plugin does not check for certificate chains that end in a certificate that is not self-signed, but
is signed by an unrecognized certificate authority.
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www
The following certificate was found at the top of the certificate

chain sent by the remote host, but is self-signed and was not
found in the list of known certificate authorities :

10.13.100.102 47
26928 - SSL Weak Cipher Suites Supported
Synopsis
The remote service supports the use of weak SSL ciphers.
Description
The remote host supports the use of SSL ciphers that offer weak encryption.
Note: This is considerably easier to exploit if the attacker is on the same physical network.
See Also
http://www.nessus.org/u?6527892d
Solution
Reconfigure the affected application, if possible to avoid the use of weak ciphers.
Risk Factor
Medium
5.3 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
References
XREF CWE:326
XREF CWE:327
XREF CWE:720
XREF CWE:753
XREF CWE:803
XREF CWE:928
XREF CWE:934
Plugin Information
Plugin Output
10.13.100.102 48
tcp/443/www
Here is the list of weak SSL ciphers supported by the remote server :

---------------------- ---------- --- ---- --------------------- ---
DES-CBC-SHA 0x00, 0x09 RSA RSA DES-CBC(56)
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.102 49
104743 - TLS Version 1.0 Protocol Detection
Synopsis
The remote service encrypts traffic using an older version of TLS.
Description
The remote service accepts connections encrypted using TLS 1.0. TLS 1.0 has a number of cryptographic
design flaws. Modern implementations of TLS 1.0 mitigate these problems, but newer versions of TLS like
1.2 and 1.3 are designed against these flaws and should be used whenever possible.
As of March 31, 2020, Endpoints that aren’t enabled for TLS 1.2 and higher will no longer function properly
with major web browsers and major vendors.
PCI DSS v3.2 requires that TLS 1.0 be disabled entirely by June 30, 2018, except for POS POI terminals (and
the SSL/TLS termination points to which they connect) that can be verified as not being susceptible to any
known exploits.
See Also
https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00
Solution
Enable support for TLS 1.2 and 1.3, and disable support for TLS 1.0.
Risk Factor
Medium
6.5 (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N)
6.1 (CVSS2#AV:N/AC:H/Au:N/C:C/I:P/A:N)
References
XREF CWE:327
Plugin Information
Plugin Output
10.13.100.102 50
tcp/443/www
TLSv1 is enabled and the server supports at least one cipher.
10.13.100.102 51
157288 - TLS Version 1.1 Protocol Deprecated
Synopsis
Description
The remote service accepts connections encrypted using TLS 1.1. TLS 1.1 lacks support for current and
recommended cipher suites. Ciphers that support encryption before MAC computation, and authenticated
encryption modes such as GCM cannot be used with TLS 1.1
As of March 31, 2020, Endpoints that are not enabled for TLS 1.2 and higher will no longer function
properly with major web browsers and major vendors.
See Also
https://datatracker.ietf.org/doc/html/rfc8996
http://www.nessus.org/u?c8ae820d
Solution
Enable support for TLS 1.2 and/or 1.3, and disable support for TLS 1.1.
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/443/www
10.13.100.102 52
TLSv1.1 is enabled and the server supports at least one cipher.
10.13.100.102 53
42263 - Unencrypted Telnet Server
Synopsis
The remote Telnet server transmits traffic in cleartext.
Description
The remote host is running a Telnet server over an unencrypted channel.
Using Telnet over an unencrypted channel is not recommended as logins, passwords, and commands are
transferred in cleartext. This allows a remote, man-in-the-middle attacker to eavesdrop on a Telnet session
to obtain credentials or other sensitive information and to modify traffic exchanged between a client and
server.
SSH is preferred over Telnet since it protects credentials from eavesdropping and can tunnel additional
data streams such as an X11 session.
Solution
Disable the Telnet service and use SSH instead.
Risk Factor
Medium
5.8 (CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N)
Plugin Information
Plugin Output
tcp/23/telnet
Nessus collected the following banner from the remote Telnet server :
------------------------------ snip ------------------------------
***************** User Access Login ********************

User:
------------------------------ snip ------------------------------
10.13.100.102 54
69551 - SSL Certificate Chain Contains RSA Keys Less Than 2048 bits
Synopsis
The X.509 certificate chain used by this service contains certificates with RSA keys shorter than 2048 bits.
Description
At least one of the X.509 certificates sent by the remote host has a key that is shorter than 2048 bits.
According to industry standards set by the Certification Authority/Browser (CA/B) Forum, certificates issued
after January 1, 2014 must be at least 2048 bits.
Some browser SSL implementations may reject keys less than 2048 bits after January 1, 2014. Additionally,
some SSL certificate vendors may revoke certificates less than 2048 bits before January 1, 2014.
Note that Nessus will not flag root certificates with RSA keys less than 2048 bits if they were issued prior to
December 31, 2010, as the standard considers them exempt.
See Also
https://www.cabforum.org/wp-content/uploads/Baseline_Requirements_V1.pdf
Solution
Replace the certificate in the chain with the RSA key less than 2048 bits in length with a longer key, and
reissue any certificates signed by the old certificate.
Risk Factor
Low
Plugin Information
Plugin Output
tcp/443/www
The following certificates were part of the certificate chain

sent by the remote host, but contain RSA keys that are considered
to be weak :

|-RSA Key Length : 1024 bits
10.13.100.102 55
45590 - Common Platform Enumeration (CPE)
Synopsis
It was possible to enumerate CPE names that matched on the remote system.
Description
By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform
Enumeration) matches for various hardware and software products found on a host.
Note that if an official CPE is not available for the product, this plugin computes the best possible CPE
based on the information available from the scan.
See Also
http://cpe.mitre.org/
https://nvd.nist.gov/products/cpe
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The remote operating system matched the following CPE :
cpe:/o:linux:linux_kernel -> Linux Kernel
Following application CPE's matched on the remote system :
cpe:/a:jquery:jquery:1.10.0 -> jQuery

cpe:/a:solarwinds:server_and_application_monitor -> Solarwinds Server and Application Monitor
(SAM)
10.13.100.102 56
84502 - HSTS Missing From HTTPS Server
Synopsis
The remote web server is not enforcing HSTS.
Description
The remote HTTPS server is not enforcing HTTP Strict Transport Security (HSTS). HSTS is an optional
response header that can be configured on the server to instruct the browser to only communicate via
HTTPS. The lack of HSTS allows downgrade attacks, SSL-stripping man-in-the-middle attacks, and weakens
cookie-hijacking protections.
See Also
Solution
Configure the remote web server to use HSTS.
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
The remote HTTPS server does not send the HTTP

"Strict-Transport-Security" header.
10.13.100.102 57
10107 - HTTP Server Type and Version
Synopsis
A web server is running on the remote host.
Description
This plugin attempts to determine the type and the version of the remote web server.
Solution
n/a
Risk Factor
None
References
XREF IAVT:0001-T-0931
Plugin Information
Plugin Output
tcp/80/www
The remote web server type is :
Web Switch
10.13.100.102 58
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
Web Switch
10.13.100.102 59
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Response Code : HTTP/1.1 200 OK

SSL : no
Keep-Alive : yes
Headers :
Server: Web Switch

Connection: Keep-Alive
Keep-Alive:
Persist:
Content-Length: 2074
Date: Fri, 5 Nov 2021 08:57:27 GMT
Last-Modified: Fri, 5 Nov 2021 08:57:27 GMT
Response Body :
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/

xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" />
<meta name="format-detection" content="telephone=no">
<link rel="shortcut icon" href="favicon.ico"/>
<link type="text/css" href="css/widget.css" rel="stylesheet" />
10.13.100.102 60
<link type="text/css" href="themes/steel_gray/css/layout.css" rel="stylesheet" />
<link type="text/css" href="themes/steel_gray/css/style.css" rel="stylesheet" />

<title>Loading...</title>
<noscript>
<meta http-equiv="refresh" content="0; url=error.html"/>
</noscript>
</head>
<body>
<div id="index-view-container" widget="htmlLoader" class="body-wrap">
<div id="module-container"></div>
</div>
<script type="text/javascript" src="js/libs/jquery.min.js"></script>
<script type="text/javascript" src="js/libs/jquery.cookie.min.js"></script>

<script type="text/javascript" src="js/libs/jquery.nicescroll.min.js"></script>
<script type="text/javascript" src="js/libs/interactions.min.js"></script>
<script type="text/javascript" src="js/su/su.js"></script>
<script type="text/javascript" src="js/su/services.js"></script>
<script type="text/javascript" src="js/su/data.js"></script>
<script type="text/javascript" src="js/su/widgets.js"></script>
<script type="text/javascript" src="js/su/managers.js"></script [...]
10.13.100.102 61
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :
Server: Web Switch

Connection: close
Date: Fri, 5 Nov 2021 08:57:27 GMT
Last-Modified: Fri, 5 Nov 2021 08:57:27 GMT
Response Body :

<head>
10.13.100.102 62

<noscript>
</noscript>
</head>
<body>
</div>
<script type="text/javascript" src="js/su/managers.js"></script>
<script type="text/javascri [...]
10.13.100.102 63
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
The difference between the local and remote clocks is 24453 seconds.
10.13.100.102 64
106658 - JQuery Detection
Synopsis
The web server on the remote host uses JQuery.
Description
Nessus was able to detect JQuery on the remote host.
See Also
https://jquery.com/
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.102/js/libs/jquery.min.js
Version : 1.10.0
10.13.100.102 65
Synopsis
Description
See Also
https://jquery.com/
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Version : 1.10.0
10.13.100.102 66
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/22
10.13.100.102 67
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/23/telnet
10.13.100.102 68
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.102 69
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.102 70
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.102 71
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.102 72
11936 - OS Identification
Synopsis
It is possible to guess the remote operating system.
Description
Using a combination of remote probes (e.g., TCP/IP, SMB, HTTP, NTP, SNMP, etc.), it is possible to guess
the name of the remote operating system in use. It is also possible sometimes to guess the version of the
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote operating system : Linux Kernel 2.6

Dell iDRAC Controller
KYOCERA Printer
Confidence level : 59
Method : SinFP
The remote host is running one of these operating systems :

Linux Kernel 2.6
KYOCERA Printer
10.13.100.102 73
50845 - OpenSSL Detection
Synopsis
The remote service appears to use OpenSSL to encrypt traffic.
Description
Based on its response to a TLS request with a specially crafted server name extension, it seems that the
remote service is using the OpenSSL library to encrypt traffic.
Note that this plugin can only detect OpenSSL implementations that have enabled support for TLS
extensions (RFC 4366).
See Also
https://www.openssl.org/
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.102 74
56984 - SSL / TLS Versions Supported
Synopsis
The remote service encrypts communications.
Description
This plugin detects which SSL and TLS versions are supported by the remote service for encrypting
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
This port supports SSLv3/TLSv1.0/TLSv1.1/TLSv1.2.
10.13.100.102 75
10863 - SSL Certificate Information
Synopsis
This plugin displays the SSL certificate.
Description
This plugin connects to every SSL-related port and attempts to extract and dump the X.509 certificate.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Country: CN
State/Province: Guangdong
Locality: Shenzhen
Organization: TP-LINK Technologies CO., LTD.
Common Name: TP-LINK CA
Email Address: service@tp-link.com.cn
Issuer Name:
Country: CN
Locality: Shenzhen
Serial Number: 00 B4 2B AF 33 A3 1C 01 F9
Version: 3
Signature Algorithm: SHA-1 With RSA Encryption
Not Valid Before: Mar 20 00:59:24 2019 GMT

Not Valid After: Mar 15 00:59:24 2039 GMT
Public Key Info:
Algorithm: RSA Encryption

Key Length: 1024 bits
Public Key: 00 B8 82 83 78 52 38 F8 A0 13 B9 07 95 B0 E6 49 0B 16 6E 8D
10.13.100.102 76
72 03 76 FD BE 15 EA 1B 6E E5 21 99 86 54 D8 CB E2 C1 98 80
4E 3B 4F 9B 62 C7 45 0A 79 1D A5 EA DF B6 D3 62 9B 61 77 1A
EA 3E BF A4 64 01 86 16 0D E8 29 43 7B BC 8E FA F8 A0 04 F1
42 C2 8F F7 90 F1 C1 47 07 25 FF BE F5 43 3F 55 2E 5B 64 6D
4F 3D E5 E8 7A 3A 85 84 27 DF E8 2C D0 67 81 BE 2D D8 85 45
DC 7D 94 76 6D 8D AF B7 FD
Exponent: 01 00 01
Signature Length: 128 bytes / 1024 bits

Signature: 00 78 BD BE C8 6B 55 BA A2 86 F9 B1 59 F2 F1 D1 8C 27 EA 98
BC 32 3D 26 0D FB CC DF 88 80 B9 FC F8 DF 8C F5 D9 41 E1 FB
AD C6 2A F7 1E 49 D1 C3 8A C2 0E 14 5B 90 D2 4F B7 95 68 43
3A F3 59 C6 3A C2 B9 EA 61 2A 66 EF 58 C3 D3 E4 8C 3A D7 E0
4D 97 DB C9 7F 59 B4 D5 81 CD FA 55 4B 35 83 DD 8E 39 AD A5
5A D1 65 3A F3 1D 33 CD 85 1B 96 28 32 DE 36 58 0C 0E 94 73
29 13 75 B3 0E 10 46 55 F6
Extension: Subject Key Identifier (2.5.29.14)

Critical: 0
Subject Key Identifier: 69 A8 15 2D 34 87 F3 12 D6 AC 79 96 09 06 B2 AF 76 61 B2 D7
Extension: Authority Key Identifier (2.5.29.35)

Critical: 0
Key Identifier: 69 A8 15 2D 34 87 F3 12 D6 AC 79 96 09 06 B2 AF 76 61 B2 D7
Extension: Basic Constraints (2.5.29.19)

Critical: 0
CA: TRUE
Fingerprints :
SHA-256 Fingerprint: 0E DC 2F 89 16 CE 88 37 8F 2A 42 5 [...]
10.13.100.102 77
70544 - SSL Cipher Block Chaining Cipher Suites Supported
Synopsis
The remote service supports the use of SSL Cipher Block Chaining ciphers, which combine previous blocks
with subsequent ones.
Description
The remote host supports the use of SSL ciphers that operate in Cipher Block Chaining (CBC) mode. These
cipher suites offer additional security over Electronic Codebook (ECB) mode, but have the potential to leak
information if used improperly.
See Also
https://www.openssl.org/docs/manmaster/man1/ciphers.html
http://www.nessus.org/u?cc4a822a
https://www.openssl.org/~bodo/tls-cbc.txt
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Here is the list of SSL CBC ciphers supported by the remote server :

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
10.13.100.102 78
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.102 79
21643 - SSL Cipher Suites Supported
Synopsis
The remote service encrypts communications using SSL.
Description
This plugin detects which SSL ciphers are supported by the remote service for encrypting communications.
See Also
https://www.openssl.org/docs/man1.0.2/man1/ciphers.html
http://www.nessus.org/u?e17ffced
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Here is the list of SSL ciphers supported by the remote server :

Each group is reported per SSL Version.
SSL Version : TLSv12


---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
10.13.100.102 80
ECDHE-RSA-AES128-SHA256 0xC0, 0x2F ECDH RSA AES-GCM(128)
SHA256
ECDHE-RSA-AES256-SHA384 0xC0, 0x30 ECDH RSA AES-GCM(256)
SHA384
SHA1


---------------------- ---------- --- ---- --------------------- ---
SHA1

------------- [...]
10.13.100.102 81
57041 - SSL Perfect Forward Secrecy Cipher Suites Supported
Synopsis
The remote service supports the use of SSL Perfect Forward Secrecy ciphers, which maintain confidentiality
even if the key is stolen.
Description
The remote host supports the use of SSL ciphers that offer Perfect Forward Secrecy (PFS) encryption. These
cipher suites ensure that recorded SSL traffic cannot be broken at a future date if the server's private key is
compromised.
See Also
https://en.wikipedia.org/wiki/Diffie-Hellman_key_exchange
https://en.wikipedia.org/wiki/Perfect_forward_secrecy
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Here is the list of SSL PFS ciphers supported by the remote server :

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
10.13.100.102 82
{export flag}
10.13.100.102 83
94761 - SSL Root Certification Authority Certificate Information
Synopsis
A root Certification Authority certificate was found at the top of the certificate chain.
Description
The remote service uses an SSL certificate chain that contains a self-signed root Certification Authority
certificate at the top of the chain.
See Also
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/
cc778623(v=ws.10)
Solution
Ensure that use of this root Certification Authority certificate complies with your organization's acceptable
use and security policies.
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
The following root Certification Authority certificate was found :

|-Valid From : Mar 20 00:59:24 2019 GMT
|-Valid To : Mar 15 00:59:24 2039 GMT
|-Signature Algorithm : SHA-1 With RSA Encryption
10.13.100.102 84
156899 - SSL/TLS Recommended Cipher Suites
Synopsis
The remote host advertises discouraged SSL/TLS ciphers.
Description
The remote host has open SSL/TLS ports which advertise discouraged cipher suites. It is recommended to
only enable support for the following cipher suites:
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
- 0x13,0x03 TLS13_CHACHA20_POLY1305_SHA256
TLSv1.2:
- 0xC0,0x2B ECDHE-ECDSA-AES128-GCM-SHA256
- 0xC0,0x2F ECDHE-RSA-AES128-GCM-SHA256
- 0xC0,0x2C ECDHE-ECDSA-AES256-GCM-SHA384
- 0xC0,0x30 ECDHE-RSA-AES256-GCM-SHA384
- 0xCC,0xA9 ECDHE-ECDSA-CHACHA20-POLY1305
- 0xCC,0xA8 ECDHE-RSA-CHACHA20-POLY1305
- 0x00,0x9E DHE-RSA-AES128-GCM-SHA256
- 0x00,0x9F DHE-RSA-AES256-GCM-SHA384
This is the recommended configuration for the vast majority of services, as it is highly secure and
compatible with nearly every client released in the last five (or more) years.
See Also
https://wiki.mozilla.org/Security/Server_Side_TLS
https://ssl-config.mozilla.org/
Solution
Only enable support for recommened cipher suites.
Risk Factor
None
Plugin Information
10.13.100.102 85
Plugin Output
tcp/443/www
The remote host has listening SSL/TLS ports which advertise the discouraged cipher suites outlined
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.102 86
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22
The service closed the connection without sending any data.

It might be protected by some sort of TCP wrapper.
10.13.100.102 87
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/23/telnet
A telnet server is running on this port.
10.13.100.102 88
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.102 89
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
A TLSv1 server answered on this port.
tcp/443/www
A web server is running on this port through TLSv1.
10.13.100.102 90
91459 - SolarWinds Server & Application Monitor (SAM) Detection
Synopsis
A server and application performance monitoring solution is running on the remote host.
Description
SolarWinds Server & Application Monitor (SAM), a server and application performance monitoring solution,
is running on the remote host.
See Also
https://www.solarwinds.com/server-application-monitor
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.102/
Version : unknown
10.13.100.102 91
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.102/
Version : unknown
10.13.100.102 92
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.102 93
Synopsis
Description
The remote service accepts connections encrypted using TLS 1.1.

TLS 1.1 lacks support for current and recommended cipher suites.
Ciphers that support encryption before MAC computation, and authenticated encryption modes such as
GCM cannot be used with TLS 1.1
See Also
Solution
Risk Factor
None
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/443/www
10.13.100.102 94
Synopsis
The remote service encrypts traffic using a version of TLS.
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.102 95
10281 - Telnet Server Detection
Synopsis
A Telnet server is listening on the remote port.
Description
The remote host is running a Telnet server, a remote terminal server.
Solution
Disable this service if you do not use it.
Risk Factor
None
Plugin Information
Plugin Output
tcp/23/telnet
Here is the banner from the remote Telnet server :
------------------------------ snip ------------------------------
***************** User Access Login ********************

User:
------------------------------ snip ------------------------------
10.13.100.102 96
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.102
Hop Count: 1
10.13.100.102 97
10.13.100.103
1 1 6 1 74
Host Information
IP: 10.13.100.103
ly
OS: Linux Kernel 2.6
On
Vulnerabilities
Synopsis
se
lU
Description

ia
Tr
r
Fo
cryptography'.
See Also
10.13.100.103 98
Solution

Risk Factor
Critical
Plugin Information
Plugin Output
tcp/443/www


---------------------- ---------- --- ---- --------------------- ---
EDH-RSA-DES-CBC3-SHA DH RSA 3DES-CBC(168)
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
DHE-RSA-AES128-SHA DH RSA AES-CBC(128)
SHA1
DHE-RSA-AES256-SHA DH RSA AES-CBC(256)
SHA1
AES128-SHA RSA RSA AES-CBC(128)
SHA1
AES256-SHA RSA RSA AES-CBC(256)
SHA1
10.13.100.103 99
DHE-RSA-AES128-SHA256 DH RSA AES-CBC(128)
SHA256
DHE-RSA-AES256-SHA256 DH RSA AES-CBC(256)
SHA256
RSA-AES128-SHA256 RSA RSA AES-CBC(128)
SHA256
RSA-AES256-SHA256 RSA RSA AES-CBC(256)
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.103 100
Synopsis
Description
physical network.
See Also
Solution
Risk Factor
Medium
VPR Score
6.1
References
CVE CVE-2016-2183
Plugin Information
10.13.100.103 101
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
EDH-RSA-DES-CBC3-SHA 0x00, 0x16 DH RSA 3DES-CBC(168)
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.103 102
Synopsis
Description
Solution
Risk Factor
Medium
VPR Score
4.0
References
CVE CVE-1999-0511
Plugin Information
10.13.100.103 103
Plugin Output
tcp/0

Detected Gateway MAC Address : 3ccd576b8700

Response from Gateway MAC Address : 3ccd576b8700
10.13.100.103 104
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.103 105
Plugin Information
Plugin Output
tcp/443/www

|-Subject : C=CN/ST=BeiJing/L=BeiJing/O=XiaoMi/OU=XiaoMi/CN=www.router.miwifi.com
|-Issuer : C=CN/ST=BeiJing/L=BeiJing/O=XiaoMi/OU=XiaoMi/CN=www.router.miwifi.com
10.13.100.103 106
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www

10.13.100.103 107
Synopsis
Description
known exploits.
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
10.13.100.103 108
tcp/443/www
10.13.100.103 109
Synopsis
Description
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/443/www
10.13.100.103 110
10.13.100.103 111
42263 - Unencrypted Telnet Server
Synopsis
The remote Telnet server transmits traffic in cleartext.
Description
The remote host is running a Telnet server over an unencrypted channel.
Using Telnet over an unencrypted channel is not recommended as logins, passwords, and commands are
transferred in cleartext. This allows a remote, man-in-the-middle attacker to eavesdrop on a Telnet session
to obtain credentials or other sensitive information and to modify traffic exchanged between a client and
server.
SSH is preferred over Telnet since it protects credentials from eavesdropping and can tunnel additional
data streams such as an X11 session.
Solution
Disable the Telnet service and use SSH instead.
Risk Factor
Medium
5.8 (CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N)
Plugin Information
Plugin Output
tcp/23/telnet
Nessus collected the following banner from the remote Telnet server :
------------------------------ snip ------------------------------

XiaoQiang login:
------------------------------ snip ------------------------------
10.13.100.103 112
Synopsis
Description
See Also
Solution
Risk Factor
Low
Plugin Information
Plugin Output
tcp/443/www

to be weak :
10.13.100.103 113
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
cpe:/a:nginx:nginx -> Nginx

(SAM)
10.13.100.103 114
54615 - Device Type
Synopsis
It is possible to guess the remote device type.
Description
Based on the remote operating system, it is possible to determine what the remote system type is (eg: a
printer, router, general-purpose computer, etc).
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote device type : general-purpose

10.13.100.103 115
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

10.13.100.103 116
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
nginx
10.13.100.103 117
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
nginx
10.13.100.103 118
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/5081/www
nginx
10.13.100.103 119
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8098/www
nginx
10.13.100.103 120
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8191/www
nginx
10.13.100.103 121
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8193/www
nginx
10.13.100.103 122
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8380/www
nginx
10.13.100.103 123
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8383/www
nginx
10.13.100.103 124
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8999/www
nginx
10.13.100.103 125
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www

SSL : no
Keep-Alive : no
Headers :
Server: nginx
Date: Thu, 15 Apr 2021 02:59:22 GMT
Last-Modified: Mon, 12 Apr 2021 06:13:42 GMT
Connection: close
ETag: "6073e516-8de"
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
MiCGI-Switch: 1 1
MiCGI-TproxyInfo: 10.13.100.103:80
MiCGI-Upstream: 10.13.100.103
MiCGI-Client-Ip: 10.13.100.122
MiCGI-Host: 10.13.100.103
MiCGI-Http-Host: 10.13.100.103
MiCGI-Server-Ip: 10.13.100.103
MiCGI-Server-Port: 80
MiCGI-Status: LUAROOT
MiCGI-Preload: no
10.13.100.103 126
Accept-Ranges: bytes
Response Body :
<!DOCTYPE html>


 <html lang="zh"> 
<head>
<meta http-equiv="x-ua-compatible" content="IE=9" />
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<title></title>
<noscript>
<meta http-equiv="refresh" content="0; url=/cgi-bin/luci/web" />
</noscript>
</head>
<body>
<script>
function isIE(v){
var v = v || "",
tester = document.createElement('div');
tester.innerHTML = '';
return !!tester.getElementsByTagName('i')[0];
}
var isMobile = {
Android: function() {
return navigator.userAgent.match(/Android/i);
},
BlackBerry: function() {
return navigator.userAgent.match(/BlackBerry/i);
},
iOS: function() {
return navigator.userAgent.match(/iPhone|iPad|iPod/i);
},
Opera: function() {
return navigator.userAgent.match(/Opera Mini/i);
},
Windows: function() {
return navigator.userAgent.match(/IEMobile/i);
},
any: function() {
return (isMobile.Android() || isMobile.BlackBerry() || isMobile.iOS() || isMobile.Opera() ||
isMobile.Windows()) [...]
10.13.100.103 127
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :
Server: nginx
Date: Thu, 15 Apr 2021 02:59:22 GMT
Connection: close
ETag: "6073e516-8de"
MiCGI-Switch: 1 1
MiCGI-Upstream: 10.13.100.103
MiCGI-Host: 10.13.100.103
MiCGI-Http-Host: 10.13.100.103
MiCGI-Preload: no
10.13.100.103 128
Response Body :
<!DOCTYPE html>
<head>
<title></title>
<noscript>
</noscript>
</head>
<body>
<script>
function isIE(v){
var v = v || "",
}
var isMobile = {
},
},
iOS: function() {
},
Opera: function() {
},
},
any: function() {
isMobile.Windows [...]
10.13.100.103 129
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5081/www

SSL : no
Keep-Alive : no
Headers :
Server: nginx
Date: Thu, 15 Apr 2021 02:58:47 GMT
Content-Type: application/octet-stream
Content-Length: 160
Connection: close
MiStat-Client-Ip: 10.13.100.122
MiStat-Host: 10.13.100.103
MiStat-Http-Host: 10.13.100.103:5081
MiStat-Server-Ip: 10.13.100.103
MiStat-Server-Port: 5081
MiStat-Status: STATINFO
Cache-Control: private,max-age=0
Content-Type: text/plain;charset=utf-8
Response Body :
STAT=OK;
10.13.100.103 130
CODE=200;
hostname=xiaoqiang;
server_addr=10.13.100.103;
server_port=5081;
remote_addr=10.13.100.122;
http_host=10.13.100.103:5081;
uri=/;
10.13.100.103 131
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8098/www
Response Code :
SSL : no
Response Body :
10.13.100.103 132
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8193/www
Response Code : HTTP/1.1 502 Bad Gateway

SSL : no
Keep-Alive : no
Headers :
Server: nginx
Date: Thu, 15 Apr 2021 02:58:51 GMT
Content-Length: 568
Connection: close
Response Body :
<html>
<head><title>502 Bad Gateway</title></head>
<body bgcolor="white">
<center><h1>502 Bad Gateway</h1></center>
<hr><center>nginx</center>
</body>
</html>

10.13.100.103 133
10.13.100.103 134
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8380/www

SSL : no
Keep-Alive : no
Headers :
Server: nginx
Date: Thu, 15 Apr 2021 02:59:01 GMT
Connection: close
ETag: "6073e516-8de"
MiCGI-Switch: 0 1
MiCGI-Upstream: 10.13.100.103:8380
MiCGI-Host: 10.13.100.103
MiCGI-Http-Host: 10.13.100.103:8380
MiCGI-Preload: no
10.13.100.103 135
Response Body :
<!DOCTYPE html>
<head>
<title></title>
<noscript>
</noscript>
</head>
<body>
<script>
function isIE(v){
var v = v || "",
}
var isMobile = {
},
},
iOS: function() {
},
Opera: function() {
},
},
any: function() {
isMobile. [...]
10.13.100.103 136
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8383/www

SSL : no
Keep-Alive : no
Headers :
Server: nginx
Date: Thu, 15 Apr 2021 02:58:47 GMT
Connection: close
ETag: "6073e516-8de"
MiCGI-Switch: 0 1
MiCGI-Upstream: 10.13.100.103:8383
MiCGI-Host: 10.13.100.103
MiCGI-Http-Host: 10.13.100.103:8383
MiCGI-Preload: no
10.13.100.103 137
Response Body :
<!DOCTYPE html>
<head>
<title></title>
<noscript>
</noscript>
</head>
<body>
<script>
function isIE(v){
var v = v || "",
}
var isMobile = {
},
},
iOS: function() {
},
Opera: function() {
},
},
any: function() {
isMobile. [...]
10.13.100.103 138
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8999/www
Response Code : HTTP/1.1 302 Moved Temporarily

SSL : no
Keep-Alive : no
Headers :
Server: nginx
Date: Thu, 15 Apr 2021 02:58:57 GMT
Content-Length: 154
Connection: close
Location: http://guest.router.miwifi.com:8999/wifishare.html
Response Body :
<html>
<head><title>302 Found</title></head>
<body bgcolor="white">
<center><h1>302 Found</h1></center>
</body>
</html>
10.13.100.103 139
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.103 140
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/23/telnet
10.13.100.103 141
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.103 142
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.103 143
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5081/www
10.13.100.103 144
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8098/www
10.13.100.103 145
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8190/www
10.13.100.103 146
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8191/www
10.13.100.103 147
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8192/www
10.13.100.103 148
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8193/www
10.13.100.103 149
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8380/www
10.13.100.103 150
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8383/www
10.13.100.103 151
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8999/www
10.13.100.103 152
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.103 153
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.103 154
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
The remote host is running Linux Kernel 2.6
10.13.100.103 155
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.103 156
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.103 157
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Country: CN
State/Province: BeiJing
Locality: BeiJing
Organization: XiaoMi
Organization Unit: XiaoMi
Common Name: www.router.miwifi.com
Issuer Name:
Country: CN
State/Province: BeiJing
Locality: BeiJing
Organization: XiaoMi
Organization Unit: XiaoMi
Common Name: www.router.miwifi.com
Serial Number: 00 F1 23 B5 27 4D 41 AC 70
Version: 3
Not Valid Before: Feb 07 09:39:19 2020 GMT

Not Valid After: Feb 04 09:39:19 2030 GMT
Public Key Info:

Public Key: 00 D4 C9 1A FE 7A D9 F7 E3 2C 2C 4C 21 35 61 E9 39 7A EE 6E
10.13.100.103 158
3B 81 9A 2E 1C 11 FD 23 25 4B F2 73 77 25 78 D3 F2 AC 52 FA
4E 8F 5A E0 73 AE 21 0B E1 89 2F DF BD C0 62 2E 48 33 BE 5D
99 AD FC 20 0A 07 DF 28 E8 52 7D C2 FF 2D D6 5F E8 D9 96 BC
0C 5F 09 56 46 C5 E5 54 6A 71 45 60 CE CE D3 AF AD 90 3E 54
1F DC BB FF 96 72 FB 2F BE E4 65 98 43 90 C8 4E 6F C6 F0 2B
A2 51 EC A8 54 26 17 EF EB
Exponent: 01 00 01

Signature: 00 B8 58 38 D1 24 E7 A1 76 26 F1 92 56 70 35 58 CE 61 52 1B
7F DF ED 77 35 2E 50 E1 93 61 1C 57 EC 7A 2E 7C 81 A8 38 D8
61 97 24 93 37 89 55 57 65 95 19 CD 60 B4 3B 9D C5 AC 37 A2
6E 29 29 75 23 D8 0C D4 4B 20 38 FE 03 B8 65 86 3A 01 96 31
FD 5D 49 B5 1F 90 CB 5B 1B 60 7B B7 7B 29 3F EC 54 85 09 96
5E 51 D7 09 7F B9 5A 30 FA 35 AB 08 62 36 11 52 57 33 59 A3
53 AD 77 45 5E C7 7C D4 2D
Fingerprints :
SHA-256 Fingerprint: 90 90 39 29 94 A6 A5 55 41 A1 5F 76 93 52 8B DE 42 D6 90 B0
E4 22 94 9A 50 B7 78 72 E5 E5 A8 E3
SHA-1 Fingerprint: 79 2F F5 7A 31 41 EE AD CA 01 40 93 42 0A F9 19 CB 0B 82 15
MD5 Fingerprint: CC 9F DA 29 65 18 25 3E 5F E7 1B 3C A9 21 AF 79
PEM certificate :
MIICYjCCAcugAwIBAgIJAPEjtSdNQaxwMA0GCSqGSIb3DQEBCwUAMHMxCzAJBgNVBAYTAkNOMRAwDgYDVQQIDAdCZWlKaW5nMRAwDgYDVQQHDAdCZW
[...]
10.13.100.103 159
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
DHE-RSA-AES128-SHA 0x00, 0x33 DH RSA AES-CBC(128)
SHA1
10.13.100.103 160
SHA1
AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128)
SHA1
AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256)
SHA1
DHE-RSA-AES128-SHA256 0x00, 0x67 DH RSA AES-CBC(128)
SHA256
DHE-RSA-AES256-SHA256 0x00, 0x6B DH RSA AES-CBC(256)
SHA256
RSA-AES128-SHA256 0x00, 0x3C RSA RSA AES-CBC(128)
SHA256
RSA-AES256-SHA256 0x00, 0x3D RSA RSA AES-CBC(256)
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.103 161
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
DHE-RSA-AES128-SHA256 0x00, 0x9E DH RSA AES-GCM(128)
SHA256
DHE-RSA-AES256-SHA384 0x00, 0x9F DH RSA AES-GCM(256)
SHA384
RSA-AES128-SHA256 0x00, 0x9C RSA RSA AES-GCM(128)
SHA256
10.13.100.103 162
RSA-AES256-SHA384 0x00, 0x9D RSA RSA AES-GCM(256)
SHA384
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
RSA-AES256-SHA256 0x00, 0x3D RSA RSA [...]
10.13.100.103 163
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
10.13.100.103 164
SHA1
SHA1
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.103 165
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.103 166
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{ex [...]
10.13.100.103 167
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/23/telnet
A telnet server is running on this port.
10.13.100.103 168
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.103 169
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5081/www
10.13.100.103 170
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8098/www
10.13.100.103 171
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8191/www
10.13.100.103 172
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8193/www
10.13.100.103 173
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8380/www
10.13.100.103 174
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8383/www
10.13.100.103 175
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8999/www
10.13.100.103 176
11153 - Service Detection (HELP Request)
Synopsis
Description
It was possible to identify the remote service by its banner or by looking at the error message it sends
when it receives a 'HELP'
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
A web server seems to be running on this port.
10.13.100.103 177
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.103 178
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8190/www
10.13.100.103 179
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8192/www
10.13.100.103 180
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5081/www
URL : http://10.13.100.103:5081/
Version : unknown
10.13.100.103 181
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.103 182
87242 - TLS NPN Supported Protocol Enumeration
Synopsis
The remote host supports the TLS NPN extension.
Description
The remote host supports the TLS NPN (Transport Layer Security Next Protocol Negotiation) extension. This
plugin enumerates the protocols the extension supports.
See Also
https://tools.ietf.org/id/draft-agl-tls-nextprotoneg-03.html
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
NPN Supported Protocols:
http/1.1
10.13.100.103 183
62564 - TLS Next Protocols Supported
Synopsis
The remote service advertises one or more protocols as being supported over TLS.
Description
This script detects which protocols are advertised by the remote service to be encapsulated by TLS
connections.
Note that Nessus did not attempt to negotiate TLS sessions with the protocols shown. The remote service
may be falsely advertising these protocols and / or failing to advertise other supported protocols.
See Also
https://tools.ietf.org/html/draft-agl-tls-nextprotoneg-04
https://technotes.googlecode.com/git/nextprotoneg.html
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
The target advertises that the following protocols are

supported over SSL / TLS:
http/1.1
10.13.100.103 184
Synopsis
Description

See Also
Solution
Risk Factor
None
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/443/www
10.13.100.103 185
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.103 186
10281 - Telnet Server Detection
Synopsis
A Telnet server is listening on the remote port.
Description
The remote host is running a Telnet server, a remote terminal server.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/23/telnet
Here is the banner from the remote Telnet server :
------------------------------ snip ------------------------------

XiaoQiang login:
------------------------------ snip ------------------------------
10.13.100.103 187
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.103
Hop Count: 1
10.13.100.103 188
10386 - Web Server No 404 Error Code Check
Synopsis
The remote web server does not return 404 error codes.
Description
The remote web server is configured such that it does not return '404 Not Found' error codes when a
nonexistent file is requested, perhaps returning instead a site map, search page or authentication page.
Nessus has enabled some counter measures for this. However, they might be insufficient. If a great
number of security holes are produced for this port, they might not all be accurate.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5081/www
Unfortunately, Nessus has been unable to find a way to recognize this

page so some CGI-related checks have been disabled.
10.13.100.103 189
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8999/www
CGI scanning will be disabled for this host because the host responds
to requests for non-existent URLs with HTTP code 302
rather than 404. The requested URL was :
http://10.13.100.103:8999/khXGLGLptbKh.html
10.13.100.103 190
106375 - nginx HTTP Server Detection
Synopsis
The nginx HTTP server was detected on the remote host.
Description
Nessus was able to detect the nginx HTTP server by looking at the HTTP banner on the remote host.
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.103/
Version : unknown
source : Server: nginx
10.13.100.103 191
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.103/
Version : unknown
10.13.100.103 192
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/5081/www
URL : http://10.13.100.103:5081/
Version : unknown
10.13.100.103 193
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8098/www
URL : http://10.13.100.103:8098/
Version : unknown
10.13.100.103 194
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8191/www
URL : http://10.13.100.103:8191/
Version : unknown
10.13.100.103 195
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8193/www
URL : http://10.13.100.103:8193/
Version : unknown
10.13.100.103 196
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8380/www
URL : http://10.13.100.103:8380/
Version : unknown
10.13.100.103 197
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8383/www
URL : http://10.13.100.103:8383/
Version : unknown
10.13.100.103 198
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8999/www
URL : http://10.13.100.103:8999/
Version : unknown
10.13.100.103 199
10.13.100.104
1 2 8 1 26
Host Information
IP: 10.13.100.104
ly
OS: Dell iDRAC Controller, KYOCERA Printer, Linux Kernel 2.6
On
Vulnerabilities
Synopsis
se
lU
Description

ia
Tr
r
Fo
cryptography'.
See Also
10.13.100.104 200
Solution

Risk Factor
Critical
Plugin Information
Plugin Output
tcp/443/www


---------------------- ---------- --- ---- --------------------- ---
DES-CBC-SHA RSA RSA DES-CBC(56)
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
RC4-MD5 RSA RSA RC4(128) MD5
RC4-SHA RSA RSA RC4(128)
SHA1
10.13.100.104 201
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.104 202
35291 - SSL Certificate Signed Using Weak Hashing Algorithm
Synopsis
An SSL certificate in the certificate chain has been signed using a weak hash algorithm.
Description
The remote service uses an SSL certificate chain that has been signed using a cryptographically weak
hashing algorithm (e.g. MD2, MD4, MD5, or SHA1). These signature algorithms are known to be vulnerable
to collision attacks. An attacker can exploit this to generate another certificate with the same digital
signature, allowing an attacker to masquerade as the affected service.
algorithm.
Note that certificates in the chain that are contained in the Nessus CA database (known_CA.inc) have been
ignored.
See Also
http://www.nessus.org/u?e120eea1
http://www.nessus.org/u?5d894816
http://www.nessus.org/u?51db68aa
http://www.nessus.org/u?9dc7bfba
Solution
Contact the Certificate Authority to have the SSL certificate reissued.
Risk Factor
Medium
7.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
VPR Score
5.1
10.13.100.104 203
References
BID 11849
BID 33065
CVE CVE-2004-2761
XREF CERT:836068
XREF CWE:310
Plugin Information
Plugin Output
tcp/443/www
The following certificates were part of the certificate chain sent by

the remote host, but contain hashes that are considered to be weak.
Subject : C=CN/ST=Guangdong/L=Shenzhen/O=TP-LINK Technologies CO., LTD./CN=TP-LINK CA/

Valid From : Mar 20 00:59:24 2019 GMT
Valid To : Mar 15 00:59:24 2039 GMT
MIIDAjCCAmugAwIBAgIJALQrrzOjHAH5MA0GCSqGSIb3DQEBBQUAMIGZMQswCQYDVQQGEwJDTjESMBAGA1UECAwJR3Vhbmdkb25nMREwDwYDVQQHDA
+202KbYXca6j6/pGQBhhYN6ClDe7yO+vigBPFCwo/3kPHBRwcl/771Qz9VLltkbU895eh6OoWEJ9/
oLNBngb4t2IVF3H2Udm2Nr7f9AgMBAAGjUDBOMB0GA1UdDgQWBBRpqBUtNIfzEtaseZYJBrKvdmGy1zAfBgNVHSMEGDAWgBRpqBUtNIfzEtaseZYJB
MA0GCSqGSIb3DQEBBQUAA4GBAHi9vshrVbqihvmxWfLx0Ywn6pi8Mj0mDfvM34iAufz434z12UHh+63GKvceSdHDisIOFFuQ0k
+3lWhDOvNZxjrCuephKmbvWMPT5Iw61+BNl9vJf1m01YHN+lVLNYPdjjmtpVrRZTrzHTPNhRuWKDLeNlgMDpRzKRN1sw4QRlX2
10.13.100.104 204
Synopsis
Description
physical network.
See Also
Solution
Risk Factor
Medium
VPR Score
6.1
References
CVE CVE-2016-2183
Plugin Information
10.13.100.104 205
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.104 206
Synopsis
Description
Solution
Risk Factor
Medium
VPR Score
4.0
References
CVE CVE-1999-0511
Plugin Information
10.13.100.104 207
Plugin Output
tcp/0

Detected Gateway MAC Address : 1c61b484944e

Response from Gateway MAC Address : 1c61b484944e
10.13.100.104 208
Synopsis
Description
vulnerabilities.
See Also
Solution
Risk Factor
Medium
VPR Score
5.7
10.13.100.104 209
STIG Severity
II
References
CVE CVE-2020-11022
CVE CVE-2020-11023
Plugin Information
Plugin Output
tcp/443/www
10.13.100.104 210
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.104 211
Plugin Information
Plugin Output
tcp/443/www


10.13.100.104 212
65821 - SSL RC4 Cipher Suites Supported (Bar Mitzvah)
Synopsis
The remote service supports the use of the RC4 cipher.
Description
The remote host supports the use of RC4 in one or more cipher suites.
The RC4 cipher is flawed in its generation of a pseudo-random stream of bytes so that a wide variety of
small biases are introduced into the stream, decreasing its randomness.
If plaintext is repeatedly encrypted (e.g., HTTP cookies), and an attacker is able to obtain many (i.e., tens of
millions) ciphertexts, the attacker may be able to derive the plaintext.
See Also
https://www.rc4nomore.com/
http://www.nessus.org/u?ac7327a0
http://cr.yp.to/talks/2013.03.12/slides.pdf
http://www.isg.rhul.ac.uk/tls/
https://www.imperva.com/docs/HII_Attacking_SSL_when_using_RC4.pdf
Solution
Reconfigure the affected application, if possible, to avoid use of RC4 ciphers. Consider using TLS 1.2 with
AES-GCM suites subject to browser and web server support.
Risk Factor
Medium
5.9 (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.4 (CVSS:3.0/E:U/RL:X/RC:C)
VPR Score
4.4
10.13.100.104 213
3.7 (CVSS2#E:U/RL:ND/RC:C)
References
BID 58796
BID 73684
CVE CVE-2013-2566
CVE CVE-2015-2808
Plugin Information
Plugin Output
tcp/443/www
List of RC4 cipher suites supported by the remote server :

---------------------- ---------- --- ---- --------------------- ---
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.104 214
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www


10.13.100.104 215
26928 - SSL Weak Cipher Suites Supported
Synopsis
The remote service supports the use of weak SSL ciphers.
Description
The remote host supports the use of SSL ciphers that offer weak encryption.
Note: This is considerably easier to exploit if the attacker is on the same physical network.
See Also
http://www.nessus.org/u?6527892d
Solution
Reconfigure the affected application, if possible to avoid the use of weak ciphers.
Risk Factor
Medium
References
XREF CWE:326
XREF CWE:327
XREF CWE:720
XREF CWE:753
XREF CWE:803
XREF CWE:928
XREF CWE:934
Plugin Information
Plugin Output
10.13.100.104 216
tcp/443/www
Here is the list of weak SSL ciphers supported by the remote server :

---------------------- ---------- --- ---- --------------------- ---
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.104 217
Synopsis
Description
known exploits.
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
10.13.100.104 218
tcp/443/www
10.13.100.104 219
Synopsis
Description
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/443/www
10.13.100.104 220
10.13.100.104 221
Synopsis
Description
See Also
Solution
Risk Factor
Low
Plugin Information
Plugin Output
tcp/443/www

to be weak :

10.13.100.104 222
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

(SAM)
10.13.100.104 223
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

10.13.100.104 224
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
Web Switch
10.13.100.104 225
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :
Server: Web Switch

Connection: close
Date: Thu, 25 Nov 2021 07:24:41 GMT
Last-Modified: Thu, 25 Nov 2021 07:24:41 GMT
Response Body :

<head>
10.13.100.104 226

<noscript>
</noscript>
</head>
<body>
</div>
<script type="text/javascript" src="js/su/managers.js"></script>
<script type="text/javasc [...]
10.13.100.104 227
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.104 228
Synopsis
Description
See Also
https://jquery.com/
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Version : 1.10.0
10.13.100.104 229
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.104 230
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.104 231
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.104 232
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.104 233
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

KYOCERA Printer
Method : SinFP
The remote host is running one of these operating systems :

Linux Kernel 2.6
KYOCERA Printer
10.13.100.104 234
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.104 235
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.104 236
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Country: CN
Locality: Shenzhen
Issuer Name:
Country: CN
Locality: Shenzhen
Serial Number: 00 B4 2B AF 33 A3 1C 01 F9
Version: 3
Not Valid Before: Mar 20 00:59:24 2019 GMT

Public Key Info:

Public Key: 00 B8 82 83 78 52 38 F8 A0 13 B9 07 95 B0 E6 49 0B 16 6E 8D
10.13.100.104 237
72 03 76 FD BE 15 EA 1B 6E E5 21 99 86 54 D8 CB E2 C1 98 80
4E 3B 4F 9B 62 C7 45 0A 79 1D A5 EA DF B6 D3 62 9B 61 77 1A
EA 3E BF A4 64 01 86 16 0D E8 29 43 7B BC 8E FA F8 A0 04 F1
42 C2 8F F7 90 F1 C1 47 07 25 FF BE F5 43 3F 55 2E 5B 64 6D
4F 3D E5 E8 7A 3A 85 84 27 DF E8 2C D0 67 81 BE 2D D8 85 45
DC 7D 94 76 6D 8D AF B7 FD
Exponent: 01 00 01

Signature: 00 78 BD BE C8 6B 55 BA A2 86 F9 B1 59 F2 F1 D1 8C 27 EA 98
BC 32 3D 26 0D FB CC DF 88 80 B9 FC F8 DF 8C F5 D9 41 E1 FB
AD C6 2A F7 1E 49 D1 C3 8A C2 0E 14 5B 90 D2 4F B7 95 68 43
3A F3 59 C6 3A C2 B9 EA 61 2A 66 EF 58 C3 D3 E4 8C 3A D7 E0
4D 97 DB C9 7F 59 B4 D5 81 CD FA 55 4B 35 83 DD 8E 39 AD A5
5A D1 65 3A F3 1D 33 CD 85 1B 96 28 32 DE 36 58 0C 0E 94 73
29 13 75 B3 0E 10 46 55 F6

Critical: 0
Subject Key Identifier: 69 A8 15 2D 34 87 F3 12 D6 AC 79 96 09 06 B2 AF 76 61 B2 D7
Extension: Authority Key Identifier (2.5.29.35)

Critical: 0
Key Identifier: 69 A8 15 2D 34 87 F3 12 D6 AC 79 96 09 06 B2 AF 76 61 B2 D7

Critical: 0
CA: TRUE
Fingerprints :
SHA-256 Fingerprint: 0E DC 2F 89 16 CE 88 37 8F 2A 42 5 [...]
10.13.100.104 238
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
10.13.100.104 239
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.104 240
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
10.13.100.104 241
SHA256
SHA384
SHA1


---------------------- ---------- --- ---- --------------------- ---
SHA1

------------- [...]
10.13.100.104 242
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
10.13.100.104 243
{export flag}
10.13.100.104 244
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid From : Mar 20 00:59:24 2019 GMT
|-Valid To : Mar 15 00:59:24 2039 GMT
10.13.100.104 245
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.104 246
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.104 247
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.104 248
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
A web server is running on this port through TLSv1.
10.13.100.104 249
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.104/
Version : unknown
10.13.100.104 250
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.104 251
Synopsis
Description

See Also
Solution
Risk Factor
None
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/443/www
10.13.100.104 252
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.104 253
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.104
Hop Count: 1
10.13.100.104 254
10.13.100.105
0 0 0 0 17
Host Information
IP: 10.13.100.105
ly
MAC Address: B4:22:00:1D:E1:FB
On
Vulnerabilities
11933 - Do not scan printers
Synopsis
se
The remote host appears to be a fragile device and will not be scanned.
lU
Description
The remote host appears to be a network printer, multi-function device, or other fragile device. Such
devices often react very poorly when scanned. To avoid problems, Nessus has marked the remote host as
'Dead' and will not scan it.
ia
Solution
If you are not concerned about such behavior, enable the 'Scan Network Printers' setting under the 'Do not
Tr
scan fragile devices'

advanced settings block and re-run the scan. Or if using Nessus 6, enable 'Scan Network Printers' under
'Fragile Devices' in the Host Discovery section and then re-run the scan.
Risk Factor
r
None
Fo
References
Plugin Information
Plugin Output
10.13.100.105 255
tcp/0
SNMP reports it as Brother NC.
10.13.100.105 256
14274 - Nessus SNMP Scanner
Synopsis
SNMP information is enumerated to learn about other open ports.
Description
This plugin runs an SNMP scan against the remote machine to find open ports.
See the section 'plugins options' to configure it.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Nessus SNMP scanner was able to retrieve the open port list
with the community name: p*****
It found 8 open TCP ports and 5 open UDP ports.
10.13.100.105 257
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/69
Port 69/udp was found to be open
10.13.100.105 258
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80
10.13.100.105 259
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/137/netbios-ns
10.13.100.105 260
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443
10.13.100.105 261
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/515
10.13.100.105 262
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/631
10.13.100.105 263
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/3702
10.13.100.105 264
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/5353
10.13.100.105 265
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/9100
10.13.100.105 266
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/44068
10.13.100.105 267
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/54921
10.13.100.105 268
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/54922
10.13.100.105 269
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/54923
10.13.100.105 270
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.105 271
Scanner IP : 10.13.100.122
Port scanner(s) : snmp_scanner
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Display superseded patches : yes (supersedence plugin did not launch)
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.105 272
10150 - Windows NetBIOS / SMB Remote Host Information Disclosure
Synopsis
It was possible to obtain the network name of the remote host.
Description
The remote host is listening on UDP port 137 or TCP port 445, and replies to NetBIOS nbtscan or SMB
requests.
Note that this plugin gathers information to be used in other plugins, but does not itself generate a report.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/137/netbios-ns
The following 2 NetBIOS names have been gathered :
MiWiFi-R4A-srvB = Computer name

MiWiFi-R4A-srvB = File Server Service
The remote host has the following MAC address on its adapter :
b4:22:00:1d:e1:fb
10.13.100.105 273
10.13.100.106
0 0 2 0 32
Host Information
IP: 10.13.100.106
ly
OS: Nutanix
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.106 274
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www

sent by the remote host, but they have expired :
|-Subject : O=Digital Signature Trust Co./CN=DST Root CA X3

|-Not After : Sep 30 14:01:15 2021 GMT
|-Subject : CN=airalgo.com
|-Not After : Feb 11 00:12:35 2023 GMT
10.13.100.106 275
15901 - SSL Certificate Expiry
Synopsis
The remote server's SSL certificate has already expired.
Description
This plugin checks expiry dates of certificates associated with SSL- enabled services on the target and
reports whether any have already expired.
Solution
Purchase or generate a new SSL certificate to replace the existing one.
Risk Factor
Medium
5.3 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Plugin Information
Plugin Output
tcp/443/www
The SSL certificate has already expired :
Subject : CN=airalgo.com
Issuer : C=US, O=Let's Encrypt, CN=R3
Not valid before : Nov 13 00:12:36 2022 GMT
Not valid after : Feb 11 00:12:35 2023 GMT
10.13.100.106 276
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
cpe:/a:igor_sysoev:nginx:1.18.0 -> Nginx

cpe:/a:nginx:nginx:1.18.0 -> Nginx
10.13.100.106 277
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.106 278
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

10.13.100.106 279
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
nginx/1.18.0 (Ubuntu)
10.13.100.106 280
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
10.13.100.106 281
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/5000/www
gunicorn
10.13.100.106 282
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www

SSL : no
Keep-Alive : no
Headers :
Server: nginx/1.18.0 (Ubuntu)

Date: Mon, 09 Oct 2023 09:18:49 GMT
Content-Length: 617
Last-Modified: Thu, 11 Aug 2022 13:48:06 GMT
Connection: keep-alive
ETag: "62f50896-269"
Response Body :
<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
body {
width: 35em;
margin: 0 auto;
10.13.100.106 283
font-family: Tahoma, Verdana, Arial, sans-serif;
}
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>#$###If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>
<p>For online documentation and support please refer to

<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>
<p><em>Thank you for using nginx.</em></p>

</body>
</html>
10.13.100.106 284
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 09:18:49 GMT
Content-Length: 644
Last-Modified: Fri, 23 Dec 2022 13:32:08 GMT
ETag: "63a5add8-284"
Response Body :
<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/favicon.ico"/

><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color"
content="#000000"/><meta name="description" content="Web site created using create-react-app"/
><link rel="apple-touch-icon" href="/logo192.png"/><link rel="manifest" href="/manifest.json"/
><title>React App</title><script defer="defer" src="/static/js/main.619754e9.js"></script><link
href="/static/css/main.12ad944a.css" rel="stylesheet"></head><body><noscript>You need to enable
JavaScript to run this app.</noscript><div id="root"></div></body></html>
10.13.100.106 285
10.13.100.106 286
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
Response Code : HTTP/1.1 404 NOT FOUND

SSL : no
Keep-Alive : no
Headers :
Server: gunicorn
Date: Mon, 09 Oct 2023 09:18:49 GMT
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 207
Response Body :
10.13.100.106 287
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.106 288
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.106 289
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.106 290
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.106 291
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.106 292
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote operating system : Nutanix

Method : SinFP
The remote host is running Nutanix
10.13.100.106 293
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
This port supports TLSv1.3/TLSv1.2.
10.13.100.106 294
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Common Name: airalgo.com
Issuer Name:
Country: US
Organization: Let's Encrypt
Common Name: R3
Serial Number: 04 4A 6A 7F 09 FF AE 69 99 A9 EF B1 07 5B B6 47 FA 22
Version: 3
Not Valid Before: Nov 13 00:12:36 2022 GMT

Public Key Info:

Public Key: 00 DA 41 D5 D5 B1 22 F8 43 9D 8F 75 8A 1E 8A E6 89 36 60 23
FA 58 C8 A3 5C F9 12 DB 51 2D 8C F3 38 67 2B 9E 7B B6 6B F8
A8 B8 EF BE 81 9C A2 21 6B 7A 5E AE BA 17 19 EE A8 05 54 52
C8 3B A7 47 BD BD 44 66 25 49 F4 9C FB 6C 98 E2 68 31 E2 6E
FF C7 47 3F 22 EF 41 E9 94 3C C5 E3 0A D8 5A DF CE BD 95 2B
55 C2 F6 0A 44 4E 7D D7 6F 68 B4 95 41 F9 D2 00 40 F5 2F A4
24 E2 B4 F3 BC E3 A7 5D D7 FC DF 92 82 83 FD 60 03 E5 84 A9
6D 7D 9A 3A 6A 94 D4 40 3C 7D 4C 2C 7A F6 46 57 53 8F 92 17
B9 99 32 85 82 F8 54 D2 6A E8 AC AA 75 C7 CD 7F 56 7E D2 B1
10.13.100.106 295
3F B5 95 A9 AE D0 CA 58 3F 3A CF FE 31 C7 D8 E8 0F 29 F9 B6
AC CB 1D EF FF 0E AB AC A1 69 9B 8B 8C D1 4B 77 A9 CD CC 60
1D B0 C2 BE 5A 88 8C DF BB 8A 43 10 F1 9B BF 10 30 E3 15 FB
E2 C6 EA B7 AF 40 52 EE 9A 8C 5E 46 C8 0E 68 83 8F
Exponent: 01 00 01

Signature: 00 08 44 5D 50 6D 40 DF 7E 90 57 66 94 18 FC FF A5 1E A7 1D
EF 60 C6 2A 08 5A B1 6D 3A 87 A6 78 0B 4D 47 68 B7 54 37 EE
63 AF 96 2F 07 94 AA 50 8A E7 82 29 7D 13 B2 CA 74 60 F6 A7
15 EA 01 5A AA EC 93 6C 8B 78 40 67 77 5A 0D AF 3E 42 25 C8
43 D5 1D B9 7E 4F DC 5C 68 A2 75 9D 7C 1E 7F CD 43 1E D7 20
91 AA B5 1F 08 3B E3 A0 9C DC 97 F4 A5 5A 3B 93 26 78 0F B0
64 37 23 DD D6 C7 50 B8 CD 2E 32 1A E6 B5 1F 8D BC 1F F1 50
5D EB 95 B9 EF C7 5E B6 17 BA 49 5F 00 7F 00 AE DA EE BA B1
AC B8 9E 73 F8 BF 8A 34 AE 45 AF EB CB 75 63 BE B5 BB 93 A6
[...]
10.13.100.106 296
95631 - SSL Certificate Signed Using Weak Hashing Algorithm (Known CA)
Synopsis
A known CA SSL certificate in the certificate chain has been signed using a weak hashing algorithm.
Description
The remote service uses a known CA certificate in the SSL certificate chain that has been signed using a
cryptographically weak hashing algorithm (e.g., MD2, MD4, MD5, or SHA1). These signature algorithms are
known to be vulnerable to collision attacks (CVE-2004-2761, for example). An attacker can exploit this to
generate another certificate with the same digital signature, allowing the attacker to masquerade as the
affected service.
algorithm.
Note that this plugin will only fire on root certificates that are known certificate authorities as listed in
Tenable Community Knowledge Article 000001752. That is what differentiates this plugin from plugin
35291, which will fire on any certificate, not just known certificate authority root certificates.
Known certificate authority root certificates are inherently trusted and so any potential issues with the
signature, including it being signed using a weak hashing algorithm, are not considered security issues.
See Also
http://www.nessus.org/u?ae636e78
Solution
Contact the Certificate Authority to have the certificate reissued.
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.106 297
Plugin Output
tcp/443/www
The following known CA certificates were part of the certificate

chain sent by the remote host, but contain hashes that are considered
to be weak.
Subject : O=Digital Signature Trust Co./CN=DST Root CA X3

Valid From : Sep 30 21:12:19 2000 GMT
Valid To : Sep 30 14:01:15 2021 GMT
MIIDSjCCAjKgAwIBAgIQRK+wgNajJ7qJMDmGLvhAazANBgkqhkiG9w0BAQUFADA/
MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTAwMDkzMDIxMTIxOVoXDTIxMD
+v6ZdQCINXtMxiZfaQguzH0yxrMMpb7NnDfcdAwRgUi+DoM3ZJKuM/IUmTrE4Orz5Iy2Xu/
NMhD2XSKtkyj4zl93ewEnu1lcCJo6m67XMuegwGMoOifooUMM0RoOEqOLl5CjH9UL2AZd
+3UWODyOKIYepLYYHsUmu5ouJLGiifSKOeDNoJjj4XLh7dIN9bxiqKqy69cK3FCxolkHRyxXtqqzTWMIn/5WgTe1QLyNau7Fqckh49ZLOMxt
+/yUFw7BZy1SbsOFU5Q9D8/RhcQPGX69Wam40dutolucbY38EVAjqr2m7xPi71XAicPNaDaeQQmxkqtilX4+U9m5/
wAl0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFMSnsaR7LHH62+FLkHX/
xBVghYkQMA0GCSqGSIb3DQEBBQUAA4IBAQCjGiybFwBcqR7uKGY3Or+Dxz9LwwmglSBd49lZRNI+DT69ikugdB/
OEIKcdBodfpga3csTS7MgROSR6cz8faXbauX
+5v3gTt23ADq1cEmv8uXrAvHRAosZy5Q6XkjEGB5YGV8eAlrwDPGxrancWYaLbumR9YbK
+rlmM6pZW87ipxZzR8srzJmwN0jP41ZL9c8PDHIyh8bwRLtTcm1D9SZImlJnt1ir/
md2cXjbDaJWFBM5JDGFoqgCWjBH4d1QB7wCCZAA62RjYJsWvIjJEubSfZGL
+T0yjWW06XyxV3bqxbYoOb8VZRzI9neWagqNdwvYkQsEjgfbKbYK7p2CNTUQ
10.13.100.106 298
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
TLS_AES_128_GCM_SHA256 0x13, 0x01 - - AES-GCM(128)
AEAD
AEAD
TLS_CHACHA20_POLY1305_SHA256 0x13, 0x03 - - ChaCha20-Poly1305(256)
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.106 299
SHA384
SHA256
SHA384
ECDHE-RSA-CHACHA20-POLY1305 0xCC, 0xA8 ECDH RSA ChaCha20-Poly1305(256)
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.106 300
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.106 301
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.106 302
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Issuer : O=Digital Signature Trust Co./CN=DST Root CA X3
|-Valid From : Sep 30 21:12:19 2000 GMT
|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.106 303
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.106 304
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
A TLSv1.2 server answered on this port.
tcp/443/www
A web server is running on this port through TLSv1.2.
10.13.100.106 305
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.106 306
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.106 307
Synopsis
Description
connections.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

http/1.1
10.13.100.106 308
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.106 309
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.106
Hop Count: 1
10.13.100.106 310
11765 - UPnP TCP Helper Detection
Synopsis
The remote host appears to be running Microsoft UPnP TCP helper.
Description
The remote host is running Microsoft UPnP TCP helper.
If the tested network is not a home network, you should disable this service.
Solution
Set the following registry key :

Location : HKLM\SYSTEM\CurrentControlSet\Services\SSDPSRV Key : Start Value : 0x04
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.106 311
10302 - Web Server robots.txt Information Disclosure
Synopsis
The remote web server contains a 'robots.txt' file.
Description
The remote host contains a file named 'robots.txt' that is intended to prevent web 'robots' from visiting
certain directories in a website for maintenance or indexing purposes. A malicious user may also be able
to use the contents of this file to learn of sensitive documents or directories on the affected site and either
retrieve them directly or target them for other attacks.
See Also
http://www.robotstxt.org/orig.html
Solution
Review the contents of the site's robots.txt file, use Robots META tags instead of entries in the robots.txt
file, and/or adjust the web server's access controls to limit access to sensitive material.
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Contents of robots.txt :
# https://www.robotstxt.org/robotstxt.html
User-agent: *
Disallow:
10.13.100.106 312
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.106/
Version : 1.18.0
os : Ubuntu
source : Server: nginx/1.18.0 (Ubuntu)
10.13.100.106 313
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.106/
Version : 1.18.0
os : Ubuntu
10.13.100.106 314
10.13.100.110
0 0 4 0 39
Host Information
IP: 10.13.100.110
ly
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.110 315
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/8009

|-Subject : CN=06c61c88-c0c4-ad1e-0d59-2e2b8fd49172
|-Issuer : CN=06c61c88-c0c4-ad1e-0d59-2e2b8fd49172
10.13.100.110 316
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.110 317
Plugin Information
Plugin Output
tcp/8443

|-Subject : C=US/ST=Washington/L=Kirkland/O=Google Inc/OU=Widevine/CN=Widevine Cast Subroot

|-Issuer : C=US/ST=California/L=Mountain View/O=Google Inc/OU=Cast/CN=Cast Root CA
10.13.100.110 318
56284 - SSL Certificate Fails to Adhere to Basic Constraints / Key Usage Extensions
Synopsis
An X.509 certificate in the chain used by this service fails to adhere to all of its basic constraints and key
usage extensions.
Description
An X.509 certificate sent by the remote host contains one or more violations of the restrictions imposed
on it by RFC 5280. This means that either a root or intermediate Certificate Authority signed a certificate
incorrectly.
Certificates that fail to adhere to the restrictions in their extensions may be rejected by certain software.
The existence of such certificates indicates either an oversight in the signing process, or malicious intent.
See Also
Solution
Alter the offending certificate's extensions and have it signed again.
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/8443
The certificate is missing the key usage extension which is required

for all certificates that have a pathlen value in the basic
constraints extension.
10.13.100.110 319
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/8009

10.13.100.110 320
46180 - Additional DNS Hostnames
Synopsis
Nessus has detected potential virtual hosts.
Description
Hostnames different from the current hostname have been collected by miscellaneous plugins. Nessus
has generated a list of hostnames that point to the remote host. Note that these are only the alternate
hostnames for vhosts discovered on a web server.
Different web servers may be hosted on name-based virtual hosts.
See Also
https://en.wikipedia.org/wiki/Virtual_hosting
Solution
If you want to test them, re-scan using the special vhost syntax, such as :
www.example.com[192.0.32.10]
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The following hostnames point to the remote host :

- 06c61c88-c0c4-ad1e-0d59-2e2b8fd49172
10.13.100.110 321
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.110 322
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.110 323
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.110 324
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8008/www
10.13.100.110 325
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009
10.13.100.110 326
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8443
10.13.100.110 327
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000
10.13.100.110 328
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/10101
10.13.100.110 329
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.110 330
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.110 331
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.110 332
10919 - Open Port Re-check
Synopsis
Previously open ports are now closed.
Description
One of several ports that were previously open are now closed or unresponsive.
There are several possible reasons for this :
- The scan may have caused a service to freeze or stop running.
- An administrator may have stopped a particular service during the scanning process.
This might be an availability problem related to the following :
- A network outage has been experienced during the scan, and the remote network cannot be reached
anymore by the scanner.
- This scanner may has been blacklisted by the system administrator or by an automatic intrusion
detection / prevention system that detected the scan.
- The remote host is now down, either because a user turned it off during the scan or because a select
denial of service was effective.
In any case, the audit of the remote host might be incomplete and may need to be done again.
Solution
Steps to resolve this issue include :
- Increase checks_read_timeout and/or reduce max_checks.
- Disable any IPS during the Nessus scan
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
10.13.100.110 333
Port 10101 was detected as being open but is now closed
10.13.100.110 334
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009
10.13.100.110 335
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8443
This port supports TLSv1.2.
10.13.100.110 336
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/10101
10.13.100.110 337
83298 - SSL Certificate Chain Contains Certificates Expiring Soon
Synopsis
The remote host has an SSL certificate chain with one or more certificates that are going to expire soon.
Description
The remote host has an SSL certificate chain with one or more SSL certificates that are going to expire
soon. Failure to renew these certificates before the expiration date may result in denial of service for users.
Solution
Renew any soon to expire SSL certificates.
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009
The following soon to expire certificate was part of the certificate

chain sent by the remote host :
|-Not After : Oct 10 20:54:35 2023 GMT
10.13.100.110 338
42981 - SSL Certificate Expiry - Future Expiry
Synopsis
The SSL certificate associated with the remote service will expire soon.
Description
Solution
Purchase or generate a new SSL certificate in the near future to replace the existing one.
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009
The SSL certificate will expire within 60 days, at

Oct 10 20:54:35 2023 GMT :
Subject : CN=06c61c88-c0c4-ad1e-0d59-2e2b8fd49172
Issuer : CN=06c61c88-c0c4-ad1e-0d59-2e2b8fd49172
Not valid before : Oct 8 20:54:35 2023 GMT
Not valid after : Oct 10 20:54:35 2023 GMT
10.13.100.110 339
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009
Subject Name:
Common Name: 06c61c88-c0c4-ad1e-0d59-2e2b8fd49172
Issuer Name:
Common Name: 06c61c88-c0c4-ad1e-0d59-2e2b8fd49172
Serial Number: 12 92 8A D3
Version: 3
Not Valid Before: Oct 08 20:54:35 2023 GMT

Not Valid After: Oct 10 20:54:35 2023 GMT
Public Key Info:

Public Key: 00 BE 40 50 21 9A 6A 2F 40 67 43 39 82 79 77 E7 17 FF 2E 25
A8 AA 3B 62 4A AC 04 DD C1 AE D4 60 BD B6 53 6D A7 43 72 87
47 43 4F EA D4 68 2A 8E 1C C2 6E 9E 0D BD D9 6F D7 0C D4 14
46 C0 A4 93 45 F4 31 BE 9A 32 00 BE 08 58 B7 B2 C1 57 42 7E
B3 4C 99 6E B7 DE 59 23 A9 F8 09 2B 5C F3 73 21 29 8F A0 96
4D 7F 6D 8E 38 D2 DA 72 01 13 99 12 64 15 4E 6D 1A A1 77 46
E5 C1 07 D8 26 9A 08 FF B0 85 9A 20 DF 02 96 51 A4 39 E8 2D
D5 89 01 B3 A7 49 CD F7 71 6F EB 50 3C 46 CF 70 39 40 A6 8E
BA B2 75 89 EF 61 61 F2 83 02 81 67 95 61 D7 63 EB B7 D7 5E
30 BE 7E 8C 1F FE 42 EA 76 11 DE AC 58 44 C7 33 08 83 DC EB
9E 37 21 7E E4 A7 C3 46 16 64 0E 4E 8C 38 82 78 A7 E3 D5 C9
10.13.100.110 340
0F C1 D8 2F D8 80 B7 8A 9D 8D 21 9C DC E7 93 93 42 45 B0 89
EC 22 2A 8D 8A D4 E2 67 57 34 72 29 A1 F4 E8 A3 1F
Exponent: 01 00 01

Signature: 00 A6 72 5F 4D E2 97 9F D8 F1 3F A9 19 FD AE 06 12 11 E6 E4
34 81 51 DC 15 FC A8 BC 1E B7 F6 EC F0 6E E7 78 94 1E 65 14
7B 1B CA 57 D9 C4 A8 BF 57 1A 10 EF D0 07 E1 77 82 0B EF BD
5E 88 44 FC 7D 43 C9 9E 71 60 3D 0B A3 17 A8 CF 4F F8 48 AB
3D D9 99 E0 93 32 45 87 7E FD 62 52 3B 63 C5 C2 9A E9 48 CF
86 AF 5C 74 44 EF A7 4B E0 50 B6 57 8C F2 A1 5E 49 D9 9D 4B
59 E1 17 DE 50 70 F8 94 2A 6C DC 53 66 72 7C 5E 0C 9E 34 73
BE C6 60 51 84 8B 7F DF 64 75 D4 BB DD 39 18 BE F6 92 28 77
2C 44 C0 07 6D E2 D9 55 1B C2 00 24 87 98 5E F6 74 FE 10 1A
2D 4B 15 74 [...]
10.13.100.110 341
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8443
Subject Name:
Country: US
State/Province: Washington
Locality: Kirkland
Organization: Google Inc
Organization Unit: Widevine
Common Name: 1320400585132062642
Issuer Name:
Country: US
State/Province: Washington
Locality: Kirkland
Organization: Google Inc
Organization Unit: Widevine
Common Name: TCL TV R1 Realtek RTD2841 Cast ICA
Serial Number: 12 53 01 56 1E 03 B7 B2
Version: 3
Not Valid Before: Dec 07 08:37:51 2021 GMT

Not Valid After: Dec 07 08:37:51 2041 GMT
Public Key Info:

Public Key: 00 DD 3F 08 3F 49 82 DF 69 AA 9B 8E 14 F3 F2 A4 44 0E B5 CC
10.13.100.110 342
A0 35 6B 07 E1 B3 59 36 44 02 67 A4 29 F3 A7 61 35 A8 0C B9
99 13 2E E6 D7 00 41 40 E6 50 65 7C FF FD 45 8D 5B 61 EA 9D
0F 27 AE D0 58 27 1D 5F 58 1B A8 A8 3C C3 37 2A 2F 47 BF 1C
43 D8 4C C0 4E 7F 33 41 28 E5 89 33 84 53 34 88 34 59 B2 D7
0C C7 EC 45 B0 BD 51 0B CF 82 12 46 47 EA 52 2A 35 84 18 91
14 9C B0 96 7C B4 5A 2F 68 EA 8B BA 0B A7 F9 48 3C 18 1A BE
77 D1 BF D0 6A 61 EE CB 0B 3E F6 88 32 92 07 99 09 22 2B CF
39 9F B8 C9 4E 39 37 11 1A 7F 29 37 92 99 CD 9F DB AD B8 82
11 CF 50 75 14 56 0B 27 0E CF 0D 3E E0 9C DF AA 8C 73 F8 4E
3D BB D3 BF 1F 15 44 E3 C0 2C DB AA 61 75 5C 33 FA 9C 96 A9
73 3C 9D F3 42 CC 58 65 9D 5C 96 63 75 BC 83 42 BB 20 10 0A
A2 E2 D2 69 F8 5A 20 7A 38 E9 1C FF E7 0D 2D 02 19
Exponent: 01 00 01

Signature: 00 A9 0E 81 23 A0 57 3C C9 45 F5 8D 2E D8 32 FF 8D EF DD 76
81 AC 18 33 DE D3 9C 91 6F 6F 51 4A DB 22 41 C3 E4 71 24 C1
CD AF 70 D1 17 D7 6B A4 A9 2A 42 B1 3C AD 61 BE F7 0A 15 2E
60 16 8F 3E 87 27 87 E6 BC 2B 5E 20 7E F7 47 92 E8 E1 F4 96
0E 3C C5 41 86 9B 43 31 EC E1 CF D9 05 3C 1B 6F B9 81 5C 63
A7 1E 49 55 47 9D D4 4F CE 51 4C 9F 6C BD DD 68 48 94 CB 01
20 77 1E D7 8 [...]
10.13.100.110 343
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009

---------------------- ---------- --- ---- --------------------- ---
ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128)
SHA1
SHA1
SHA1
SHA1
10.13.100.110 344
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.110 345
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8443

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
10.13.100.110 346
{export flag}
10.13.100.110 347
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.110 348
SHA384
SHA256
SHA256
SHA384
SHA1
SHA1
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
MAC={message authentic [...]
10.13.100.110 349
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8443



---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA1
SHA1
{Cipher ID code}
10.13.100.110 350
Kex={key exchange}
{export flag}
10.13.100.110 351
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA1
SHA1
10.13.100.110 352
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.110 353
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8443

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA1
SHA1
10.13.100.110 354
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.110 355
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.110 356
Plugin Output
tcp/8009
below:

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.110 357
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.110 358
Plugin Output
tcp/8443
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.110 359
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009
10.13.100.110 360
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8443
10.13.100.110 361
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000
10.13.100.110 362
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/10101
10.13.100.110 363
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.110 364
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009
10.13.100.110 365
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/8443
10.13.100.110 366
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.110
Hop Count: 1
10.13.100.110 367
35711 - Universal Plug and Play (UPnP) Protocol Detection
Synopsis
The remote device supports UPnP.
Description
The remote device answered an SSDP M-SEARCH request. Therefore, it supports 'Universal Plug and
Play' (UPnP). This protocol provides automatic configuration and device discovery. It is primarily intended
for home networks. An attacker could potentially leverage this to discover your network architecture.
See Also
https://en.wikipedia.org/wiki/Universal_Plug_and_Play
https://en.wikipedia.org/wiki/Simple_Service_Discovery_Protocol
http://quimby.gnus.org/internet-drafts/draft-cai-ssdp-v1-03.txt
Solution
Filter access to this port if desired.
Risk Factor
None
Plugin Information
Plugin Output
udp/1900/ssdp
The device responded to an SSDP M-SEARCH request with the following locations :
http://10.13.100.110:8008/ssdp/device-desc.xml
And advertises these unique service names :
uuid:06c61c88-c0c4-ad1e-0d59-2e2b8fd49172::upnp:rootdevice
uuid:06c61c88-c0c4-ad1e-0d59-2e2b8fd49172::urn:dial-multiscreen-org:device:dial:1
uuid:06c61c88-c0c4-ad1e-0d59-2e2b8fd49172::urn:dial-multiscreen-org:service:dial:1
10.13.100.110 368
11154 - Unknown Service Detection: Banner Retrieval
Synopsis
There is an unknown service running on the remote host.
Description
Nessus was unable to identify a service on the remote host even though it returned a banner of some type.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8009
If you know what this service is and think the banner could be used to
identify it, please send a description of the service along with the
following output to svc-signatures@nessus.org :
Port : 8009
Type : spontaneous
Banner :
0x00: 00 00 00 58 08 00 12 0B 54 72 40 6E 24 70 30 72 ...X....Tr@n$p0r
0x10: 74 2D 30 1A 0B 54 72 40 6E 24 70 30 72 74 2D 30 t-0..Tr@n$p0rt-0
0x20: 22 27 75 72 6E 3A 78 2D 63 61 73 74 3A 63 6F 6D "'urn:x-cast:com
0x30: 2E 67 6F 6F 67 6C 65 2E 63 61 73 74 2E 74 70 2E .google.cast.tp.
0x40: 68 65 61 72 74 62 65 61 74 28 00 32 0F 7B 22 74 heartbeat(.2.{"t
0x50: 79 70 65 22 3A 22 50 49 4E 47 22 7D ype":"PING"}
10.13.100.110 369
35712 - Web Server UPnP Detection
Synopsis
The remote web server provides UPnP information.
Description
Nessus was able to extract some information about the UPnP-enabled device by querying this web server.
Services may also be reachable through SOAP requests.
See Also
https://en.wikipedia.org/wiki/Universal_Plug_and_Play
Solution
Filter incoming traffic to this port if desired.
Risk Factor
None
Plugin Information
Plugin Output
tcp/8008/www
Here is a summary of http://10.13.100.110:8008/ssdp/device-desc.xml :
deviceType: urn:dial-multiscreen-org:device:dial:1
friendlyName: NEAT
manufacturer: SCBC
modelName: ATV R1
modelName: ATV R1
ServiceID: urn:dial-multiscreen-org:serviceId:dial
serviceType: urn:dial-multiscreen-org:service:dial:1
controlURL: /ssdp/notfound
eventSubURL: /ssdp/notfound
SCPDURL: /ssdp/notfound
10.13.100.110 370
66717 - mDNS Detection (Local Network)
Synopsis
It is possible to obtain information about the remote host.
Description
The remote service understands the Bonjour (also known as ZeroConf or mDNS) protocol, which allows
anyone to uncover information from the remote host such as its operating system type and exact version,
its hostname, and the list of services it is running.
This plugin attempts to discover mDNS used by hosts residing on the same network segment as Nessus.
Solution
Filter incoming traffic to UDP port 5353, if desired.
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
Nessus was able to extract the following information :
- mDNS hostname : Android.local.
- Advertised services :
o Service name : NEAT._androidtvremote2._tcp.local.
Port number : 6466
10.13.100.110 371
10.13.100.111
0 0 1 0 30
Host Information
Netbios Name: PRANITA
ly
IP: 10.13.100.111
MAC Address: 28:16:AD:59:5F:01
On
OS: Microsoft Windows 10 Enterprise
Vulnerabilities
57608 - SMB Signing not required
Synopsis
se
lU
Signing is not required on the remote SMB server.
Description
Signing is not required on the remote SMB server. An unauthenticated, remote attacker can exploit this to
ia
conduct man-in-the-middle attacks against the SMB server.
See Also
Tr
http://www.nessus.org/u?df39b8b3
http://technet.microsoft.com/en-us/library/cc731957.aspx
r
https://www.samba.org/samba/docs/current/man-html/smb.conf.5.html
http://www.nessus.org/u?a3cac4ea
Fo
Solution
Enforce message signing in the host's configuration. On Windows, this is found in the policy setting
'Microsoft network server: Digitally sign communications (always)'. On Samba, the setting is called 'server
signing'. See the 'see also' links for further details.
Risk Factor
Medium
10.13.100.111 372
4.6 (CVSS:3.0/E:U/RL:O/RC:C)
Plugin Information
Plugin Output
tcp/445/cifs
10.13.100.111 373
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
cpe:/o:microsoft:windows_10:::enterprise -> Microsoft Windows 10 64-bit
10.13.100.111 374
10736 - DCE Services Enumeration
Synopsis
A DCE/RPC service is running on the remote host.
Description
By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate
the Distributed Computing Environment (DCE) services running on the remote port. Using this information
it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/135/epmap
The following DCERPC services are available locally :
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 51a227ae-825b-41f2-b4a9-1ac9557a1018, version 1.0
Description : Unknown RPC service
Annotation : Ngc Pop Key Service
Type : Local RPC service
Named pipe : samss lpc
Object UUID : 00000000-0000-0000-0000-000000000000

Named pipe : SidKey Local End Point
Object UUID : 00000000-0000-0000-0000-000000000000

Named pipe : protected_storage
Object UUID : 00000000-0000-0000-0000-000000000000

10.13.100.111 375
Named pipe : lsasspirpc
Object UUID : 00000000-0000-0000-0000-000000000000

Named pipe : lsapolicylookup
Object UUID : 00000000-0000-0000-0000-000000000000

Named pipe : LSA_EAS_ENDPOINT
Object UUID : 00000000-0000-0000-0000-000000000000

Named pipe : LSA_IDPEXT_ENDPOINT
Object UUID : 00000000-0000-0000-0000-000000000000

Named pipe : lsacap
Object UUID : 00000000-0000-0000-0000-000000000000

Annotation : Ngc [...]
10.13.100.111 376
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/445/cifs
The following DCERPC services are available remotely :
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 650a7e26-eab8-5533-ce43-9c1dfce11511, version 1.0
Annotation : Vpn APIs
Type : Remote RPC service
Named pipe : \PIPE\ROUTER
Netbios name : \\PRANITA
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 7f1343fe-50a9-4927-a778-0c5859517bac, version 1.0
Annotation : DfsDs service
Named pipe : \PIPE\wkssvc
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0
Annotation : Event log TCPIP
Named pipe : \pipe\eventlog
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0
10.13.100.111 377
Description : Scheduler Service
Windows process : svchost.exe
Named pipe : \PIPE\atsvc
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0
Description : Scheduler Service
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 33d84484-3626-47ee-8c6f-e7e98b113be1, version 2.0
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 3a9ef155-691d-4449-8d05-09ad57031823, version 1.0
Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000

UUID : 76f226c3-ec14-4325-8a99-6a46348418af, versi [...]
10.13.100.111 378
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/49664/dce-rpc
The following DCERPC services are available on TCP port 49664 :
Object UUID : 00000000-0000-0000-0000-000000000000

TCP Port : 49664
IP : 10.13.100.111
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0
Description : Security Account Manager
Windows process : lsass.exe
TCP Port : 49664
IP : 10.13.100.111
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86, version 2.0
Annotation : KeyIso
TCP Port : 49664
IP : 10.13.100.111
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 8fb74744-b2ff-4c00-be0d-9ef9a191fe1b, version 1.0
10.13.100.111 379
TCP Port : 49664
IP : 10.13.100.111
10.13.100.111 380
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/49665/dce-rpc
Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91

UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0
TCP Port : 49665
IP : 10.13.100.111
10.13.100.111 381
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/49666/dce-rpc
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0
Annotation : Event log TCPIP
TCP Port : 49666
IP : 10.13.100.111
10.13.100.111 382
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/49667/dce-rpc
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0
TCP Port : 49667
IP : 10.13.100.111
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 3a9ef155-691d-4449-8d05-09ad57031823, version 1.0
TCP Port : 49667
IP : 10.13.100.111
10.13.100.111 383
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/49670/dce-rpc
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0
Description : IPsec Services (Windows XP & 2003)
Windows process : lsass.exe
TCP Port : 49670
IP : 10.13.100.111
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1, version 1.0
TCP Port : 49670
IP : 10.13.100.111
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : ae33069b-a2a8-46ee-a235-ddfd339be281, version 1.0
TCP Port : 49670
IP : 10.13.100.111
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 4a452661-8290-4b36-8fbe-7f4093a94978, version 1.0
10.13.100.111 384
TCP Port : 49670
IP : 10.13.100.111
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 76f03f96-cdfd-44fc-a22c-64950a001209, version 1.0
TCP Port : 49670
IP : 10.13.100.111
10.13.100.111 385
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/49677/dce-rpc
Object UUID : 00000000-0000-0000-0000-000000000000

UUID : 367abb81-9844-35f1-ad32-98f038001003, version 2.0
Description : Service Control Manager
TCP Port : 49677
IP : 10.13.100.111
10.13.100.111 386
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote device type : unknown

10.13.100.111 387
35716 - Ethernet Card Manufacturer Detection
Synopsis
The manufacturer can be identified from the Ethernet OUI.
Description
Each ethernet MAC address starts with a 24-bit Organizationally Unique Identifier (OUI). These OUIs are
registered by IEEE.
See Also
https://standards.ieee.org/faqs/regauth.html
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The following card manufacturers were identified :
28:16:AD:59:5F:01 : Intel Corporate
10.13.100.111 388
86420 - Ethernet MAC Addresses
Synopsis
This plugin gathers MAC addresses from various sources and consolidates them into a list.
Description
This plugin gathers MAC addresses discovered from both remote probing of the host (e.g. SNMP and
Netbios) and from running local checks (e.g. ifconfig). It then consolidates the MAC addresses into a single,
unique, and uniform list.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The following is a consolidated list of detected MAC addresses:

- 28:16:AD:59:5F:01
10.13.100.111 389
10785 - Microsoft Windows SMB NativeLanManager Remote System Information Disclosure
Synopsis
It was possible to obtain information about the remote operating system.
Description
Nessus was able to obtain the remote operating system name and version (Windows and/or Samba) by
sending an authentication request to port 139 or 445. Note that this plugin requires SMB to be enabled on
the host.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/445/cifs
Nessus was able to obtain the following information about the host, by
parsing the SMB2 Protocol's NTLM SSP message:
Target Name: PRANITA

NetBIOS Domain Name: PRANITA
NetBIOS Computer Name: PRANITA
DNS Domain Name: Pranita
DNS Computer Name: Pranita
DNS Tree Name: unknown
Product Version: 10.0.19041
10.13.100.111 390
11011 - Microsoft Windows SMB Service Detection
Synopsis
A file / print sharing service is listening on the remote host.
Description
The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB)
protocol, used to provide shared access to files, printers, etc between nodes on a network.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/139/smb
An SMB server is running on this port.
10.13.100.111 391
11011 - Microsoft Windows SMB Service Detection
Synopsis
A file / print sharing service is listening on the remote host.
Description
The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB)
protocol, used to provide shared access to files, printers, etc between nodes on a network.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/445/cifs
A CIFS server is running on this port.
10.13.100.111 392
100871 - Microsoft Windows SMB Versions Supported (remote check)
Synopsis
It was possible to obtain information about the version of SMB running on the remote host.
Description
Nessus was able to obtain the version of SMB running on the remote host by sending an authentication
request to port 139 or 445.
Note that this plugin is a remote check and does not work on agents.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/445/cifs
The remote host supports the following versions of SMB :

SMBv2
10.13.100.111 393
106716 - Microsoft Windows SMB2 and SMB3 Dialects Supported (remote check)
Synopsis
It was possible to obtain information about the dialects of SMB2 and SMB3 available on the remote host.
Description
Nessus was able to obtain the set of SMB2 and SMB3 dialects running on the remote host by sending an
authentication request to port 139 or 445.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/445/cifs
The remote host supports the following SMB dialects :

_version_ _introduced in windows version_
2.0.2 Windows 2008
2.1 Windows 7
3.0 Windows 8
3.0.2 Windows 8.1
3.1.1 Windows 10
The remote host does NOT support the following SMB dialects :
_version_ _introduced in windows version_
2.2.2 Windows 8 Beta
2.2.4 Windows 8 Beta
3.1 Windows 10
10.13.100.111 394
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/135/epmap
10.13.100.111 395
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/139/smb
10.13.100.111 396
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/445/cifs
10.13.100.111 397
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/6666
10.13.100.111 398
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8080
10.13.100.111 399
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.111 400
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.111 401
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote operating system : Microsoft Windows 10 Enterprise

Method : MLSinFP
Not all fingerprints could give a match. If you think some or all of
the following could be used to identify the host's operating system,
please email them to os-signatures@nessus.org. Be sure to include a
brief description of the host itself, such as the actual operating
system or product / model names.
SinFP:!:
P1:B11113:F0x12:W8192:O0204ffff:M1460:
P2:B11113:F0x12:W8192:O0204ffff0103030801010402:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190701_7_p=139
The remote host is running Microsoft Windows 10 Enterprise
10.13.100.111 402
117886 - OS Security Patch Assessment Not Available
Synopsis
OS Security Patch Assessment is not available.
Description
OS Security Patch Assessment is not available on the remote host.

This does not necessarily indicate a problem with the scan.
Credentials may not have been provided, OS security patch assessment may not be supported for the
target, the target may not have been identified, or another issue may have occurred that prevented OS
security patch assessment from being available. See plugin output for details.
This plugin reports non-failure information impacting the availability of OS Security Patch Assessment.
Failure information is reported by plugin 21745 : 'OS Security Patch Assessment failed'. If a target host is
not supported for OS Security Patch Assessment, plugin 110695 : 'OS Security Patch Assessment Checks
Not Supported' will report concurrently with this plugin.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
The following issues were reported :
- Plugin : no_local_checks_credentials.nasl
Plugin ID : 110723
Plugin Name : Target Credential Status by Authentication Protocol - No Credentials Provided
Message :
Credentials were not provided for detected SMB service.
10.13.100.111 403
Synopsis
Description
Solution
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
10.13.100.111 404
Port 6666 was detected as being open but is now unresponsive
Port 8080 was detected as being open but is now unresponsive
10.13.100.111 405
110723 - Target Credential Status by Authentication Protocol - No Credentials Provided
Synopsis
Nessus was able to find common ports used for local checks, however, no credentials were provided in the
scan policy.
Description
Nessus was not able to successfully authenticate directly to the remote target on an available
authentication protocol. Nessus was able to connect to the remote port and identify that the service
running on the port supports an authentication protocol, but Nessus failed to authenticate to the
remote service using the provided credentials. There may have been a protocol failure that prevented
authentication from being attempted or all of the provided credentials for the authentication protocol may
be invalid. See plugin output for error details.
Please note the following :
- This plugin reports per protocol, so it is possible for valid credentials to be provided for one protocol and
not another. For example, authentication may succeed via SSH but fail via SMB, while no credentials were
provided for an available SNMP service.
- Providing valid credentials for all available authentication protocols may improve scan coverage, but the
value of successful authentication for a given protocol may vary from target to target depending upon what
data (if any) is gathered from the target via that protocol. For example, successful authentication via SSH is
more valuable for Linux targets than for Windows targets, and likewise successful authentication via SMB is
more valuable for Windows targets than for Linux targets.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
SMB was detected on port 445 but no credentials were provided.

SMB local checks were not enabled.
10.13.100.111 406
10.13.100.111 407
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.111
Hop Count: 1
10.13.100.111 408
135860 - WMI Not Available
Synopsis
WMI queries could not be made against the remote host.
Description
WMI (Windows Management Instrumentation) is not available on the remote host over DCOM. WMI
queries are used to gather information about the remote host, such as its current state, network interface
configuration, etc.
Without this information Nessus may not be able to identify installed software or security vunerabilities
that exist on the remote host.
See Also
https://docs.microsoft.com/en-us/windows/win32/wmisdk/wmi-start-page
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/445/cifs
Can't connect to the 'root\CIMV2' WMI namespace.
10.13.100.111 409
10150 - Windows NetBIOS / SMB Remote Host Information Disclosure
Synopsis
It was possible to obtain the network name of the remote host.
Description
The remote host is listening on UDP port 137 or TCP port 445, and replies to NetBIOS nbtscan or SMB
requests.
Note that this plugin gathers information to be used in other plugins, but does not itself generate a report.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/137/netbios-ns
The following 3 NetBIOS names have been gathered :
PRANITA = Computer name

PRANITA = File Server Service
WORKGROUP = Workgroup / Domain name
The remote host has the following MAC address on its adapter :
28:16:ad:59:5f:01
10.13.100.111 410
10.13.100.115
0 0 2 0 32
Host Information
IP: 10.13.100.115
ly
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.115 411
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www


|-Not After : Sep 30 14:01:15 2021 GMT
|-Not After : Sep 30 15:23:37 2023 GMT
10.13.100.115 412
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www
Not valid before : Jul 2 15:23:38 2023 GMT
Not valid after : Sep 30 15:23:37 2023 GMT
10.13.100.115 413
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.115 414
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.115 415
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

10.13.100.115 416
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
10.13.100.115 417
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
10.13.100.115 418
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www

SSL : no
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 09:19:18 GMT
Content-Length: 612
Last-Modified: Tue, 20 Dec 2022 11:03:57 GMT
ETag: "63a1969d-264"
Response Body :
<!DOCTYPE html>
<html>
<head>
<style>
body {
width: 35em;
margin: 0 auto;
10.13.100.115 419
}
</style>
</head>
<body>
<p>If you see this page, the nginx web server is successfully installed and


</body>
</html>
10.13.100.115 420
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 09:19:18 GMT
Content-Length: 644
Last-Modified: Tue, 03 Jan 2023 06:58:20 GMT
ETag: "63b3d20c-284"
Response Body :

10.13.100.115 421
10.13.100.115 422
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8080/www
Response Code : HTTP/1.1 404

SSL : no
Keep-Alive : yes
Options allowed : GET, HEAD, POST, PUT, DELETE, OPTIONS
Headers :
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Content-Type: application/json
Transfer-Encoding: chunked
Date: Mon, 09 Oct 2023 09:19:18 GMT
Keep-Alive: timeout=60
Response Body :
10.13.100.115 423
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.115 424
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.115 425
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.115 426
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8080/www
10.13.100.115 427
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.115 428
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.115 429
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.115 430
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.115 431
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Serial Number: 04 11 D5 AA 3A D3 77 9C FB A9 D0 2A D6 89 E5 5D 2E 70
Version: 3
Not Valid Before: Jul 02 15:23:38 2023 GMT

Not Valid After: Sep 30 15:23:37 2023 GMT
Public Key Info:

Public Key: 00 B8 42 66 9B 0C AF D2 A6 A8 29 7B 16 FE 40 6F A1 34 D1 49
F4 F9 F5 B6 8C 1A CE C7 5B 61 62 8C 53 7C 67 0D DC 6F F9 E9
FF 00 71 12 12 A3 CF AD A5 18 EE 22 8D F6 7E 28 82 A3 F8 60
9A FB E8 89 0E A1 09 57 12 CA 62 AD E5 6D F2 3A 39 48 4D 80
C4 58 54 5F 4A F6 D2 CB 87 E0 D5 04 94 FC 22 A7 73 96 EF 22
DF D2 01 CD 0E 34 6E 69 39 54 5C 2A F3 11 A3 DF 5B 9F D1 D5
C5 D2 D5 2E A0 0A CB B1 AF 1B B9 96 AF 52 D9 17 D5 D8 18 94
2D 4E 30 0F 6E 65 E9 7D C4 61 3A E7 09 D1 EB 64 09 7B 81 40
7F 3F 7C 87 73 33 22 B2 65 57 5A C1 21 B1 7B B0 E4 76 E5 38
10.13.100.115 432
A6 E3 B6 52 E0 8B 73 87 26 59 BD 08 D0 D6 9E 96 57 1C A2 F9
38 29 F8 BF B5 39 72 19 72 01 03 22 AB 85 1E 15 D1 07 E1 7B
D4 DF E8 44 AE BB 96 0F DB 7C 0A D6 07 F1 42 DC 93 84 57 B8
39 1A 2F 8F A0 1B F9 E9 D9 EF 29 13 25 EC 49 E8 F1
Exponent: 01 00 01

Signature: 00 B9 E7 8A A0 70 5B AF 5B 1D DF 76 43 E0 52 59 DC 22 83 3C
85 6A FB B7 7D C3 D9 C9 59 65 56 82 CE CB 46 6D 01 4A D7 80
33 B0 BC 64 5B BB 29 F6 34 23 AC F9 CB 76 A2 D0 29 00 27 9A
B8 7C 4B 7C 72 24 9D 33 A1 A3 71 3A 97 23 A7 58 44 5D 6A A9
9D FB 9B 1B 6A 2A B6 79 F7 DB B6 34 EA E0 43 D1 8A 06 45 8F
19 59 42 65 DB B2 96 93 49 F5 CA D3 0E A6 44 3E E4 74 1B 31
B3 D7 C6 20 04 F8 78 42 44 98 0F C5 40 21 AB 6C 69 99 9D 00
2A A4 ED D1 C7 72 F4 C9 14 EC 89 CF 14 EF 11 A5 C4 0D 1C 38
A1 DA 70 3C 44 32 25 4E F3 F3 AE 5B F6 0D B7 7C 1D D4 48 7C
[...]
10.13.100.115 433
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.115 434
Plugin Output
tcp/443/www

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.115 435
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.115 436
SHA384
SHA256
SHA384
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.115 437
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.115 438
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.115 439
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.115 440
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.115 441
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
10.13.100.115 442
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8080/www
10.13.100.115 443
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.115 444
Synopsis
Description
connections.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

http/1.1
10.13.100.115 445
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.115 446
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.115
Hop Count: 1
10.13.100.115 447
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
User-agent: *
Disallow:
10.13.100.115 448
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
- mDNS hostname : ubuntu-HVM-domU.local.
10.13.100.115 449
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.115/
Version : 1.18.0
os : Ubuntu
10.13.100.115 450
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.115/
Version : 1.18.0
os : Ubuntu
10.13.100.115 451
10.13.100.116
0 0 14 0 165
Host Information
IP: 10.13.100.116
ly
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.116 452
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/25/smtp
The following certificate was part of the certificate chain

sent by the remote host, but it has expired :

|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.116 453
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.116 454
Plugin Information
Plugin Output
tcp/110/pop3


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.116 455
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.116 456
Plugin Information
Plugin Output
tcp/143/imap


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.116 457
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.116 458
Plugin Information
Plugin Output
tcp/443/www


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.116 459
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.116 460
Plugin Information
Plugin Output
tcp/465/smtp


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.116 461
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.116 462
Plugin Information
Plugin Output
tcp/587/smtp


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.116 463
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.116 464
Plugin Information
Plugin Output
tcp/993/imap


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.116 465
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.116 466
Plugin Information
Plugin Output
tcp/995/pop3


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.116 467
Synopsis
Description
known exploits.
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
10.13.100.116 468
tcp/25/smtp
10.13.100.116 469
Synopsis
Description
known exploits.
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
10.13.100.116 470
tcp/465/smtp
10.13.100.116 471
Synopsis
Description
known exploits.
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
10.13.100.116 472
tcp/587/smtp
10.13.100.116 473
Synopsis
Description
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/25/smtp
10.13.100.116 474
10.13.100.116 475
Synopsis
Description
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/465/smtp
10.13.100.116 476
10.13.100.116 477
Synopsis
Description
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/587/smtp
10.13.100.116 478
10.13.100.116 479
46180 - Additional DNS Hostnames
Synopsis
Nessus has detected potential virtual hosts.
Description
Hostnames different from the current hostname have been collected by miscellaneous plugins. Nessus
has generated a list of hostnames that point to the remote host. Note that these are only the alternate
hostnames for vhosts discovered on a web server.
Different web servers may be hosted on name-based virtual hosts.
See Also
https://en.wikipedia.org/wiki/Virtual_hosting
Solution
If you want to test them, re-scan using the special vhost syntax, such as :
www.example.com[192.0.32.10]
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The following hostnames point to the remote host :

- mail.lotusdew.in
10.13.100.116 480
48204 - Apache HTTP Server Version
Synopsis
It is possible to obtain the version number of the remote Apache HTTP server.
Description
The remote host is running the Apache HTTP Server, an open source web server. It was possible to read the
version number from the banner.
See Also
https://httpd.apache.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/800/www
URL : http://10.13.100.116:800/
Version : 2.4.99
Source : Server: Apache/2.4.52 (Ubuntu)
backported : 1
os : ConvertedUbuntu
10.13.100.116 481
39521 - Backported Security Patch Detection (WWW)
Synopsis
Security patches are backported.
Description
Security patches may have been 'backported' to the remote HTTP server without changing its version
number.
Banner-based checks have been disabled to avoid false positives.
Note that this test is informational only and does not denote any security problem.
See Also
https://access.redhat.com/security/updates/backporting/?sc_cid=3093
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/800/www
Give Nessus credentials to perform local checks.
10.13.100.116 482
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
cpe:/a:apache:http_server:2.4.52 -> Apache Software Foundation Apache HTTP Server

cpe:/a:nginx:nginx -> Nginx
cpe:/a:openbsd:openssh:8.9 -> OpenBSD OpenSSH
cpe:/a:openbsd:openssh:8.9p1 -> OpenBSD OpenSSH
10.13.100.116 483
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.116 484
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

10.13.100.116 485
43111 - HTTP Methods Allowed (per directory)
Synopsis
This plugin determines which HTTP methods are allowed on various CGI directories.
Description
By calling the OPTIONS method, it is possible to determine which HTTP methods are allowed on each
directory.
The following HTTP methods are considered insecure:

PUT, DELETE, CONNECT, TRACE, HEAD
Many frameworks and languages treat 'HEAD' as a 'GET' request, albeit one without any body in the
response. If a security constraint was set on 'GET' requests such that only 'authenticatedUsers' could access
GET requests for a particular servlet or resource, it would be bypassed for the 'HEAD' version. This allowed
unauthorized blind submission of any privileged GET request.
As this list may be incomplete, the plugin also tests - if 'Thorough tests' are enabled or 'Enable web
applications tests' is set to 'yes'
in the scan policy - various known HTTP methods on each directory and considers them as unsupported if
it receives a response code of 400, 403, 405, or 501.
Note that the plugin output is only informational and does not necessarily indicate the presence of any
security vulnerabilities.
See Also
http://www.nessus.org/u?d9c03a9a
http://www.nessus.org/u?b019cbdb
https://www.owasp.org/index.php/Test_HTTP_Methods_(OTG-CONFIG-006)
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/800/www
10.13.100.116 486
Based on the response to an OPTIONS request :
- HTTP methods GET HEAD OPTIONS POST are allowed on :
10.13.100.116 487
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
nginx
10.13.100.116 488
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
nginx
10.13.100.116 489
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/800/www
Apache/2.4.52 (Ubuntu)
10.13.100.116 490
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Response Code : HTTP/1.1 301 Moved Permanently

SSL : no
Keep-Alive : no
Headers :
Server: nginx
Date: Mon, 09 Oct 2023 09:38:05 GMT
Content-Length: 162
Location: https://10.13.100.116/
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
Referrer-Policy: strict-origin
Response Body :
<html>
<head><title>301 Moved Permanently</title></head>
<body>
10.13.100.116 491
<center><h1>301 Moved Permanently</h1></center>
</body>
</html>
10.13.100.116 492
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :
Server: nginx
Date: Mon, 09 Oct 2023 09:38:05 GMT
Content-Length: 78
Last-Modified: Sun, 14 Aug 2022 08:00:48 GMT
ETag: "62f8abb0-4e"
X-Frame-Options: sameorigin
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
Referrer-Policy: strict-origin
Response Body :
10.13.100.116 493
<html><head><meta HTTP-EQUIV="REFRESH" content="0; url=/mail/"></head></html>
10.13.100.116 494
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/800/www

SSL : no
Keep-Alive : yes
Headers :
Date: Mon, 09 Oct 2023 09:38:05 GMT

Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sun, 14 Aug 2022 08:00:48 GMT
ETag: "4e-5e62ee9c2434e"
Content-Length: 78
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Response Body :
<html><head><meta HTTP-EQUIV="REFRESH" content="0; url=/mail/"></head></html>
10.13.100.116 495
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.116 496
11414 - IMAP Service Banner Retrieval
Synopsis
An IMAP server is running on the remote host.
Description
An IMAP (Internet Message Access Protocol) server is installed and running on the remote host.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap
The remote imap server banner is :
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS LOGINDISABLED]

Dovecot (Ubuntu) ready.
10.13.100.116 497
11414 - IMAP Service Banner Retrieval
Synopsis
An IMAP server is running on the remote host.
Description
An IMAP (Internet Message Access Protocol) server is installed and running on the remote host.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap
The remote imap server banner is :
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN]

Dovecot (Ubuntu) ready.
10.13.100.116 498
42085 - IMAP Service STARTTLS Command Support
Synopsis
The remote mail service supports encrypting traffic.
Description
The remote IMAP service supports the use of the 'STARTTLS' command to switch from a cleartext to an
encrypted communications channel.
See Also
https://en.wikipedia.org/wiki/STARTTLS
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap
The remote IMAP service responded to the 'STARTTLS' command with an

'OK' response code, suggesting that it supports that command. However,
Nessus failed to negotiate a TLS connection or get the associated SSL
certificate, perhaps because of a network connectivity problem or the
service requires a peer certificate as part of the negotiation.
10.13.100.116 499
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
10.13.100.116 500
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.116 501
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
10.13.100.116 502
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap
10.13.100.116 503
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.116 504
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp
10.13.100.116 505
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
10.13.100.116 506
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/800/www
10.13.100.116 507
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap
10.13.100.116 508
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3
10.13.100.116 509
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8081/ssh
10.13.100.116 510
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.116 511
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : Detected
10.13.100.116 512
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
SSH:!:SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.3
SinFP:
P1:B10113:F0x12:W64240:O0204ffff:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190701_7_p=443
HTTP:!:Server: nginx
SMTP:!:220-mail.lotusdew.in ESMTP Postfix

220 mail.lotusdew.in ESMTP Postfix\n220 mail.lotusdew.in ESMTP Postfix
SSLcert:!:i/CN:R3i/O:Let's Encrypts/CN:mail.lotusdew.in
039d014d43c96fc193a00b6a9c39f08bb61225c5
i/CN:R3i/O:Let's Encrypts/CN:mail.lotusdew.in
039d014d43c96fc193a00b6a9c39f08bb61225c5
i/CN:R3i/O:Let's Encrypts/CN:mail.lotusdew.in
039d014d43c96fc193a00b6a9c39f08bb61225c5
10.13.100.116 513
10.13.100.116 514
Synopsis
Description

Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
Plugin ID : 110723
Message :
Credentials were not provided for detected SSH service.
10.13.100.116 515
181418 - OpenSSH Detection
Synopsis
An OpenSSH-based SSH server was detected on the remote host.
Description
See Also
https://www.openssh.com/
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8081/ssh
Path : /
Version : 8.9p1
Distribution : ubuntu-3ubuntu0.3
10.13.100.116 516
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
10.13.100.116 517
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp
10.13.100.116 518
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
10.13.100.116 519
10185 - POP Server Detection
Synopsis
A POP server is listening on the remote port.
Description
The remote host is running a server that understands the Post Office Protocol (POP), used by email clients
to retrieve messages from a server, possibly across a network link.
See Also
https://en.wikipedia.org/wiki/Post_Office_Protocol
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
Remote POP server banner :
+OK Dovecot (Ubuntu) ready.
10.13.100.116 520
10185 - POP Server Detection
Synopsis
A POP server is listening on the remote port.
Description
The remote host is running a server that understands the Post Office Protocol (POP), used by email clients
to retrieve messages from a server, possibly across a network link.
See Also
https://en.wikipedia.org/wiki/Post_Office_Protocol
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3
Remote POP server banner :
+OK Dovecot (Ubuntu) ready.
10.13.100.116 521
42087 - POP3 Service STLS Command Support
Synopsis
Description
The remote POP3 service supports the use of the 'STLS' command to switch from a cleartext to an
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
The remote POP3 service responded to the 'STLS' command with an

'+OK' response code, suggesting that it supports that command. However,
Nessus failed to negotiate a TLS connection or get the associated SSL
certificate, perhaps because of a network connectivity problem or the
service requires a peer certificate as part of the negotiation.
10.13.100.116 522
54580 - SMTP Authentication Methods
Synopsis
The remote mail server supports authentication.
Description
The remote SMTP server advertises that it supports authentication.
See Also
Solution
Review the list of methods and whether they're available over an encrypted channel.
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
The following authentication methods are advertised by the SMTP

server with encryption :
LOGIN
PLAIN
10.13.100.116 523
10263 - SMTP Server Detection
Synopsis
An SMTP server is listening on the remote port.
Description
The remote host is running a mail (SMTP) server on this port.
Since SMTP servers are the targets of spammers, it is recommended you disable it if you do not use it.
Solution
Disable this service if you do not use it, or filter incoming traffic to this port.
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/25/smtp
Remote SMTP server banner :
220-mail.lotusdew.in ESMTP Postfix

220 mail.lotusdew.in ESMTP Postfix
10.13.100.116 524
Synopsis
Description
Solution
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/465/smtp
10.13.100.116 525
Synopsis
Description
Solution
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/587/smtp
10.13.100.116 526
42088 - SMTP Service STARTTLS Command Support
Synopsis
Description
The remote SMTP service supports the use of the 'STARTTLS' command to switch from a cleartext to an
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
Here is the SMTP service's SSL certificate that Nessus was able to
collect after sending a 'STARTTLS' command :
------------------------------ snip ------------------------------

Subject Name:
Common Name: mail.lotusdew.in
Issuer Name:
Country: US
Common Name: R3
Serial Number: 03 63 D2 16 EC D6 F4 4E 1C DC 51 86 EF AA 6E C0 EB 14
Version: 3
Not Valid Before: Aug 11 20:34:21 2023 GMT
10.13.100.116 527
Not Valid After: Nov 09 20:34:20 2023 GMT
Public Key Info:

Public Key: 00 AA FB 96 49 C3 C3 AF B2 AC D0 28 79 FA 3B 09 11 53 8A 33
19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
11 A3 29 B8 94 4B 5E E3 FE 1C 52 6B AC C2 65 C9 7A 40 4B A0
76 EF F4 FB 26 3A CF FC AF 35 59 7C 1C A0 B5 DC 89 EC F0 19
46 B4 E3 4D 1D 1C E7 48 D4 DF 76 A5 03 35 DF D4 43 00 CA 04
4B C5 C3 F9 EA 4B 05 4C 57 88 BA C4 B2 F0 B1 98 08 0D E8 19
50 7A 5D AA F7 B0 76 2C D6 A0 8F 40 D8 A1 ED 6A AE 88 33 E6
24 D4 D2 D4 C0 8D A6 CA C8 5C DB 61 4B B2 F0 EE 2E D9 5F 32
A2 A2 9B 2B 17 CC F1 2D 4E 9B 0C B4 63 4A E6 32 DB 18 32 82
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
BE E4 7D AA 3B 32 94 A3 07 C2 63 7A D8 E8 E0 1D 8E 26 77 E4
3A 87 54 FD CE A0 72 3D EE 6B 27 6D BC 5C 9C 0A 77
Exponent: 01 00 01

Signature: 00 95 18 B4 BA F5 7A B5 14 53 D9 9F 96 8E BA F7 B8 91 79 5F
30 7D 17 F9 78 D1 07 7F 92 EE FF 8C F8 88 A3 AF A0 75 D2 13
FC E7 6F 4A 48 47 1D 92 79 B9 FF 59 3A F3 F4 FC 7F B6 D3 C1
F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
75 60 A7 EE FC E5 61 E5 46 37 52 FD 55 F3 20 DC C6 D6 DD 24
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
9E 63 1F 0D 56 DE 0 [...]
10.13.100.116 528
42088 - SMTP Service STARTTLS Command Support
Synopsis
Description
The remote SMTP service supports the use of the 'STARTTLS' command to switch from a cleartext to an
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
Here is the SMTP service's SSL certificate that Nessus was able to
collect after sending a 'STARTTLS' command :
------------------------------ snip ------------------------------

Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3
10.13.100.116 529
Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
9E 63 1F 0D 56 DE 0 [...]
10.13.100.116 530
70657 - SSH Algorithms and Languages Supported
Synopsis
An SSH server is listening on this port.
Description
This script detects which algorithms and languages are supported by the remote service for encrypting
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8081/ssh
Nessus negotiated the following encryption algorithm with the server :
The server supports the following options for kex_algorithms :
curve25519-sha256
curve25519-sha256@libssh.org
diffie-hellman-group-exchange-sha256
diffie-hellman-group14-sha256
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
sntrup761x25519-sha512@openssh.com
The server supports the following options for server_host_key_algorithms :
ecdsa-sha2-nistp256
rsa-sha2-256
rsa-sha2-512
ssh-ed25519
The server supports the following options for encryption_algorithms_client_to_server :
aes128-ctr
aes128-gcm@openssh.com
aes192-ctr
aes256-ctr
10.13.100.116 531
chacha20-poly1305@openssh.com
The server supports the following options for encryption_algorithms_server_to_client :
aes128-ctr
aes192-ctr
aes256-ctr
The server supports the following options for mac_algorithms_client_to_server :
hmac-sha1
hmac-sha1-etm@openssh.com
hmac-sha2-256
hmac-sha2-256-etm@openssh.com
hmac-sha2-512
umac-128-etm@openssh.com
umac-128@openssh.com
umac-64@openssh.com
The server supports the following options for mac_algorithms_server_to_client :
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
The server supports the following options for compression_algorithms_client_to_server :
none
zlib@openssh.com
The server supports the following options for compression_algorithms_server_to_client :
none
zlib@openssh.com
10.13.100.116 532
149334 - SSH Password Authentication Accepted
Synopsis
The SSH server on the remote host accepts password authentication.
Description
See Also
https://tools.ietf.org/html/rfc4252#section-8
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8081/ssh
10.13.100.116 533
10881 - SSH Protocol Versions Supported
Synopsis
A SSH server is running on the remote host.
Description
This plugin determines the versions of the SSH protocol supported by the remote SSH daemon.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8081/ssh
The remote SSH daemon supports the following versions of the

SSH protocol :
- 1.99
- 2.0
10.13.100.116 534
153588 - SSH SHA-1 HMAC Algorithms Enabled
Synopsis
The remote SSH server is configured to enable SHA-1 HMAC algorithms.
Description
Although NIST has formally deprecated use of SHA-1 for digital signatures, SHA-1 is still considered
secure for HMAC as the security of HMAC does not rely on the underlying hash function being resistant to
collisions.
Note that this plugin only checks for the options of the remote SSH server.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8081/ssh
The following client-to-server SHA-1 Hash-based Message Authentication Code (HMAC) algorithms are
supported :
hmac-sha1
The following server-to-client SHA-1 Hash-based Message Authentication Code (HMAC) algorithms are
supported :
hmac-sha1
10.13.100.116 535
10267 - SSH Server Type and Version Information
Synopsis
Description
It is possible to obtain information about the remote SSH server by sending an empty authentication
request.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8081/ssh
SSH version : SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.3

SSH supported authentication : publickey,password
10.13.100.116 536
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
This port supports TLSv1.3/TLSv1.0/TLSv1.1/TLSv1.2.
10.13.100.116 537
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
10.13.100.116 538
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap
10.13.100.116 539
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.116 540
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp
10.13.100.116 541
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
10.13.100.116 542
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap
10.13.100.116 543
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3
10.13.100.116 544
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp

|-Subject : CN=mail.lotusdew.in
|-Not After : Nov 09 20:34:20 2023 GMT
10.13.100.116 545
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3

|-Not After : Nov 09 20:34:20 2023 GMT
10.13.100.116 546
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap

|-Not After : Nov 09 20:34:20 2023 GMT
10.13.100.116 547
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Not After : Nov 09 20:34:20 2023 GMT
10.13.100.116 548
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp

|-Not After : Nov 09 20:34:20 2023 GMT
10.13.100.116 549
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp

|-Not After : Nov 09 20:34:20 2023 GMT
10.13.100.116 550
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap

|-Not After : Nov 09 20:34:20 2023 GMT
10.13.100.116 551
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3

|-Not After : Nov 09 20:34:20 2023 GMT
10.13.100.116 552
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp

Nov 9 20:34:20 2023 GMT :
Subject : CN=mail.lotusdew.in
Not valid before : Aug 11 20:34:21 2023 GMT
Not valid after : Nov 9 20:34:20 2023 GMT
10.13.100.116 553
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3

Nov 9 20:34:20 2023 GMT :
10.13.100.116 554
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap

Nov 9 20:34:20 2023 GMT :
10.13.100.116 555
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

Nov 9 20:34:20 2023 GMT :
10.13.100.116 556
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp

Nov 9 20:34:20 2023 GMT :
10.13.100.116 557
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp

Nov 9 20:34:20 2023 GMT :
10.13.100.116 558
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap

Nov 9 20:34:20 2023 GMT :
10.13.100.116 559
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3

Nov 9 20:34:20 2023 GMT :
10.13.100.116 560
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3

Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
10.13.100.116 561
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
9E 63 1F 0D 56 DE 00 B9 5D 64 0E B7 4C 7E 1D 26 86 D8 F7 FC
9F 95 80 DE D3 30 53 75 3C 46 7A 2A EC 83 FC CC 4B 1C 65 58
9C C9 A5 AD F4 E3 71 BC E0 D8 84 81 92 FB 8D 71 01 36 7F [...]
10.13.100.116 562
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3

Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
10.13.100.116 563
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
10.13.100.116 564
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3

Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
10.13.100.116 565
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
10.13.100.116 566
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3

Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
10.13.100.116 567
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
10.13.100.116 568
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3

Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
10.13.100.116 569
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
10.13.100.116 570
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3

Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
10.13.100.116 571
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
10.13.100.116 572
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3

Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
10.13.100.116 573
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
10.13.100.116 574
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Version: 3

Public Key Info:

19 A5 CF 2D 93 6B 08 A8 BB 88 30 C1 59 21 6D 9B 1C A0 60 88
8F 8B B9 96 6F E1 69 EC 09 CA C0 38 15 37 14 E0 84 0B 30 61
10.13.100.116 575
6C 04 64 79 89 9C 18 E0 64 EA 6A 12 8C 2B 33 DB 0C A6 E2 3A
Exponent: 01 00 01

F0 C4 0F 86 E8 D2 31 F8 D8 35 F1 C8 81 79 C0 48 60 B3 F9 38
10 A2 45 1D EA 1A CF 16 56 7D 37 17 99 0C 71 46 FB 63 21 E3
10.13.100.116 576
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.116 577
Plugin Output
tcp/25/smtp

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 578
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.116 579
Plugin Output
tcp/110/pop3

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 580
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.116 581
Plugin Output
tcp/143/imap

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 582
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.116 583
Plugin Output
tcp/443/www

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 584
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.116 585
Plugin Output
tcp/465/smtp

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 586
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.116 587
Plugin Output
tcp/587/smtp

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 588
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.116 589
Plugin Output
tcp/993/imap

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 590
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.116 591
Plugin Output
tcp/995/pop3

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 592
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp

---------------------- ---------- --- ---- --------------------- ---
ECDHE-RSA-CAMELLIA-CBC-128 0xC0, 0x76 ECDH RSA Camellia-CBC(128)
SHA256
SHA384
SHA1
SHA1
DHE-RSA-CAMELLIA128-SHA 0x00, 0x45 DH RSA Camellia-CBC(128)
SHA1
10.13.100.116 593
SHA1
SHA1
SHA1
SHA1
SHA1
CAMELLIA128-SHA 0x00, 0x41 RSA RSA Camellia-CBC(128)
SHA1
SHA1
SHA256
SHA256
DHE-RSA-CAMELLIA128-SHA256 0x00, 0xBE DH RSA Camellia-CBC(128)
SHA256
DHE-RSA-CAMELLIA256-SHA256 0x00, 0xC4 DH RSA Camellia-CBC(256)
SHA256
ECDHE-RSA-AES128-SHA256 0xC0, 0x27 ECDH RSA AES-CBC(128) [...]
10.13.100.116 594
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3

---------------------- ---------- --- ---- --------------------- ---
SHA1
ECDHE-RSA-AES256-SHA384 0xC0, 0x28 ECDH RSA AES-CBC(256)
SHA384
{Cipher ID code}
Kex={key exchange}
10.13.100.116 595
{export flag}
10.13.100.116 596
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
10.13.100.116 597
{export flag}
10.13.100.116 598
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
10.13.100.116 599
{export flag}
10.13.100.116 600
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
10.13.100.116 601
SHA1
SHA1
SHA1
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
SHA256
10.13.100.116 602
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
10.13.100.116 603
SHA1
SHA1
SHA1
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
SHA256
10.13.100.116 604
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
10.13.100.116 605
{export flag}
10.13.100.116 606
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
10.13.100.116 607
{export flag}
10.13.100.116 608
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
DHE-RSA-AES-128-CCM-AEAD 0xC0, 0x9E DH RSA AES-CCM(128)
AEAD
10.13.100.116 609
DHE-RSA-AES-128-CCM8-AEAD 0xC0, 0xA2 DH RSA AES-CCM8(128)
AEAD
SHA256
DHE-RSA-AES-256-CCM-AEAD 0xC0, 0x9F DH RSA AES-CCM(256)
AEAD
AEAD
SHA384
DHE-RSA-CHACHA20-POLY1305 0xCC, 0xAA DH RSA ChaCha20-Poly1305(256)
SHA256
SHA256
SHA384
SHA256
ECDHE-RSA-CAMELLIA-CBC-256 0xC0, 0x77 ECDH RSA [...]
10.13.100.116 610
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.116 611
SHA384
SHA256
SHA384
SHA256
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
Note that this service does not encrypt traffic by default but does
support upgrading to an encrypted connection using STARTTLS.
10.13.100.116 612
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.116 613
SHA384
SHA256
SHA384
SHA256
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
Note that this service does not encrypt traffic by default but does
support upgrading to an encrypted connection using STARTTLS.
10.13.100.116 614
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.116 615
SHA384
SHA256
SHA384
SHA256
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 616
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
AEAD
10.13.100.116 617
AEAD
SHA256
AEAD
AEAD
SHA384
SHA256
SHA256
SHA384
SHA256
10.13.100.116 618
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
AEAD
10.13.100.116 619
AEAD
SHA256
AEAD
AEAD
SHA384
SHA256
SHA256
SHA384
SHA256
10.13.100.116 620
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.116 621
SHA384
SHA256
SHA384
SHA256
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 622
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.116 623
SHA384
SHA256
SHA384
SHA256
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 624
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp

---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
SHA256
AEAD
AEAD
10.13.100.116 625
SHA384
SHA256
SHA256
SHA384
SHA256
SHA384
SHA256
SHA1
SHA1
SHA1
SHA1
ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) [...]
10.13.100.116 626
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.116 627
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 628
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.116 629
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 630
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.116 631
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 632
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp

---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
SHA256
AEAD
AEAD
10.13.100.116 633
SHA384
SHA256
SHA256
SHA384
SHA256
SHA384
SHA256
SHA1
SHA1
SHA1
SHA1
10.13.100.116 634
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp

---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
SHA256
AEAD
AEAD
10.13.100.116 635
SHA384
SHA256
SHA256
SHA384
SHA256
SHA384
SHA256
SHA1
SHA1
SHA1
SHA1
10.13.100.116 636
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.116 637
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 638
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.116 639
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 640
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 641
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 642
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 643
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 644
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 645
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 646
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 647
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.116 648
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.116 649
Plugin Output
tcp/25/smtp
below:

---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD
AEAD
SHA256
SHA384
RSA-AES-128-CCM-AEAD 0xC0, 0x9C RSA RSA AES-CCM(128)
AEAD
RSA-AES-128-CCM8-AEAD 0xC0, 0xA0 RSA RSA AES-CCM8(128)
AEAD
SHA256
RSA-AES-256-CCM-AEAD 0xC0, 0x9D RSA RSA AES-CCM(256)
AEAD
AEAD
SHA384
SHA1
SHA1
SHA1
SHA1
ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH [...]
10.13.100.116 650
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.116 651
Plugin Output
tcp/110/pop3
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 652
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.116 653
Plugin Output
tcp/143/imap
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 654
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.116 655
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 656
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.116 657
Plugin Output
tcp/465/smtp
below:

---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD
AEAD
SHA256
SHA384
AEAD
AEAD
SHA256
AEAD
AEAD
SHA384
SHA1
SHA1
SHA1
SHA1
10.13.100.116 658
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.116 659
Plugin Output
tcp/587/smtp
below:

---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD
AEAD
SHA256
SHA384
AEAD
AEAD
SHA256
AEAD
AEAD
SHA384
SHA1
SHA1
SHA1
SHA1
10.13.100.116 660
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.116 661
Plugin Output
tcp/993/imap
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 662
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.116 663
Plugin Output
tcp/995/pop3
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.116 664
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
An SMTP server is running on this port.
10.13.100.116 665
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.116 666
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
A POP3 server is running on this port.
10.13.100.116 667
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap
An IMAP server is running on this port.
10.13.100.116 668
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
10.13.100.116 669
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp
tcp/465/smtp
An SMTP server is running on this port through TLSv1.
10.13.100.116 670
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
An SMTP server is running on this port.
10.13.100.116 671
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/800/www
10.13.100.116 672
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap
tcp/993/imap
An IMAP server is running on this port through TLSv1.2.
10.13.100.116 673
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3
A POP3 server is running on this port through TLSv1.2.
tcp/995/pop3
10.13.100.116 674
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8081/ssh
An SSH server is running on this port.
10.13.100.116 675
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.116 676
Synopsis
Description
connections.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

h2
http/1.1
10.13.100.116 677
Synopsis
Description

See Also
Solution
Risk Factor
None
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/25/smtp
10.13.100.116 678
Synopsis
Description

See Also
Solution
Risk Factor
None
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/465/smtp
10.13.100.116 679
Synopsis
Description

See Also
Solution
Risk Factor
None
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/587/smtp
10.13.100.116 680
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
10.13.100.116 681
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
10.13.100.116 682
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/143/imap
10.13.100.116 683
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.116 684
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/465/smtp
10.13.100.116 685
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
10.13.100.116 686
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/993/imap
10.13.100.116 687
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/995/pop3
10.13.100.116 688
Synopsis
scan policy.
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
SSH was detected on port 8081 but no credentials were provided.

SSH local checks were not enabled.
10.13.100.116 689
10.13.100.116 690
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.116
Hop Count: 1
10.13.100.116 691
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
http://10.13.100.116/1JYbPZYBRLrS.html
10.13.100.116 692
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
User-agent: *
Disallow: /
10.13.100.116 693
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/800/www
User-agent: *
Disallow: /
10.13.100.116 694
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
- mDNS hostname : mail.local.
10.13.100.116 695
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.116/
Version : unknown
10.13.100.116 696
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.116/
Version : unknown
10.13.100.116 697
10.13.100.118
0 0 2 1 35
Host Information
IP: 10.13.100.118
ly
OS: Arista EOS
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.118 698
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www

|-Subject : CN=xeninine
|-Issuer : CN=xeninine
10.13.100.118 699
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www

|-Subject : CN=xeninine
10.13.100.118 700
70658 - SSH Server CBC Mode Ciphers Enabled
Synopsis
The SSH server is configured to use Cipher Block Chaining.
Description
The SSH server is configured to support Cipher Block Chaining (CBC) encryption. This may allow an attacker
to recover the plaintext message from the ciphertext.
Note that this plugin only checks for the options of the SSH server and does not check for vulnerable
software versions.
Solution
Contact the vendor or consult product documentation to disable CBC mode cipher encryption, and enable
CTR or GCM cipher mode encryption.
Risk Factor
Low
VPR Score
6.5
2.6 (CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N)
References
BID 32319
CVE CVE-2008-5161
XREF CERT:958563
XREF CWE:200
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.118 701
The following client-to-server Cipher Block Chaining (CBC) algorithms
are supported :
aes128-cbc
aes256-cbc
The following server-to-client Cipher Block Chaining (CBC) algorithms

are supported :
aes128-cbc
aes256-cbc
10.13.100.118 702
39520 - Backported Security Patch Detection (SSH)
Synopsis
Description
Security patches may have been 'backported' to the remote SSH server without changing its version
number.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.118 703
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
cpe:/o:Arista:EOS

10.13.100.118 704
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote device type : unknown

10.13.100.118 705
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

10.13.100.118 706
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Response Code : HTTP/1.1 403 Forbidden

SSL : no
Keep-Alive : no
Headers :
content-length: 99
content-type:text/html
connection:close
cache-control:no-cache, no-store
Response Body :
<html><body><h1>HTTP 403 forbidden</h1>Access to the requested resource is forbidden.</body></html>
10.13.100.118 707
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :
content-length: 18200
connection:keep-alive
content-type:text/html
Response Body :

xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<script src="asset/jquery-3.6.0.min.js"></script>
<script src="asset/jquery.modal.min.js"></script>
<script src="asset/deploy.js"></script>
<script>
function copyToClipboard(element) {
10.13.100.118 708
var $temp = $('<input>')
$('body').append($temp)
$temp.val($(element).text()).select()
document.execCommand('copy')
$temp.remove()
}
</script>
<link rel="stylesheet" href="asset/jquery.modal.min.css" />
<link rel="stylesheet" href="asset/flexboxgrid.min.css" type="text/css" />
<link rel="stylesheet" href="asset/fontawesome-pro-5.8.1-web/css/all.css" />
<link rel="icon" type="image/png" href="asset/favicon.png" />
<style type="text/css">
/*-------------
General
-------------*/
html {
font: normal 16px sans-serif;
color: #555;
background-color: #f7f7f7;
}
.wrap {
max-width: 1280px;
}
.row {
text-align: center;
margin: 0 auto;
}
.danger {
color: #d9534f;
}
p {
text-align: center;
padding: 0.5em 1em;
margin: 0;
}
a {
color: inherit;
cursor: pointer;
opacity: 0.9;
}
a:hover {
opacity: 1;
}
a.btn {
text-decoration: none;
color: #fff;
border-radius: 4px;
text-transform: uppercase;
background-color: #cc584c; /* xcp-ng red */
[...]
10.13.100.118 709
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.118 710
Synopsis
Description
See Also
https://jquery.com/
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.118/asset/jquery-3.6.0.min.js
Version : 3.6.0
10.13.100.118 711
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.118 712
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.118 713
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.118 714
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.118 715
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
10.13.100.118 716
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote operating system : Arista EOS

Method : MLSinFP
SSH:!:SSH-2.0-OpenSSH_7.4
SSLcert:!:i/CN:xeninines/CN:xeninine
d376a537d3b3500517090e72d7d0d98def74e464
SinFP:!:
P1:B10113:F0x12:W29200:O0204ffff:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190701_7_p=22
The remote host is running Arista EOS
10.13.100.118 717
Synopsis
Description

Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
Plugin ID : 110723
Message :
10.13.100.118 718
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
Path : /
Version : 7.4
10.13.100.118 719
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
curve25519-sha256
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
ecdsa-sha2-nistp256
rsa-sha2-256
rsa-sha2-512
ssh-ed25519
ssh-rsa
aes128-cbc
aes128-ctr
aes256-cbc
aes256-ctr
10.13.100.118 720
aes128-cbc
aes128-ctr
aes256-cbc
aes256-ctr
hmac-sha1
hmac-sha2-256
hmac-sha2-512
hmac-sha1
hmac-sha2-256
hmac-sha2-512
none
zlib@openssh.com
none
zlib@openssh.com
10.13.100.118 721
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.118 722
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh

SSH protocol :
- 1.99
- 2.0
10.13.100.118 723
Synopsis
Description
collisions.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
supported :
hmac-sha1
supported :
hmac-sha1
10.13.100.118 724
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/22/ssh
SSH version : SSH-2.0-OpenSSH_7.4

10.13.100.118 725
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.118 726
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Common Name: xeninine
Issuer Name:
Common Name: xeninine
Serial Number: 00 BA 36 68 3A 76 8D 53 52
Version: 3

Public Key Info:

Public Key: 00 B4 65 C3 6B 41 C8 08 F4 E2 0F CA 90 3E 2F 07 94 BB 90 00
94 61 F6 B7 45 D3 36 95 C0 E4 C3 D5 F2 1C E0 20 02 E5 18 3C
06 5A 79 FB 81 C8 88 99 9A EA 09 8F F9 D4 2C 06 A9 C7 FD A7
31 DD 42 4A C3 5B 69 1F BF E7 21 5C D2 DE EC 29 58 AB 5B 8C
77 19 E9 21 DD E8 39 4D 2F 29 5B D3 12 44 5F 5D EE 0C 19 3D
87 EE 45 A5 E8 54 6D DF 26 EB AE CE C3 D5 91 93 53 81 60 EB
27 70 1B FD 3F 2F 27 76 68 81 EA 91 B5 85 E2 6B 2E FE CF F7
58 35 7A 4F 42 27 82 BB 31 79 CA 1D 0E 93 94 82 CC 4F CA 5A
FB 71 DC F0 6B 80 2A DC D6 27 8D 2D E9 5C EF EF F9 D4 B2 CD
39 07 16 5D BB E1 7C 35 0B 01 92 60 27 B8 29 80 21 9D 06 17
EB 76 A1 6A 0F 26 84 23 DF C2 6A 26 D5 E4 BA 9A 96 CF 8B D9
10.13.100.118 727
9B BC 3F F2 57 5D 61 8C 82 45 48 5F 6A 19 07 31 DD FB 80 D4
48 D0 A6 7C 0F B3 FE 63 90 BE 3B 91 81 E1 AC 1A 23
Exponent: 01 00 01

Signature: 00 13 15 01 4E E0 76 ED 11 04 86 CB D2 19 E6 FC 16 4C 8E D4
B8 7B 33 18 C3 25 72 55 97 02 7B CC D5 9F F4 37 81 12 D4 5D
47 FF 1D 93 4A 88 BD 56 8B 36 A8 EA D1 87 E5 7D A0 72 6E 73
52 FF 0A 2C 7C 70 16 33 F1 75 E1 F1 A8 91 D9 6D E7 FD A1 D6
C5 43 9A A1 BE 0E DC EF AE 23 31 AA F5 56 36 AD 30 85 35 05
B7 49 8A 5D 36 94 EE 86 47 DD 63 0E 69 C3 3A 7F C8 6D 24 34
5A 65 38 91 88 EB E9 B4 9C 14 56 AA 15 67 D4 CD 1F 92 70 E0
DE 48 35 21 A5 9F 60 6D E1 C6 1D BC 44 E9 3C 22 CE F8 C5 AD
59 4B 95 A4 26 52 26 13 9B 68 C6 FA 8C C7 EC E8 A1 FB 36 86
71 39 F5 FA 38 D9 83 5A 66 57 FA EB 69 13 22 39 B9 11 [...]
10.13.100.118 728
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA384
SHA256
SHA256
{Cipher ID code}
10.13.100.118 729
Kex={key exchange}
{export flag}
10.13.100.118 730
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
SHA384
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
10.13.100.118 731
{export flag}
10.13.100.118 732
62563 - SSL Compression Methods Supported
Synopsis
The remote service supports one or more compression methods for SSL connections.
Description
This script detects which compression methods are supported by the remote service for SSL connections.
See Also
http://www.iana.org/assignments/comp-meth-ids/comp-meth-ids.xml
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Nessus was able to confirm that the following compression method is

supported by the target :
DEFLATE (0x01)
10.13.100.118 733
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA384
SHA384
{Cipher ID code}
Kex={key exchange}
10.13.100.118 734
{export flag}
10.13.100.118 735
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.118 736
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.118 737
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.118 738
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.118 739
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
10.13.100.118 740
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.118 741
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.118 742
Synopsis
scan policy.
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0

10.13.100.118 743
10.13.100.118 744
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.118
Hop Count: 1
10.13.100.118 745
10.13.100.119
0 0 3 0 48
Host Information
IP: 10.13.100.119
ly
On
Vulnerabilities
10194 - HTTP Proxy POST Request Relaying
Synopsis
se
Interactive sessions can be open through the HTTP proxy.
lU
Description
The proxy allows the users to perform POST requests such as
POST http://cvs.nessus.org:21
ia
without any Content-length tag.
This request may give an attacker the ability to have an interactive session.
Tr
This problem may allow attackers to go through your firewall, by connecting to sensitive ports like 23
(telnet) using your proxy, or it can allow internal users to bypass the firewall rules and connect to ports they
should not be allowed to.
In addition to that, your proxy may be used to perform attacks against other networks.
r
Solution
Fo
Reconfigure your proxy so that only the users of the internal network can use it, and so that it can not
connect to dangerous ports (1-1024).
Risk Factor
Medium
10.13.100.119 746
Plugin Information
Plugin Output
tcp/3128/http_proxy
10.13.100.119 747
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.119 748
Plugin Information
Plugin Output
tcp/443/www


|-Not After : Sep 30 14:01:15 2021 GMT
|-Subject : CN=api.lotusdew.in
|-Not After : Mar 06 05:18:56 2023 GMT
10.13.100.119 749
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www
Subject : CN=api.lotusdew.in
Not valid before : Dec 6 05:18:57 2022 GMT
Not valid after : Mar 6 05:18:56 2023 GMT
10.13.100.119 750
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

(SAM)
cpe:/a:squid-cache:squid:5.2 -> squid-cache.org Squid
10.13.100.119 751
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.119 752
Synopsis
Description
directory.

See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7000/www
10.13.100.119 753
- HTTP methods GET HEAD OPTIONS are allowed on :
10.13.100.119 754
10192 - HTTP Proxy CONNECT Request Relaying
Synopsis
An HTTP proxy running on the remote host can be used to establish interactive sessions.
Description
The proxy allows users to perform CONNECT requests such as :
CONNECT http://cvs.example.org:23
This request gives the person who made it the ability to have an interactive session with a third-party site.
This issue may allow attackers to bypass your firewall by connecting to sensitive ports such as 23 (telnet)
via the proxy, or it may allow internal users to bypass the firewall rules and connect to ports or sites they
should not be allowed to.
In addition, your proxy may be used to perform attacks against other networks.
Solution
Reconfigure your proxy to refuse CONNECT requests.
Risk Factor
None
Plugin Information
Plugin Output
tcp/3128/http_proxy
10.13.100.119 755
10195 - HTTP Proxy Open Relay Detection
Synopsis
The remote web proxy server accepts requests.
Description
The remote web proxy accepts unauthenticated HTTP requests from the Nessus scanner. By routing
requests through the affected proxy, a user may be able to gain some degree of anonymity while browsing
websites, which will see requests as originating from the remote host itself rather than the user's host.
Solution
Make sure access to the proxy is limited to valid users / hosts.
Risk Factor
None
Plugin Information
Plugin Output
tcp/3128/http_proxy
10.13.100.119 756
11305 - HTTP Proxy Open gopher:// Request Relaying
Synopsis
The HTTP proxy accepts gopher:// requests.
Description
Gopher is an old network protocol which predates HTTP and is nearly unused today. As a result, gopher-
compatible software is generally less audited and more likely to contain security bugs than others.
By making gopher requests, an attacker may evade your firewall settings, by making connections to port
70, or may even exploit arcane flaws in this protocol to gain more privileges on this host.
Solution
Reconfigure your proxy so that it refuses gopher requests.
Risk Factor
None
Plugin Information
Plugin Output
tcp/3128/http_proxy
10.13.100.119 757
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
10.13.100.119 758
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/3128/http_proxy
squid/5.2
10.13.100.119 759
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www

SSL : no
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 09:28:46 GMT
Content-Length: 612
Last-Modified: Wed, 23 Nov 2022 10:53:38 GMT
ETag: "637dfbb2-264"
Response Body :
<!DOCTYPE html>
<html>
<head>
<style>
body {
width: 35em;
margin: 0 auto;
10.13.100.119 760
}
</style>
</head>
<body>


</body>
</html>
10.13.100.119 761
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/3128/http_proxy
Response Code : HTTP/1.1 400 Bad Request

SSL : no
Keep-Alive : no
Headers :
Server: squid/5.2
Mime-Version: 1.0
Date: Mon, 09 Oct 2023 09:28:46 GMT
Content-Type: text/html;charset=utf-8
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from esign-HVM-domU
X-Cache-Lookup: NONE from esign-HVM-domU:3128
Via: 1.1 esign-HVM-domU (squid/5.2)
Connection: close
Response Body :
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">

<html><head>
<meta type="copyright" content="Copyright (C) 1996-2020 The Squid Software Foundation and
contributors">
10.13.100.119 762
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>ERROR: The requested URL could not be retrieved</title>
<style type="text/css">
<head>
<title>Apache2 Ubuntu Default Page: It works</title>
<style type="text/css" media="screen">
* {
margin: 0px 0px 0px 0px;
padding: 0px 0px 0px 0px;
}
body, html {
background-color: #D8DBE2;
font-family: Verdana, sans-serif;

font-size: 11pt;
text-align: center;
}
div.main_page {
position: relative;
display: table;
width: 800px;
margin-bottom: 3px;
margin-left: auto;
margin-right: auto;
border-width: 2px;
border-color: #212738;
border-style: solid;
background-color: #FFFFFF;
text-align: center;
}
div.page_header {
height: 99px;
width: 100%;
background-color: #F5F6F7;
}
div.page_header span {
font-size: 180%;
font-weight: bold;
}
div.page_header img {
border: 0px 0px 0px;

}
div.table_of_contents {
clear: left;
min-width: 200px;
background-color: #FFFFFF;
10.13.100.125 830
text-align: left;
}
div.table_of_contents_item {
clear: left;
width: 100%;
backgroun [...]
10.13.100.125 831
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.125 832
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.125 833
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.125 834
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp
10.13.100.125 835
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/6001/x11
10.13.100.125 836
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.125 837
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
10.13.100.125 838
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.125 839
Synopsis
Description

Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
Plugin ID : 110723
Message :
10.13.100.125 840
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
Path : /
Version : 8.2p1
10.13.100.125 841
10940 - Remote Desktop Protocol Service Detection
Synopsis
The remote host has an remote desktop protocol service enabled.
Description
The Remote Desktop Protocol allows a user to remotely obtain a graphical login (and therefore act as a
local user on the remote host).
If an attacker gains a valid login and password, this service could be used to gain further access on the
remote host. An attacker may also use this service to mount a dictionary attack against the remote host to
try to log in remotely.
Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for
attackers to steal the credentials of legitimate users by impersonating the Windows server.
Solution
Disable the service if you do not use it, and do not allow this service to run across the Internet.
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp
10.13.100.125 842
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
curve25519-sha256
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
ecdsa-sha2-nistp256
rsa-sha2-256
rsa-sha2-512
ssh-ed25519
ssh-rsa
aes128-ctr
aes192-ctr
aes256-ctr
10.13.100.125 843
aes128-ctr
aes192-ctr
aes256-ctr
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
none
zlib@openssh.com
none
zlib@openssh.com
10.13.100.125 844
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.125 845
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh

SSH protocol :
- 1.99
- 2.0
10.13.100.125 846
Synopsis
Description
collisions.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
supported :
hmac-sha1
supported :
hmac-sha1
10.13.100.125 847
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/22/ssh

10.13.100.125 848
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp
10.13.100.125 849
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp
Subject Name:
Common Name: ubuntu
Issuer Name:
Common Name: ubuntu
Serial Number: 17 6B CD D6 DD 79 21 06 75 E4 9E 77 BE CF A9 A2 53 31 58 79
Version: 3
Not Valid Before: Apr 04 20:14:57 2021 GMT

Not Valid After: Apr 02 20:14:57 2031 GMT
Public Key Info:

Public Key: 00 A8 D9 FE 64 AF F4 60 4A 6C 74 1A 8E B1 BA 22 27 8F A0 85
FD 5C D8 4B 66 3D 4D 61 DA E0 0E 55 F7 C2 AB 11 F4 19 3A 7F
B2 63 8B 78 93 6F 58 93 97 B9 17 93 25 1D 24 64 0F 2D 5B 2D
41 1C 5E 8E 16 68 AE 78 D5 D9 02 96 83 21 8F 2D 51 60 56 03
A0 3D 3D 79 1B 39 30 6E B9 99 B8 C0 0C BB 58 9B 52 15 95 C3
DE A2 6D D5 74 BA 1A 90 CA 12 9D 6B 8B 61 F1 CA 69 EE C0 66
B6 77 79 B8 95 16 21 5E 0E AF F4 4A CD C0 37 F8 DA 33 62 E6
3F 13 3B 27 5B 9F 2D 63 DA EE 9F 1A 03 7D 84 FE 0E C9 7C AA
A8 BF 64 AC 80 87 00 C6 4E 2C 79 40 ED 4D 87 37 72 E2 F8 B4
66 7C D5 BE DD 8E F6 E1 32 31 6F 96 4C 98 A8 32 AE D9 47 C6
7A 97 A1 0D 51 66 17 4F 20 87 CA DD 0D EF 72 98 B3 1D 52 30
10.13.100.125 850
77 91 BB 11 9B D6 49 C6 C5 50 2B 02 F9 22 F5 9E CC 77 9D 7C
79 1D B2 01 0E 49 E9 C7 E0 87 5A B4 7E 45 7A A0 2B
Exponent: 01 00 01

Signature: 00 37 DE 11 79 7D 95 5C F8 41 0F 20 1F D9 EE DD FC 19 0F 0B
29 5A F5 96 70 B0 FF D5 80 DC 77 7F 38 66 85 A0 07 5A AC 4D
86 13 A2 47 EC 05 C3 C3 B7 42 E4 4B B6 90 84 68 72 55 2D D1
97 E2 14 DD 88 82 D4 C3 E9 04 55 81 34 92 91 F9 B4 C5 AB CF
10 34 73 39 71 0A BF 5D 76 F7 CB 42 4B 88 4A 38 9F C9 CF 8B
15 EC 35 03 BF 81 C9 5C 8C ED 7D A3 77 E6 79 FA 76 EF 83 3B
47 E4 7D DB ED 07 7C 4C CF A6 98 E3 BC 4C A7 0A 01 62 10 FA
56 41 BD 63 61 27 F2 34 B0 4E D8 9A 9B 5A 9D AC F3 FC 93 90
17 34 51 38 38 5C 92 15 DE E6 C4 B4 3E CC 40 97 5C 9B 93 6C
05 0B 00 42 85 23 12 58 [...]
10.13.100.125 851
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
SHA1
SHA1
SHA1
10.13.100.125 852
SHA1
SHA256
SHA256
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.125 853
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.125 854
SHA384
SHA256
SHA256
SHA384
SHA256
SHA256
SHA384
SHA1
SHA1
ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA [...]
10.13.100.125 855
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA256
SHA384
10.13.100.125 856
SHA256
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.125 857
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.125 858
Plugin Output
tcp/3389/msrdp
below:

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.125 859
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.125 860
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.125 861
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.125 862
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp
10.13.100.125 863
Synopsis
scan policy.
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0

10.13.100.125 864
10.13.100.125 865
64814 - Terminal Services Use SSL/TLS
Synopsis
The remote Terminal Services use SSL/TLS.
Description
The remote Terminal Services is configured to use SSL/TLS.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp
Subject Name:
Common Name: ubuntu
Issuer Name:
Common Name: ubuntu
Serial Number: 17 6B CD D6 DD 79 21 06 75 E4 9E 77 BE CF A9 A2 53 31 58 79
Version: 3

Not Valid After: Apr 02 20:14:57 2031 GMT
Public Key Info:

Public Key: 00 A8 D9 FE 64 AF F4 60 4A 6C 74 1A 8E B1 BA 22 27 8F A0 85
FD 5C D8 4B 66 3D 4D 61 DA E0 0E 55 F7 C2 AB 11 F4 19 3A 7F
B2 63 8B 78 93 6F 58 93 97 B9 17 93 25 1D 24 64 0F 2D 5B 2D
41 1C 5E 8E 16 68 AE 78 D5 D9 02 96 83 21 8F 2D 51 60 56 03
A0 3D 3D 79 1B 39 30 6E B9 99 B8 C0 0C BB 58 9B 52 15 95 C3
DE A2 6D D5 74 BA 1A 90 CA 12 9D 6B 8B 61 F1 CA 69 EE C0 66
B6 77 79 B8 95 16 21 5E 0E AF F4 4A CD C0 37 F8 DA 33 62 E6
3F 13 3B 27 5B 9F 2D 63 DA EE 9F 1A 03 7D 84 FE 0E C9 7C AA
A8 BF 64 AC 80 87 00 C6 4E 2C 79 40 ED 4D 87 37 72 E2 F8 B4
66 7C D5 BE DD 8E F6 E1 32 31 6F 96 4C 98 A8 32 AE D9 47 C6
7A 97 A1 0D 51 66 17 4F 20 87 CA DD 0D EF 72 98 B3 1D 52 30
10.13.100.125 866
77 91 BB 11 9B D6 49 C6 C5 50 2B 02 F9 22 F5 9E CC 77 9D 7C
79 1D B2 01 0E 49 E9 C7 E0 87 5A B4 7E 45 7A A0 2B
Exponent: 01 00 01

Signature: 00 37 DE 11 79 7D 95 5C F8 41 0F 20 1F D9 EE DD FC 19 0F 0B
29 5A F5 96 70 B0 FF D5 80 DC 77 7F 38 66 85 A0 07 5A AC 4D
86 13 A2 47 EC 05 C3 C3 B7 42 E4 4B B6 90 84 68 72 55 2D D1
97 E2 14 DD 88 82 D4 C3 E9 04 55 81 34 92 91 F9 B4 C5 AB CF
10 34 73 39 71 0A BF 5D 76 F7 CB 42 4B 88 4A 38 9F C9 CF 8B
15 EC 35 03 BF 81 C9 5C 8C ED 7D A3 77 E6 79 FA 76 EF 83 3B
47 E4 7D DB ED 07 7C 4C CF A6 98 E3 BC 4C A7 0A 01 62 10 FA
56 41 BD 63 61 27 F2 34 B0 4E D8 9A 9B 5A 9D AC F3 FC 93 90
17 34 51 38 38 5C 92 15 DE E6 C4 B4 3E CC 40 97 5C 9B 93 6C
05 0B 00 42 85 23 12 58 [...]
10.13.100.125 867
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.125
Hop Count: 1
10.13.100.125 868
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
- mDNS hostname : lotusdew-xilinx.local.
10.13.100.125 869
10.13.100.126
0 0 0 0 2
Host Information
IP: 10.13.100.126
ly
Vulnerabilities
On
Synopsis
Description
se
lU

ia

Tr

r

Fo
Solution
n/a
Risk Factor
None
10.13.100.126 870
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.126 871
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
An error was detected along the way.
10.13.100.126 872
10.13.100.126 873
ttl was greater than 50 - Completing Traceroute.
? [...]
10.13.100.126 874
10.13.100.131
0 0 2 0 38
Host Information
IP: 10.13.100.131
ly
OS: Nutanix
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.131 875
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www

|-Subject : C=AU/ST=Some-State/O=Internet Widgits Pty Ltd

|-Issuer : C=AU/ST=Some-State/O=Internet Widgits Pty Ltd
10.13.100.131 876
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www

10.13.100.131 877
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.131 878
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.131 879
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Response Code : HTTP/1.1 302 Found

SSL : no
Keep-Alive : yes
Headers :
X-DNS-Prefetch-Control: off
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-XSS-Protection: 0
Location: /signin
Vary: Accept, Accept-Encoding
Content-Type: text/plain; charset=utf-8
Content-Length: 29
Date: Mon, 09 Oct 2023 09:53:30 GMT
Response Body :
Found. Redirecting to /signin
10.13.100.131 880
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : yes
Headers :
X-XSS-Protection: 0
Location: /signin
Content-Length: 29
Date: Mon, 09 Oct 2023 09:54:25 GMT
Response Body :
10.13.100.131 881
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.131 882
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.131 883
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.131 884
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.131 885
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.131 886
42823 - Non-compliant Strict Transport Security (STS)
Synopsis
The remote web server implements Strict Transport Security incorrectly.
Description
The remote web server implements Strict Transport Security. However, it does not respect all the
requirements of the STS draft standard.
See Also
http://www.nessus.org/u?2fb3aca6
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
The Strict-Transport-Security header must not be sent over an

unencrypted channel.
10.13.100.131 887
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
The response from the web server listening on port 80 :
- does not contain a Status-Code of 301.

- does not contain a Location header field.
10.13.100.131 888
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.131 889
Synopsis
Description

Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
Plugin ID : 110723
Message :
10.13.100.131 890
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
Path : /
Version : 8.4p1
Distribution : debian-5+deb11u2
10.13.100.131 891
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
curve25519-sha256
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
ecdsa-sha2-nistp256
rsa-sha2-256
rsa-sha2-512
ssh-ed25519
ssh-rsa
aes128-ctr
aes192-ctr
aes256-ctr
10.13.100.131 892
aes128-ctr
aes192-ctr
aes256-ctr
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
none
zlib@openssh.com
none
zlib@openssh.com
10.13.100.131 893
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.131 894
Synopsis
Description
collisions.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
supported :
hmac-sha1
supported :
hmac-sha1
10.13.100.131 895
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/22/ssh
SSH version : SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u2

10.13.100.131 896
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.131 897
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www


|-Not After : Oct 20 11:35:02 2023 GMT
10.13.100.131 898
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

Oct 20 11:35:02 2023 GMT :
Subject : C=AU, ST=Some-State, O=Internet Widgits Pty Ltd

Issuer : C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
Not valid before : Oct 25 11:35:02 2022 GMT
Not valid after : Oct 20 11:35:02 2023 GMT
10.13.100.131 899
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Country: AU
State/Province: Some-State
Organization: Internet Widgits Pty Ltd
Issuer Name:
Country: AU
Serial Number: 57 7A 4C 29 B0 67 4A 4E EF 98 4D A7 B9 B3 3A 79 CF C0 C7 2A
Version: 3

Public Key Info:

Public Key: 00 94 20 89 4D 39 85 5A 33 33 9D DF C3 62 AC 7C 17 BE B2 FB
55 4F 9A EF 96 BD FE B3 70 3D 7E E0 81 E9 2C 5B 1A 90 41 18
2E B3 33 B6 C4 98 8C 30 3C CD EC E1 B8 37 BE 19 7B 3B 67 A0
4E 92 2D A9 68 8F BD 78 32 5C 6B AF B2 C6 6E B7 43 69 E7 96
D2 FE C9 72 37 85 4F 7B 9F 18 E5 36 73 B6 11 B5 3C 99 06 2D
B5 82 4C E5 6C D7 B5 07 D8 82 B4 23 13 16 AC 4C 09 82 4E 28
B8 8B A6 8C 4E CB BD 43 FD 48 D1 AF 1A D4 91 8F 48 D3 53 E9
10.13.100.131 900
7F 8B E0 15 45 77 46 14 23 88 E5 03 5F 8C 65 C2 06 A2 BB 5A
38 67 8B 8D 20 C7 72 29 03 9F C0 2F A2 81 46 32 B7 9A AF 17
72 4B A8 27 ED A4 12 D6 53 0D 4A 90 37 45 2B 41 7F AC E5 6E
F9 6D AE EC A1 1A 6D BD 6C 20 D1 33 83 D8 74 BA E7 CE CE DA
E5 FB 5C CB 04 A6 14 A7 E8 BE 78 A7 4E 06 7C 7A 5F 8D 9E 3B
12 03 E6 D4 D8 7A 4A 0B DD 3A 20 E5 1E 48 50 F8 75
Exponent: 01 00 01

Signature: 00 0B 1D 37 54 1C 14 15 33 09 58 57 60 5B 0C F7 1B 1A FA 4B
6D 75 59 D9 E2 8A BB FD E5 38 DB 74 D3 57 1C 6F B3 6B 3C 5F
3D 55 37 5C 80 FC 17 B9 8C C2 DD 17 E9 55 D8 C9 68 41 CF 6A
D0 10 CD 0F C1 0D E0 AE DC DF 3A DE 04 CB 59 EF E9 8F B7 D7
71 02 63 FA 77 95 87 E8 41 42 DD DE AF 2E 21 9B D2 52 03 E8
38 6F 36 BB 1D AF A6 27 B8 6A B5 6E 19 D3 73 C5 24 32 70 4F
00 5B 09 0E C1 AF E2 59 1D 5A 39 72 89 CB 07 58 3E BC 96 AF
73 D0 68 FD C8 CA F5 1D B6 E8 6C 33 D5 54 9D FC 04 E [...]
10.13.100.131 901
159544 - SSL Certificate with no Common Name
Synopsis
Checks for an SSL certificate with no Common Name
Description
The remote system is providing an SSL/TLS certificate without a subject common name field. While this is
not required in all cases, it is recommended to ensure broad compatibility.
See Also
https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.6
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Country: AU
Issuer Name:
Country: AU
Serial Number: 57 7A 4C 29 B0 67 4A 4E EF 98 4D A7 B9 B3 3A 79 CF C0 C7 2A
Version: 3

Public Key Info:
10.13.100.131 902
Public Key: 00 94 20 89 4D 39 85 5A 33 33 9D DF C3 62 AC 7C 17 BE B2 FB
55 4F 9A EF 96 BD FE B3 70 3D 7E E0 81 E9 2C 5B 1A 90 41 18
2E B3 33 B6 C4 98 8C 30 3C CD EC E1 B8 37 BE 19 7B 3B 67 A0
4E 92 2D A9 68 8F BD 78 32 5C 6B AF B2 C6 6E B7 43 69 E7 96
D2 FE C9 72 37 85 4F 7B 9F 18 E5 36 73 B6 11 B5 3C 99 06 2D
B5 82 4C E5 6C D7 B5 07 D8 82 B4 23 13 16 AC 4C 09 82 4E 28
B8 8B A6 8C 4E CB BD 43 FD 48 D1 AF 1A D4 91 8F 48 D3 53 E9
7F 8B E0 15 45 77 46 14 23 88 E5 03 5F 8C 65 C2 06 A2 BB 5A
38 67 8B 8D 20 C7 72 29 03 9F C0 2F A2 81 46 32 B7 9A AF 17
72 4B A8 27 ED A4 12 D6 53 0D 4A 90 37 45 2B 41 7F AC E5 6E
F9 6D AE EC A1 1A 6D BD 6C 20 D1 33 83 D8 74 BA E7 CE CE DA
E5 FB 5C CB 04 A6 14 A7 E8 BE 78 A7 4E 06 7C 7A 5F 8D 9E 3B
12 03 E6 D4 D8 7A 4A 0B DD 3A 20 E5 1E 48 50 F8 75
Exponent: 01 00 01

Signature: 00 0B 1D 37 54 1C 14 15 33 09 58 57 60 5B 0C F7 1B 1A FA 4B
6D 75 59 D9 E2 8A BB FD E5 38 DB 74 D3 57 1C 6F B3 6B 3C 5F
3D 55 37 5C 80 FC 17 B9 8C C2 DD 17 E9 55 D8 C9 68 41 CF 6A
D0 10 CD 0F C1 0D E0 AE DC DF 3A DE 04 CB 59 EF E9 8F B7 D7
71 02 63 FA 77 95 87 E8 41 42 DD DE AF 2E 21 9B D2 52 03 E8
38 6F 36 BB 1D AF A6 27 B8 6A B5 6E 19 D3 73 C5 24 32 70 4F
00 5B 09 0E C1 AF E2 59 1D 5A 39 72 89 CB 07 58 3E BC 96 AF
73 D0 68 FD C8 CA F5 1D B6 E8 6C 33 D5 54 9D FC 04 E [...]
10.13.100.131 903
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
SHA1
SHA1
SHA256
10.13.100.131 904
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.131 905
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.131 906
SHA384
SHA256
AEAD
AEAD
SHA256
AEAD
AEAD
SHA384
SHA1
ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA [...]
10.13.100.131 907
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA1
SHA1
10.13.100.131 908
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.131 909
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Issuer : C=AU/ST=Some-State/O=Internet Widgits Pty Ltd
|-Valid From : Oct 25 11:35:02 2022 GMT
|-Valid To : Oct 20 11:35:02 2023 GMT
10.13.100.131 910
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.131 911
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
SHA256
AEAD
AEAD
SHA384
SHA1
SHA1
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.131 912
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.131 913
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
10.13.100.131 914
42822 - Strict Transport Security (STS) Detection
Synopsis
The remote web server implements Strict Transport Security.
Description
The remote web server implements Strict Transport Security (STS).

The goal of STS is to make sure that a user does not accidentally downgrade the security of his or her
browser.
All unencrypted HTTP connections are redirected to HTTPS. The browser is expected to treat all cookies as
'secure' and to close the connection in the event of potentially insecure situations.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
The STS header line is :
10.13.100.131 915
Synopsis
Description

browser.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.131 916
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.131 917
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.131 918
Synopsis
scan policy.
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0

10.13.100.131 919
10.13.100.131 920
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.131
Hop Count: 1
10.13.100.131 921
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
http://10.13.100.131/VPFcQO9qr8e0.html
10.13.100.131 922
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
https://10.13.100.131/VPFcQO9qr8e0.html
10.13.100.131 923
10.13.100.137
0 0 0 0 2
Host Information
IP: 10.13.100.137
ly
Vulnerabilities
On
Synopsis
Description
se
lU
ia
Solution
Tr
Risk Factor
None
r
Fo
References
CVE CVE-1999-0524
10.13.100.137 924
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
The ICMP timestamps seem to be in little endian format (not in network format)
10.13.100.137 925
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.137 926
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.137 927
10.13.100.139
0 0 1 0 55
Host Information
IP: 10.13.100.139
ly
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.139 928
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.139 929
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.139 930
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.139 931
62351 - Erlang Port Mapper Daemon Detection
Synopsis
A port mapping service is listening on the remote host.
Description
The remote host is running Erlang Port Mapper Daemon, which acts as a name server on all hosts involved
in distributed Erlang computations.
See Also
http://erlang.org/doc/man/epmd.html
http://erlang.org/doc/apps/erts/erl_dist_protocol.html
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4369/epmd
The following services were returned by our request :
brokeragenode (35833/tcp)
10.13.100.139 932
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
10.13.100.139 933
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/4000/www
Cowboy
10.13.100.139 934
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8000/www
Cowboy
10.13.100.139 935
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/9000/www
Cowboy
10.13.100.139 936
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/32000/www
Cowboy
10.13.100.139 937
85805 - HTTP/2 Cleartext Detection
Synopsis
An HTTP/2 server is listening on the remote host.
Description
The remote host is running an HTTP server that supports HTTP/2 running over cleartext TCP (h2c).
See Also
https://http2.github.io/
https://github.com/http2/http2-spec
Solution
Limit incoming traffic to this port if desired.
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www
The server supports direct HTTP/2 connections

without encryption.
10.13.100.139 938
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www

without encryption.
10.13.100.139 939
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www

without encryption.
10.13.100.139 940
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www

without encryption.
10.13.100.139 941
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www

SSL : no
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 10:00:28 GMT
Content-Length: 612
Last-Modified: Sat, 12 Aug 2023 14:12:14 GMT
ETag: "64d7933e-264"
Response Body :
<!DOCTYPE html>
<html>
<head>
<style>
body {
width: 35em;
margin: 0 auto;
10.13.100.139 942
}
</style>
</head>
<body>


</body>
</html>
10.13.100.139 943
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www

SSL : no
Keep-Alive : no
Headers :
cache-control: max-age=0, private, must-revalidate

connection: close
content-type: text/html; charset=utf-8
cross-origin-window-policy: deny
date: Mon, 09 Oct 2023 10:00:29 GMT
server: Cowboy
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: F4xoHDI213uHGdMAAHbi
x-xss-protection: 1; mode=block
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.139 944
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta name="csrf-token" content="HQ0xEwsgGDQZHG8RIBR2figyPCUKBgwcZoibxj-qHx5DGvFNwJmAN_Zh">
<title data-suffix=" Â· Lotusdew Securities">BrokerWeb Â· Lotusdew Securities</title>
<link phx-track-static rel="stylesheet" href="/assets/app.css">
<script defer phx-track-static type="text/javascript" src="/assets/app.js"></script>
</head>
<body>
<body>
<main class="container">
<p class="alert alert-info" role="alert"></p>
<p class="alert alert-danger" role="alert"></p>
<div class="login-container">

<div class="login-right">
<h3 class="login-header">Welcome Back</h3>
<div class="login-content">
<div class="card-cont">
<form action="/" method="post"><input name="_csrf_token" type="hidden" hidden
value="HQ0xEwsgGDQZHG8RIBR2figyPCUKBgwcZoibxj-qHx5DGvFNwJmAN_Zh">
<div class="login-label"> <label for="user_phone_no">Phone no</label></div>

<div class="login-input">
<img src="/images/phone.png" class="phone-img">
<input id="user_phone_no" name="user[phone_no]" required type="number">
</div>
<div class="login-label">
<label for="user_password">Password</label>
[...]
10.13.100.139 945
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www

SSL : no
Keep-Alive : no
Headers :

Content-Length: 232
Date: Mon, 09 Oct 2023 10:00:28 GMT
Response Body :
10.13.100.139 946
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www

SSL : no
Keep-Alive : no
Headers :
Cache-Control: no-cache, no-store, must-revalidate

Expires: 0
Pragma: no-cache
connection: close
date: Mon, 09 Oct 2023 10:00:29 GMT
server: Cowboy
x-request-id: F4xoHAkC8_brOh8AAGpE
Response Body :
10.13.100.139 947
<!DOCTYPE html>
<html lang="en">
<head>
<meta name="csrf-token" content="W21KBHUCHTkjAkRKMwgGOQFAEXQFFjMrj996EiYNje68gkqRu-wLqBC_">
<title data-suffix=" Â· Phoenix Framework">Chart Â· Phoenix Framework</title>
<link phx-track-static rel="stylesheet" href="/css/app.css">
<script defer phx-track-static type="text/javascript" src="/js/app.js"></script>
</head>
<body>
<header>
<h2 style="text-align: center;">Candle Demo</h2>
</header>
<section class="phx-hero">
<h1>Welcome to Phoenix!</h1>
<p>Peace of mind from prototype to production</p>
</section>
<section class="row">
<article class="column">
<h2>Resources</h2>
<ul>
<li>
<a href="https://hexdocs.pm/phoenix/overview.html">Guides & Docs</a>
</li>
<li>
<a href="https://github.com/phoenixframework/phoenix">Source</a>
</li>
<li>
<a href="https://github.com/phoenixframework/phoenix/blob/v1.6/CHANGELOG.md">v1.6
Changelog</a>
</li>
</ul>
</article>
<h2>Help</h2>
<ul>
<li>
[...]
10.13.100.139 948
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 10:00:30 GMT
server: Cowboy
x-request-id: F4xoHFst-37EfKQAAG2D
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.139 949
<meta content="Lll-ZgJAPzobLy8QMS06MkJlPgceDTE4v2N_p-u_ajEghlTC-HxOQUPl" name="csrf-token">
<title data-suffix=" Â· Phoenix Framework">TradeBook Â· Phoenix Framework</title>
</head>
<body>
<header>
<section class="container">
<nav>
<ul>
<li><a href="https://hexdocs.pm/phoenix/overview.html">Get Started</a></li>
<li><a href="/dashboard">LiveDashboard</a></li>
</ul>
</nav>
<a href="https://phoenixframework.org/" class="phx-logo">
<img src="/images/phoenix.png" alt="Phoenix Framework Logo">
</a>
</section>
</header>
</section>
<h2>Resources</h2>
<ul>
<li>
</li>
<li>
<a href="https:/ [...]
10.13.100.139 950
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 10:00:31 GMT
server: Cowboy
x-request-id: F4xoHICMT5bfCDoAAIMB
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.139 951
<meta content="a0U3RQwbLCguElMzOHMqaQYicQ0BLSgS42B7ViGfXagZrDePcA6fXggc" name="csrf-token">
<title data-suffix=" Â· Phoenix Framework">TestApi Â· Phoenix Framework</title>
</head>
<body>
<header>
<nav>
<ul>
</ul>
</nav>
</a>
</section>
</header>
</section>
<h2>Resources</h2>
<ul>
<li>
</li>
<li>
<a href="https://g [...]
10.13.100.139 952
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.139 953
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.139 954
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.139 955
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www
10.13.100.139 956
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4369/epmd
10.13.100.139 957
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.139 958
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5555
10.13.100.139 959
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www
10.13.100.139 960
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www
10.13.100.139 961
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www
10.13.100.139 962
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.139 963
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.139 964
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.139 965
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.139 966
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Not After : Nov 14 05:31:50 2023 GMT
10.13.100.139 967
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

Nov 14 05:31:50 2023 GMT :
10.13.100.139 968
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Serial Number: 03 10 BB 2B 02 31 D3 90 37 0A 53 0B EF 2F 52 C3 19 B6
Version: 3

Public Key Info:

Public Key: 00 CA 8B 9F 94 D3 E1 45 1B 3E A8 B4 EF 97 6F FC 50 51 05 12
92 28 44 E9 70 6C AD 71 79 A3 42 3E 07 BB 19 15 85 00 F6 4B
6E 42 BB B2 11 48 DF EA C3 04 45 AC 02 A1 F5 78 68 91 6F 10
F7 DD 79 9C 03 26 3C 0C 47 B5 67 8F 58 BC 92 1A 70 D8 90 B1
4C E5 2B 31 63 10 72 DC 90 A6 30 43 EE 65 DB A8 23 94 E0 4F
7E 66 F8 E9 CB 2B 48 C7 1A DA E2 F7 FD 86 B1 16 6D 08 3F D6
81 46 26 2F D0 56 96 7F 68 D2 F3 4B 7E 55 D0 BC EF 48 20 7B
36 5E CE 1A D7 C1 6A 3C E0 79 2F 06 D8 58 39 13 DB 0F 35 45
E1 9A C8 7F 6E E1 75 2A 7A BB 61 F4 35 5B 3A 93 89 6D 66 85
10.13.100.139 969
28 DA E0 EA 05 E0 5B 7C 7B 9A 0A 08 0F 55 EF 81 8A CF F9 86
01 F0 D5 D5 86 1A 34 8A A2 2B 5E 7C E3 59 5F A8 1C 7C 56 12
78 FA 65 22 CD 5C 8D 69 67 2D 59 85 24 C0 92 8E 65 9A 5A DD
58 D3 99 FA C6 26 74 1C CC 9A 4E A0 10 04 67 83 A9
Exponent: 01 00 01

Signature: 00 8A DE EB D7 7E BE 01 FE E7 A5 FE 2B 75 FA 7A 6B 30 5F BE
3D 0A E5 B1 DF 1D A1 20 79 D3 11 23 98 D7 00 3E 73 96 DC 7E
6B 2C 99 F9 65 76 CB 6F 7E F8 AE E4 FD 03 75 5E E0 87 6D BB
3E C7 63 05 FB 4E B0 66 DF CD 6D CE 25 A2 DA 00 C4 BC 4C 60
A8 2A EA 51 D1 4A B8 3B D6 9D 42 5E 62 29 CE 35 69 6F BF 3B
51 76 59 87 00 AB 69 2D 27 6B 79 EC 01 89 14 9B 7B D7 28 FB
E2 69 ED A7 DA D4 A2 E5 3C F0 11 9F 5E AE FB 70 00 90 8C AD
61 D6 DE 4F 1F 5D 9B D5 20 38 DB A4 BB FE A5 C3 BD E5 9D CC
13 E7 DD 19 FD 5B 5C 31 4F 37 99 E0 89 12 1D 44 3B 79 31 07
[...]
10.13.100.139 970
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.139 971
Plugin Output
tcp/443/www

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.139 972
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.139 973
SHA384
SHA256
SHA384
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.139 974
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.139 975
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.139 976
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.139 977
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.139 978
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
10.13.100.139 979
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www
10.13.100.139 980
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.139 981
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www
10.13.100.139 982
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www
10.13.100.139 983
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www

10.13.100.139 984
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www
10.13.100.139 985
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.139 986
Synopsis
Description
connections.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

http/1.1
10.13.100.139 987
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.139 988
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.139
Hop Count: 1
10.13.100.139 989
Synopsis
Description
Solution

Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.139 990
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5555
Port : 5555
Type : get_http
Banner :
0x00: 68 69 73 74 6F 72 79 20 6F 66 20 6C 74 20 6E 6F history of lt no
0x10: 74 20 66 6F 75 6E 64 20 66 6F 72 20 74 68 69 73 t found for this
0x20: 20 74 6F 6B 65 6E token
10.13.100.139 991
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
- mDNS hostname : ubuntu-PowerEdge-T40.local.
10.13.100.139 992
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.139/
Version : 1.18.0
os : Ubuntu
10.13.100.139 993
10.13.100.140
0 0 0 0 29
Host Information
IP: 10.13.100.140
ly
On
Vulnerabilities
Synopsis
se
lU
Description
ia
See Also
Tr
r
Solution
Fo
n/a
Risk Factor
None
Plugin Information
Plugin Output
10.13.100.140 994
tcp/0

10.13.100.140 995
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.140 996
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www

SSL : no
Keep-Alive : yes
Headers :
X-XSS-Protection: 0
Location: /signin
Content-Length: 29
Date: Mon, 09 Oct 2023 09:54:09 GMT
Response Body :
10.13.100.140 997
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.140 998
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.140 999
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.140 1000
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/111/rpc-portmapper
10.13.100.140 1001
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.140 1002
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.140 1003
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
The Strict-Transport-Security header must not be sent over an

unencrypted channel.
10.13.100.140 1004
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.140 1005
Synopsis
Description

Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
Plugin ID : 110723
Message :
10.13.100.140 1006
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
Path : /
Version : 8.9p1
10.13.100.140 1007
11111 - RPC Services Enumeration
Synopsis
An ONC RPC service is running on the remote host.
Description
By sending a DUMP request to the portmapper, it was possible to enumerate the ONC RPC services
running on the remote port. Using this information, it is possible to connect and bind to each service by
sending an RPC request to the remote port.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
The following RPC services are available on TCP port 111 :
- program: 100000 (portmapper), version: 4

10.13.100.140 1008
11111 - RPC Services Enumeration
Synopsis
An ONC RPC service is running on the remote host.
Description
By sending a DUMP request to the portmapper, it was possible to enumerate the ONC RPC services
running on the remote port. Using this information, it is possible to connect and bind to each service by
sending an RPC request to the remote port.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/111/rpc-portmapper
The following RPC services are available on UDP port 111 :

10.13.100.140 1009
53335 - RPC portmapper (TCP)
Synopsis
An ONC RPC portmapper is running on the remote host.
Description
The RPC portmapper is running on this port.
The portmapper allows someone to get the port number of each RPC service running on the remote host
by sending either multiple lookup requests or a DUMP request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
10.13.100.140 1010
10223 - RPC portmapper Service Detection
Synopsis
An ONC RPC portmapper is running on the remote host.
Description
The RPC portmapper is running on this port.
The portmapper allows someone to get the port number of each RPC service running on the remote host
by sending either multiple lookup requests or a DUMP request.
Solution
n/a
Risk Factor
None
0.0 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N)
0.0 (CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:N)
References
CVE CVE-1999-0632
Plugin Information
Plugin Output
udp/111/rpc-portmapper
10.13.100.140 1011
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
curve25519-sha256
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
ecdsa-sha2-nistp256
rsa-sha2-256
rsa-sha2-512
ssh-ed25519
aes128-ctr
aes192-ctr
aes256-ctr
10.13.100.140 1012
aes128-ctr
aes192-ctr
aes256-ctr
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
none
zlib@openssh.com
none
zlib@openssh.com
10.13.100.140 1013
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.140 1014
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh

SSH protocol :
- 1.99
- 2.0
10.13.100.140 1015
Synopsis
Description
collisions.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
supported :
hmac-sha1
supported :
hmac-sha1
10.13.100.140 1016
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/22/ssh

10.13.100.140 1017
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.140 1018
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.140 1019
Synopsis
Description

browser.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.140 1020
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.140 1021
Synopsis
scan policy.
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0

10.13.100.140 1022
10.13.100.140 1023
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.140
Hop Count: 1
10.13.100.140 1024
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
http://10.13.100.140/Fy81U13HcTTL.html
10.13.100.140 1025
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
- mDNS hostname : xoabuild.local.
10.13.100.140 1026
10.13.100.144
0 0 0 0 23
Host Information
IP: 10.13.100.144
ly
On
Vulnerabilities
Synopsis
se
lU
Description
ia
See Also
Tr
r
Solution
Fo
n/a
Risk Factor
None
Plugin Information
Plugin Output
10.13.100.144 1027
tcp/0

10.13.100.144 1028
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.144 1029
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/4000/www
Cowboy
10.13.100.144 1030
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www

without encryption.
10.13.100.144 1031
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 09:59:15 GMT
server: Cowboy
x-request-id: F4xoCxlce7Qed5wAAD3y
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.144 1032
<meta name="csrf-token" content="NHIKZwBfICt6OBokUgUhHxk0Mw8OKgx_mKSR79kaLBtGgFOxmbugjpO2">
<title data-suffix=" Â· Phoenix Framework">CrmUpdated Â· Phoenix Framework</title>
<script src="https://cdn.tiny.cloud/1/8tdyc9vrq6iqtd6sdt80jjjls941wgc3wa22q7431mamo46d/
tinymce/5/tinymce.min.js"></script>
</head>
<body>
<main class="main-container">
<p class="alert alert-info" role="alert" phx-click="lv:clear-flash" phx-value-key="info"></p>
<p class="alert alert-danger" role="alert" phx-click="lv:clear-flash" phx-value-key="error"></p>

<div data-phx-main="true" data-phx-
session="SFMyNTY.g2gDaAJhBXQAAAAIZAACaWRtAAAAFHBoeC1GNHhvQ3hsZzVoTjNuRDRDZAAMbGl2ZV9zZXNzaW9uaAJkAAdkZWZhdWx0bggAS
data-phx-static="SFMyNTY.g2gDaAJhBXQAAAADZAAKYXNzaWduX25ld2pkAAVmbGFzaHQAAAAAZAACaWRtAA [...]
10.13.100.144 1033
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.144 1034
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.144 1035
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www
10.13.100.144 1036
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.144 1037
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.144 1038
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.144 1039
Synopsis
Description

Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
Plugin ID : 110723
Message :
10.13.100.144 1040
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
Path : /
Version : 8.9p1
10.13.100.144 1041
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
curve25519-sha256
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
ecdsa-sha2-nistp256
rsa-sha2-256
rsa-sha2-512
ssh-ed25519
aes128-ctr
aes192-ctr
aes256-ctr
10.13.100.144 1042
aes128-ctr
aes192-ctr
aes256-ctr
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com
none
zlib@openssh.com
none
zlib@openssh.com
10.13.100.144 1043
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.144 1044
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh

SSH protocol :
- 1.99
- 2.0
10.13.100.144 1045
Synopsis
Description
collisions.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
supported :
hmac-sha1
supported :
hmac-sha1
10.13.100.144 1046
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/22/ssh

10.13.100.144 1047
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
10.13.100.144 1048
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www
10.13.100.144 1049
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.144 1050
Synopsis
scan policy.
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0

10.13.100.144 1051
10.13.100.144 1052
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.144
Hop Count: 1
10.13.100.144 1053
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
- mDNS hostname : ubuntu-HVM-domU-2.local.
10.13.100.144 1054
10.13.100.147
0 0 1 0 83
Host Information
IP: 10.13.100.147
ly
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.147 1055
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www


|-Not After : Sep 30 14:01:15 2021 GMT
10.13.100.147 1056
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.147 1057
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.147 1058
62351 - Erlang Port Mapper Daemon Detection
Synopsis
A port mapping service is listening on the remote host.
Description
The remote host is running Erlang Port Mapper Daemon, which acts as a name server on all hosts involved
in distributed Erlang computations.
See Also
http://erlang.org/doc/man/epmd.html
http://erlang.org/doc/apps/erts/erl_dist_protocol.html
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4369/epmd
The following services were returned by our request :
brokeragenode (41615/tcp)
rmsnode (44905/tcp)
10.13.100.147 1059
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

10.13.100.147 1060
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
10.13.100.147 1061
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
10.13.100.147 1062
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/4000/www
Cowboy
10.13.100.147 1063
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/4001/www
Cowboy
10.13.100.147 1064
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/4040/www
Cowboy
10.13.100.147 1065
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/4080/www
Cowboy
10.13.100.147 1066
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8000/www
Cowboy
10.13.100.147 1067
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8001/www
Cowboy
10.13.100.147 1068
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/9000/www
Cowboy
10.13.100.147 1069
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/32000/www
Cowboy
10.13.100.147 1070
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www

without encryption.
10.13.100.147 1071
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4001/www

without encryption.
10.13.100.147 1072
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4040/www

without encryption.
10.13.100.147 1073
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4080/www

without encryption.
10.13.100.147 1074
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www

without encryption.
10.13.100.147 1075
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8001/www

without encryption.
10.13.100.147 1076
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www

without encryption.
10.13.100.147 1077
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www

without encryption.
10.13.100.147 1078
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www

SSL : no
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 12:23:58 GMT
Content-Length: 615
Last-Modified: Thu, 08 Jun 2023 05:10:17 GMT
ETag: "648162b9-267"
Response Body :
<!DOCTYPE html>
<html>
<head>
<style>
html { color-scheme: light dark; }
body { width: 35em; margin: 0 auto;
font-family: Tahoma, Verdana, Arial, sans-serif; }
10.13.100.147 1079
</style>
</head>
<body>


</body>
</html>
10.13.100.147 1080
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 12:23:58 GMT
x-request-id: F4xv8IkDW1QZF2sAAMWH
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.147 1081
<meta content="I197SCY7eS5NGBYmC0AidBwSKAg0AlZCor-ykq-mzntNhuQEzfKas59p" name="csrf-token">
<title>Lotusdew Securities</title>
<style>
@import url('https://fonts.googleapis.com/css2?family=Play&display=swap');
</style>
</head>
<body>

<div class="navbar-container">
<div class="logo-container">
<div class="logo-img-container">
<a href="/">
<img src="/images/logo-dark.png">
</a>
</div>
<div class="logo-name-conta [...]
10.13.100.147 1082
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 12:26:24 GMT
server: Cowboy
x-request-id: F4xwEpBBocOj8osANuTG
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.147 1083
<meta name="csrf-token" content="Gxw6CwtyHigDdzFoAQQOWhs3F3MQHzduCWuFa4Ixj-c7cTd7TcAKfjN7">
<title data-suffix=" Â· Lotusdew Securities">BrokerWeb Â· Lotusdew Securities</title>
</head>
<body>
<body>
<div class="login-container">

<div class="login-right">
<h3 class="login-header">Welcome Back</h3>
<div class="login-content">
<div class="card-cont">
<form action="/" method="post"><input name="_csrf_token" type="hidden" hidden
value="Gxw6CwtyHigDdzFoAQQOWhs3F3MQHzduCWuFa4Ixj-c7cTd7TcAKfjN7">
<div class="login-label"> <label for="user_phone_no">Phone no</label></div>

<div class="login-input">
<img src="/images/phone.png" class="phone-img">
<input id="user_phone_no" name="user[phone_no]" required type="number">
</div>
<div class="login-label">
<label for="user_password">Password</label>
[...]
10.13.100.147 1084
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4001/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 12:24:02 GMT
server: Cowboy
x-request-id: F4xv8ZhJTp_xRzEAAFiB
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.147 1085
<meta name="csrf-token" content="XQwoAhADLnVTDjRDcxAJJFE4QT4qfCkK-mkhsfI07BGsB_OtgN2uO0GI">
<title data-suffix=" Â· Phoenix Framework">Adminstrator Â· Phoenix Framework</title>
</head>
<body>
<header>
</header>
<body>
<section class="h-screen">
<div class="px-6 h-full text-gray-800">
<div class="flex xl:justify-center lg:justify-between justify-center items-center flex-wrap h-full
g-6">
<div class="xl:ml-20 xl:w-5/12 lg:w-5/12 md:w-8/12 mb-12 md:mb-0">
<p class="text-lg mb-0 mr-4">Log in</p>
<form action="/login" method="post"><input name="_csrf_token" type="hidden"
value="XQwoAhADLnVTDjRDcxAJJFE4QT4qfCkK-mkhsfI07BGsB_OtgN2uO0GI">
<div class="mb-6">
<input class="form-control block w-full px-4 py-2 text-xl font-normal text-gray-700 bg-white bg-
clip-padding border border-solid border-gray-300 rounded transition ease-in-out m-0 focus:text-
gray-700 focus:bg-white focus:border-blue-600 focus:outline-none" id="user_phone [...]
10.13.100.147 1086
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4040/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 12:27:17 GMT
server: Cowboy
x-request-id: F4xwHylFS_9fKLkAASVB
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.147 1087
<meta name="csrf-token" content="AVwnNTwSEiJcRigITxM8ZTIqWD46dw8MQoTjeDBmhrOW9qMTENljI-yA">
<title data-suffix=" Â· Phoenix Framework">Pstream Â· Phoenix Framework</title>
</head>
<body>
<header>
<h1>Price Streamer</h1>
</section>
</header>
<form action="/session" method="post"><input name="_csrf_token" type="hidden"
value="AVwnNTwSEiJcRigITxM8ZTIqWD46dw8MQoTjeDBmhrOW9qMTENljI-yA">
<label>
Phone: <input class="qa-session-phone" id="phone" name="phone" type="text">
</label>
<button class="qa-session-submit" type="submit">Submit</button>
</form>
</main>
</body>
</html>
10.13.100.147 1088
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4080/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 12:26:24 GMT
server: Cowboy
x-request-id: F4xwEr56ZTr5JvoAAO2D
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.147 1089
<meta content="AmIeAh0-CS9jcUcwMGctAztpPyUgYykIQ0A5tRjg582iJWH4yDvnw9DY" name="csrf-token">
<title>Lotusdew Securities</title>
<style>
@import url('https://fonts.googleapis.com/css2?family=Play&display=swap');
</style>
</head>
<body>

<div class="navbar-container">
<div class="logo-container">
<div class="logo-img-container">
<a href="/">
<img src="/images/logo-dark.png">
</a>
</div>
<div class="logo-name-container">
<a hre [...]
10.13.100.147 1090
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www

SSL : no
Keep-Alive : no
Headers :
Cache-Control: no-cache, no-store, must-revalidate

Expires: 0
Pragma: no-cache
connection: close
date: Mon, 09 Oct 2023 12:24:59 GMT
server: Cowboy
x-request-id: F4xv_sFdvphdTSAC4vkC
Response Body :
10.13.100.147 1091
<!DOCTYPE html>
<html lang="en">
<head>
<meta name="csrf-token" content="ATY5fg4pLSdTKhMVBCEqLC8eABIBOA4WtAR5ybcIfXpmlPmHZDpCVlTo">
<title data-suffix=" Â· Phoenix Framework">Chart Â· Phoenix Framework</title>
<link phx-track-static rel="stylesheet" href="/css/app.css">
<script defer phx-track-static type="text/javascript" src="/js/app.js"></script>
</head>
<body>
<header>
<h2 style="text-align: center;">Candle Demo</h2>
</header>
</section>
<h2>Resources</h2>
<ul>
<li>
</li>
<li>
<a href="https://github.com/phoenixframework/phoenix">Source</a>
</li>
<li>
<a href="https://github.com/phoenixframework/phoenix/blob/v1.6/CHANGELOG.md">v1.6
Changelog</a>
</li>
</ul>
</article>
<h2>Help</h2>
<ul>
<li>
[...]
10.13.100.147 1092
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8001/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 12:23:59 GMT
server: Cowboy
x-request-id: F4xv8Qn__jFT6f4AAFgB
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.147 1093
<meta name="csrf-token" content="OSEaEDR0Jy4EVDNaAUNqbhgbBDIOBQorMTXSuAKeplUn0004TTnCzpgF">
<title data-suffix=" Â· Phoenix Framework">RMSWeb Â· Phoenix Framework</title>
</head>
<body>
<header>
<nav>
<ul>
</ul>
</nav>
</a>
</section>
</header>
<div data-phx-
session="SFMyNTY.g2gDaAJhBXQAAAAIZAACaWRtAAAAFHBoeC1GNHh2OFFvWkFianBfbGhCZAAMbGl2ZV9zZXNzaW9uZAADbmlsZAAKcGFyZW50X
[...]
10.13.100.147 1094
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 12:25:48 GMT
server: Cowboy
x-request-id: F4xwCklg0-phKioANuRG
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.147 1095
<meta content="BXE0NzJCPjh6C2gjXTRgGAsmKTVeDFcYH6__Jz_j3hEQ9uPkZwZmoa1J" name="csrf-token">
<title data-suffix=" Â· Phoenix Framework">TradeBook Â· Phoenix Framework</title>
</head>
<body>
<header>
<nav>
<ul>
</ul>
</nav>
</a>
</section>
</header>
</section>
<h2>Resources</h2>
<ul>
<li>
</li>
<li>
<a href="https:/ [...]
10.13.100.147 1096
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www

SSL : no
Keep-Alive : no
Headers :

connection: close
date: Mon, 09 Oct 2023 12:27:18 GMT
server: Cowboy
x-request-id: F4xwHv-9B_3CfRsAPa-J
Response Body :
<!DOCTYPE html>
<html lang="en">
<head>
10.13.100.147 1097
<meta content="QgQ9OERGQhMqByQhKXE-GxZ3PRAGCTcf5aJq04uaFaoQCDmlGZmbpFqW" name="csrf-token">
<title data-suffix=" Â· Phoenix Framework">TestApi Â· Phoenix Framework</title>
</head>
<body>
<header>
<nav>
<ul>
</ul>
</nav>
</a>
</section>
</header>
</section>
<h2>Resources</h2>
<ul>
<li>
</li>
<li>
<a href="https://g [...]
10.13.100.147 1098
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.147 1099
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.147 1100
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.147 1101
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www
10.13.100.147 1102
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4001/www
10.13.100.147 1103
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4040/www
10.13.100.147 1104
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4080/www
10.13.100.147 1105
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4369/epmd
10.13.100.147 1106
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.147 1107
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5555
10.13.100.147 1108
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www
10.13.100.147 1109
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8001/www
10.13.100.147 1110
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www
10.13.100.147 1111
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www
10.13.100.147 1112
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.147 1113
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.147 1114
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.147 1115
Synopsis
Description
Solution
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
10.13.100.147 1116
10.13.100.147 1117
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.147 1118
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Not After : Nov 13 20:27:34 2023 GMT
10.13.100.147 1119
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

Nov 13 20:27:34 2023 GMT :
10.13.100.147 1120
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Serial Number: 04 DA 27 DF 9D FB 57 B0 B9 B3 C5 B2 7B 2B D9 D2 8F BC
Version: 3

Public Key Info:
Algorithm: EC Public Key

Elliptic Curve: P256
Public Key X: 4A 95 EB 97 CE 96 84 63 45 60 67 9F ED 5F 74 50 14 14 A1 D6
BD 10 58 26 6F CA 6E 2F 30 90 81 F0
Public Key Y: 21 7E 2A E8 72 F5 DD 72 D9 A6 B5 F6 40 F9 34 47 0B F3 9B 1D
25 61 7F E3 2C 4A 1C 7C 9A 2A 0A 6F

Signature: 00 88 FA 0A 5B DD A5 9F B6 0E 37 1D 81 B9 B2 4D 29 42 4E 35
E8 E6 26 F0 4F 96 AD 56 A1 53 51 A2 A1 6E 35 84 4A 50 42 F0
10.13.100.147 1121
2F 2D 76 56 2B 64 85 EC C7 91 10 72 D8 2C 1F A6 11 FE 42 15
EA D8 15 54 C4 4A B0 0D 60 BA C1 88 F5 08 7C A4 64 51 A9 DD
6B AF 80 16 15 43 DF F3 22 61 8B D0 F2 C2 FA CD B1 75 05 64
63 DE A9 60 9F A5 E4 73 B7 24 5F 03 3C 80 98 7A CD DA 2D 33
7F B1 C7 88 96 AA B5 22 C8 C2 08 0D E8 48 7F A4 D4 65 1D 2D
DB 82 CF 41 9B 46 31 65 FC AD E3 AB 9C FD 68 81 EB 2C C9 13
02 0F 2C C3 82 BF 29 C1 AF 25 3B 5C 08 D7 7D E0 60 94 C0 A3
96 A4 98 74 63 EE 33 24 CC A3 50 C4 D9 0A 6E 20 97 28 D0 19
8B 4C B3 DE D6 FD C8 09 53 7B 99 60 FC 07 66 7C B3 3B 05 84
A8 9D 6F E3 97 3D 72 8F 1E 5C 8D E5 20 35 D0 5A 5B 78 2D 8F
2E 6D 0C 15 05 DF E8 BD 5B 5B 94 96 56 86 83 D7 AB
Extension: Key Usage (2.5.29.15)

Critical: 1
Key Usage: Digital Signature
Extension: Extended Key Usage (2.5.29.37)

Critical: 0
Purpose#1: Web Server Authentication (1.3.6.1.5.5.7.3.1)
Purpose#2: Web Client Authentication (1.3.6.1.5.5.7.3.2)

Critical: 1

Critical: 0
Subject Key Identifier: CE B6 FD BF 57 BF 0B 6E 03 [...]
10.13.100.147 1122
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.147 1123
Plugin Output
tcp/443/www

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.147 1124
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
ECDHE-ECDSA-AES128-SHA256 0xC0, 0x2B ECDH ECDSA AES-GCM(128)
SHA256
10.13.100.147 1125
ECDHE-ECDSA-AES256-SHA384 0xC0, 0x2C ECDH ECDSA AES-GCM(256)
SHA384
ECDHE-ECDSA-CHACHA20-POLY1305 0xCC, 0xA9 ECDH ECDSA ChaCha20-Poly1305(256)
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.147 1126
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
ECDHE-ECDSA-AES128-SHA256 0xC0, 0x2B ECDH ECDSA AES-GCM(128)
SHA256
ECDHE-ECDSA-AES256-SHA384 0xC0, 0x2C ECDH ECDSA AES-GCM(256)
SHA384
ECDHE-ECDSA-CHACHA20-POLY1305 0xCC, 0xA9 ECDH ECDSA ChaCha20-Poly1305(256)
SHA256
{Cipher ID code}
10.13.100.147 1127
Kex={key exchange}
{export flag}
10.13.100.147 1128
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.147 1129
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.147 1130
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
10.13.100.147 1131
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www

10.13.100.147 1132
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4001/www
10.13.100.147 1133
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4040/www

10.13.100.147 1134
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4080/www

10.13.100.147 1135
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www

10.13.100.147 1136
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www

10.13.100.147 1137
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8001/www
10.13.100.147 1138
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www

10.13.100.147 1139
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www

10.13.100.147 1140
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4000/www
10.13.100.147 1141
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4040/www
10.13.100.147 1142
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4080/www
10.13.100.147 1143
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.147 1144
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8000/www
10.13.100.147 1145
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/9000/www
10.13.100.147 1146
Synopsis
Description
request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/32000/www
10.13.100.147 1147
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.147 1148
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.147 1149
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.147
Hop Count: 1
10.13.100.147 1150
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
The remote web server is very slow - it took 267

seconds to execute the plugin no404.nasl (it usually only takes a few
seconds).
In order to keep the scan total time to a reasonable amount, the

remote web server has not been tested.
If you want to test the remote server, either fix it to have it reply
to Nessus' requests in a reasonable amount of time, or enable the
'Perform thorough tests' setting.
10.13.100.147 1151
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
- mDNS hostname : blaster.local.
10.13.100.147 1152
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.147/
Version : 1.22.0
os : Ubuntu
10.13.100.147 1153
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.147/
Version : 1.22.0
os : Ubuntu
10.13.100.147 1154
10.13.100.151
0 1 3 1 25
Host Information
IP: 10.13.100.151
ly
On
Vulnerabilities
Synopsis
se
lU
Description
ia
physical network.
Tr
See Also
r
Solution
Fo
Risk Factor
Medium
10.13.100.151 1155
VPR Score
6.1
References
CVE CVE-2016-2183
Plugin Information
Plugin Output
tcp/7070

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.151 1156
18405 - Remote Desktop Protocol Server Man-in-the-Middle Weakness
Synopsis
It may be possible to get access to the remote host.
Description
The remote version of the Remote Desktop Protocol Server (Terminal Service) is vulnerable to a man-in-
the-middle (MiTM) attack. The RDP client makes no effort to validate the identity of the server when setting
up encryption. An attacker with the ability to intercept traffic from the RDP server can establish encryption
with the client and server without being detected. A MiTM attack of this nature would allow the attacker to
obtain any sensitive information transmitted, including authentication credentials.
This flaw exists because the RDP server stores a publicly known hard-coded RSA private key. Any attacker in
a privileged network location can use the key for this attack.
See Also
http://www.nessus.org/u?8033da0d
Solution
- Force the use of SSL as a transport layer for this service if supported, or/and
- On Microsoft Windows operating systems, select the 'Allow connections only from computers running
Remote Desktop with Network Level Authentication' setting if it is available.
Risk Factor
Medium
VPR Score
2.5
5.1 (CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P)
References
10.13.100.151 1157
BID 13818
CVE CVE-2005-1794
Plugin Information
Plugin Output
tcp/3389/msrdp
10.13.100.151 1158
Synopsis
Description
See Also
Solution
Risk Factor
Medium
10.13.100.151 1159
Plugin Information
Plugin Output
tcp/7070

|-Subject : CN=AnyDesk Client

|-Issuer : CN=AnyDesk Client
10.13.100.151 1160
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/7070

|-Subject : CN=AnyDesk Client
10.13.100.151 1161
10407 - X Server Detection
Synopsis
An X11 server is listening on the remote host
Description
The remote host is running an X11 server. X11 is a client-server protocol that can be used to display
graphical applications running on a given host on a remote client.
Since the X11 traffic is not ciphered, it is possible for an attacker to eavesdrop on the connection.
Solution
Restrict access to this port. If the X11 client/server facility is not used, disable TCP support in X11 entirely (-
nolisten tcp).
Risk Factor
Low
Plugin Information
Plugin Output
tcp/6001/x11
X11 Version : 11.0
10.13.100.151 1162
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.151 1163
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.151 1164
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
The remote clock is synchronized with the local clock.
10.13.100.151 1165
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp
10.13.100.151 1166
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5555
10.13.100.151 1167
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/6001/x11
10.13.100.151 1168
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070
10.13.100.151 1169
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.151 1170
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.151 1171
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.151 1172
Synopsis
Description
Solution
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/0
10.13.100.151 1173
10.13.100.151 1174
10940 - Remote Desktop Protocol Service Detection
Synopsis
The remote host has an remote desktop protocol service enabled.
Description
The Remote Desktop Protocol allows a user to remotely obtain a graphical login (and therefore act as a
local user on the remote host).
If an attacker gains a valid login and password, this service could be used to gain further access on the
remote host. An attacker may also use this service to mount a dictionary attack against the remote host to
try to log in remotely.
Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for
attackers to steal the credentials of legitimate users by impersonating the Windows server.
Solution
Disable the service if you do not use it, and do not allow this service to run across the Internet.
Risk Factor
None
Plugin Information
Plugin Output
tcp/3389/msrdp
10.13.100.151 1175
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070
10.13.100.151 1176
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070
Subject Name:
Common Name: AnyDesk Client
Issuer Name:
Common Name: AnyDesk Client
Serial Number: 01
Version: 1

Not Valid After: Jul 28 07:19:43 2073 GMT
Public Key Info:

Public Key: 00 BB F8 6B 92 7B 25 DA 5E 24 E4 38 BA 11 86 BC 2E C1 D6 E6
B6 33 68 6E 3D FB F7 8F C4 5A 77 97 18 80 9F AA A3 97 EE 40
20 1F AD F8 EA 61 B0 37 D6 1D 33 E4 06 77 6E 0B 00 7C 4C 5A
2B ED 6D 34 90 3F C8 F9 C0 36 A3 33 45 51 24 AB 03 85 EB 3A
73 14 07 45 75 87 E9 7A BF 9D 1B B4 D5 F1 43 02 CE A1 16 F7
D4 65 5A FF D6 39 04 CC 58 1C 88 FD F7 D6 52 04 E2 09 D0 B3
D4 71 21 9A A2 67 60 FF E8 2F AC 66 66 6B D5 8C 90 81 06 97
7E C3 53 03 75 E2 FE 97 1F 21 85 37 F3 6E 67 91 AE B5 6C 72
62 A2 A0 A7 65 E1 AC B8 36 1B 67 4E 74 98 9E BC DB FB 5C 82
26 5D 73 EB 37 1E 45 19 B6 2F 3C 88 CD 3F 23 F0 FC 19 7D 18
6A 0E DB DD 25 AA 74 00 57 4F F8 16 83 2E B0 C5 24 55 37 F0
10.13.100.151 1177
F9 B8 A7 2C E3 B0 00 2B 8D 2D 34 B9 22 E7 B4 4C 14 43 F5 76
B8 7E 14 95 8E 25 29 9D 86 78 8E 6C B3 D7 7C 65 D7
Exponent: 01 00 01

Signature: 00 71 B0 D4 7C 2F 66 AB 56 19 CE F9 99 D4 5C 95 9F 4B FE F0
BE 19 E9 0A 48 DF 37 A8 C2 E0 50 35 35 A1 96 72 E6 36 1D 0C
73 63 64 29 B5 00 94 73 BD EE E9 50 33 BD A7 89 3F 10 4D C0
ED 9C 9F D8 19 59 86 AD BF 43 E8 FB 22 91 03 EE 94 E5 96 B7
DB 15 E3 1B 9F 8D 7A C3 C5 4C 0D A1 35 54 FE C8 29 74 C0 DE
5C FA A5 AE F3 E5 8A 3D 40 FB 9F 3A 5D 59 AB D9 78 17 11 10
DD DE 34 46 66 DC 5E 0C 5F 0B C8 96 83 0A 9C F1 81 87 FC FD
41 4C A4 AA C9 80 1D 43 D3 AD 2D 18 DC EF F8 90 8D 4F 31 6A
7D 24 4D 50 63 C8 30 E3 B9 00 7D 63 00 A2 79 4A BE 16 3F 67
8E 9F A6 86 85 A7 64 DC CB 2F C8 22 13 CF 9F 3B 11 6B C5 E7
[...]
10.13.100.151 1178
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
10.13.100.151 1179
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.151 1180
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070



---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
10.13.100.151 1181
SHA384
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
RSA-AES256-SHA256 0x00, 0x3D RSA RSA [...]
10.13.100.151 1182
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
10.13.100.151 1183
SHA1
SHA1
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.151 1184
35297 - SSL Service Requests Client Certificate
Synopsis
The remote service requests an SSL client certificate.
Description
The remote service encrypts communications using SSL/TLS, requests a client certificate, and may require a
valid certificate in order to establish a connection to the underlying service.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070
A TLSv12 server is listening on this port that requests a client certificate.
10.13.100.151 1185
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.151 1186
Plugin Output
tcp/7070
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{ex [...]
10.13.100.151 1187
91263 - SSL/TLS Service Requires Client Certificate
Synopsis
The remote service requires an SSL client certificate to establish an SSL/TLS connection.
Description
The remote service encrypts communications using SSL/TLS and requires a client certificate in order to
establish an SSL/TLS connection.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070
A TLSv12 server is listening on this port and requires client certificate verification.
10.13.100.151 1188
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070
10.13.100.151 1189
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.151 1190
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/7070
10.13.100.151 1191
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.151
Hop Count: 1
10.13.100.151 1192
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5555
Port : 5555
Type : get_http
Banner :
0x00: 68 69 73 74 6F 72 79 20 6F 66 20 6C 74 20 6E 6F history of lt no
0x10: 74 20 66 6F 75 6E 64 20 66 6F 72 20 74 68 69 73 t found for this
0x20: 20 74 6F 6B 65 6E token
10.13.100.151 1193
Synopsis
Description
Solution
Risk Factor
None
Plugin Information
Plugin Output
udp/5353/mdns
- mDNS hostname : core18.local.
10.13.100.151 1194
10.13.100.154
0 0 0 0 2
Host Information
IP: 10.13.100.154
ly
Vulnerabilities
On
Synopsis
Description
se
lU

ia

Tr

r

Fo
Solution
n/a
Risk Factor
None
10.13.100.154 1195
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.154 1196
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.154 1197
10.13.100.154 1198
ttl was greater than 50 - Completing Traceroute.
? [...]
10.13.100.154 1199
10.13.100.159
0 0 2 0 32
Host Information
IP: 10.13.100.159
ly
OS: Nutanix
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.159 1200
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www


|-Not After : Sep 30 14:01:15 2021 GMT
|-Not After : Feb 11 00:12:35 2023 GMT
10.13.100.159 1201
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/443/www
Not valid before : Nov 13 00:12:36 2022 GMT
Not valid after : Feb 11 00:12:35 2023 GMT
10.13.100.159 1202
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.159 1203
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

10.13.100.159 1204
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

10.13.100.159 1205
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
10.13.100.159 1206
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
10.13.100.159 1207
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/5000/www
gunicorn
10.13.100.159 1208
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www

SSL : no
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 10:19:56 GMT
Content-Length: 617
Last-Modified: Thu, 11 Aug 2022 13:48:06 GMT
ETag: "62f50896-269"
Response Body :
<!DOCTYPE html>
<html>
<head>
<style>
body {
width: 35em;
margin: 0 auto;
10.13.100.159 1209
}
</style>
</head>
<body>
<p>#$###If you see this page, the nginx web server is successfully installed and


</body>
</html>
10.13.100.159 1210
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

SSL : yes
Keep-Alive : no
Headers :

Date: Mon, 09 Oct 2023 10:19:56 GMT
Content-Length: 644
Last-Modified: Fri, 23 Dec 2022 13:32:08 GMT
ETag: "63a5add8-284"
Response Body :

10.13.100.159 1211
10.13.100.159 1212
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www

SSL : no
Keep-Alive : no
Headers :
Server: gunicorn
Date: Mon, 09 Oct 2023 10:19:56 GMT
Connection: close
Content-Length: 207
Response Body :
10.13.100.159 1213
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.159 1214
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.159 1215
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.159 1216
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.159 1217
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.159 1218
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : SinFP
10.13.100.159 1219
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.159 1220
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: US
Common Name: R3
Serial Number: 04 4A 6A 7F 09 FF AE 69 99 A9 EF B1 07 5B B6 47 FA 22
Version: 3
Not Valid Before: Nov 13 00:12:36 2022 GMT

Public Key Info:

Public Key: 00 DA 41 D5 D5 B1 22 F8 43 9D 8F 75 8A 1E 8A E6 89 36 60 23
FA 58 C8 A3 5C F9 12 DB 51 2D 8C F3 38 67 2B 9E 7B B6 6B F8
A8 B8 EF BE 81 9C A2 21 6B 7A 5E AE BA 17 19 EE A8 05 54 52
C8 3B A7 47 BD BD 44 66 25 49 F4 9C FB 6C 98 E2 68 31 E2 6E
FF C7 47 3F 22 EF 41 E9 94 3C C5 E3 0A D8 5A DF CE BD 95 2B
55 C2 F6 0A 44 4E 7D D7 6F 68 B4 95 41 F9 D2 00 40 F5 2F A4
24 E2 B4 F3 BC E3 A7 5D D7 FC DF 92 82 83 FD 60 03 E5 84 A9
6D 7D 9A 3A 6A 94 D4 40 3C 7D 4C 2C 7A F6 46 57 53 8F 92 17
B9 99 32 85 82 F8 54 D2 6A E8 AC AA 75 C7 CD 7F 56 7E D2 B1
10.13.100.159 1221
3F B5 95 A9 AE D0 CA 58 3F 3A CF FE 31 C7 D8 E8 0F 29 F9 B6
AC CB 1D EF FF 0E AB AC A1 69 9B 8B 8C D1 4B 77 A9 CD CC 60
1D B0 C2 BE 5A 88 8C DF BB 8A 43 10 F1 9B BF 10 30 E3 15 FB
E2 C6 EA B7 AF 40 52 EE 9A 8C 5E 46 C8 0E 68 83 8F
Exponent: 01 00 01

Signature: 00 08 44 5D 50 6D 40 DF 7E 90 57 66 94 18 FC FF A5 1E A7 1D
EF 60 C6 2A 08 5A B1 6D 3A 87 A6 78 0B 4D 47 68 B7 54 37 EE
63 AF 96 2F 07 94 AA 50 8A E7 82 29 7D 13 B2 CA 74 60 F6 A7
15 EA 01 5A AA EC 93 6C 8B 78 40 67 77 5A 0D AF 3E 42 25 C8
43 D5 1D B9 7E 4F DC 5C 68 A2 75 9D 7C 1E 7F CD 43 1E D7 20
91 AA B5 1F 08 3B E3 A0 9C DC 97 F4 A5 5A 3B 93 26 78 0F B0
64 37 23 DD D6 C7 50 B8 CD 2E 32 1A E6 B5 1F 8D BC 1F F1 50
5D EB 95 B9 EF C7 5E B6 17 BA 49 5F 00 7F 00 AE DA EE BA B1
AC B8 9E 73 F8 BF 8A 34 AE 45 AF EB CB 75 63 BE B5 BB 93 A6
[...]
10.13.100.159 1222
Synopsis
Description
affected service.
algorithm.
See Also
Solution
Risk Factor
None
References
BID 11849
BID 33065
XREF CWE:310
Plugin Information
10.13.100.159 1223
Plugin Output
tcp/443/www

to be weak.

Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.159 1224
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.159 1225
SHA384
SHA256
SHA384
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.159 1226
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA384
SHA256
10.13.100.159 1227
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.159 1228
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Sep 30 14:01:15 2021 GMT
10.13.100.159 1229
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
10.13.100.159 1230
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
10.13.100.159 1231
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.159 1232
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.159 1233
Synopsis
Description
connections.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

http/1.1
10.13.100.159 1234
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
10.13.100.159 1235
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.159
Hop Count: 1
10.13.100.159 1236
Synopsis
Description
Solution

Risk Factor
None
Plugin Information
Plugin Output
tcp/5000/www
10.13.100.159 1237
Synopsis
Description
See Also
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
User-agent: *
Disallow:
10.13.100.159 1238
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
URL : http://10.13.100.159/
Version : 1.18.0
os : Ubuntu
10.13.100.159 1239
Synopsis
Description
See Also
https://nginx.org/
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/443/www
URL : https://10.13.100.159/
Version : 1.18.0
os : Ubuntu
10.13.100.159 1240
10.13.100.254
0 0 3 1 32
Host Information
IP: 10.13.100.254
ly
OS: FortiOS on Fortinet FortiGate
On
Vulnerabilities
Synopsis
se
lU
Description
ia
Tr
r
Fo
See Also
10.13.100.254 1241
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/8181/www

|-Subject : C=US/ST=California/L=Sunnyvale/O=Fortinet/OU=Certificate Authority/CN=support/

E=support@fortinet.com
|-Issuer : C=US/ST=California/L=Sunnyvale/O=Fortinet/OU=Certificate Authority/CN=support/
10.13.100.254 1242
Synopsis
Description
Solution
Risk Factor
Medium
Plugin Information
Plugin Output
tcp/8181/www

|-Subject : C=US/ST=California/L=Sunnyvale/O=Fortinet/OU=Certificate Authority/CN=support/

10.13.100.254 1243
Synopsis
Description
See Also
Solution
Risk Factor
Medium
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/8181/www
10.13.100.254 1244
10.13.100.254 1245
10663 - DHCP Server Detection
Synopsis
The remote DHCP server may expose information about the associated network.
Description
This script contacts the remote DHCP server (if any) and attempts to retrieve information about the
network layout.
Some DHCP servers provide sensitive information such as the NIS domain name, or network layout
information such as the list of the network web servers, and so on.
It does not demonstrate any vulnerability, but a local attacker may use DHCP to become intimately familiar
with the associated network.
Solution
Apply filtering to keep this information off the network and remove any options that are not in use.
Risk Factor
Low
3.3 (CVSS2#AV:A/AC:L/Au:N/C:P/I:N/A:N)
Plugin Information
Plugin Output
udp/67
Nessus gathered the following information from the remote DHCP server :
Master DHCP server of this network : 0.0.0.0

IP address the DHCP server would attribute us : 10.13.100.122
DHCP server(s) identifier : 10.13.100.254
Netmask : 255.255.255.0
Router : 10.13.100.254
Domain name server(s) : 10.13.100.254 , 103.8.46.5 , 103.8.45.5
10.13.100.254 1246
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8181/www
URL : https://10.13.100.254:8181/
Version : unknown
Source : Server: Apache
backported : 0
10.13.100.254 1247
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The remote operating system matched the following CPE's :
cpe:/o:fortinet:fortios -> Fortinet FortiOS

cpe:/o:fortinet:fortios:>=_5.4 -> Fortinet FortiOS
Following application CPE matched on the remote system :
cpe:/a:apache:http_server -> Apache Software Foundation Apache HTTP Server
10.13.100.254 1248
11002 - DNS Server Detection
Synopsis
A DNS server is listening on the remote host.
Description
The remote service is a Domain Name System (DNS) server, which provides a mapping between hostnames
and IP addresses.
See Also
https://en.wikipedia.org/wiki/Domain_Name_System
Solution
Disable this service if it is not needed or restrict access to internal hosts only if the service is available
externally.
Risk Factor
None
Plugin Information
Plugin Output
tcp/53/dns
10.13.100.254 1249
11002 - DNS Server Detection
Synopsis
A DNS server is listening on the remote host.
Description
The remote service is a Domain Name System (DNS) server, which provides a mapping between hostnames
and IP addresses.
See Also
https://en.wikipedia.org/wiki/Domain_Name_System
Solution
Disable this service if it is not needed or restrict access to internal hosts only if the service is available
externally.
Risk Factor
None
Plugin Information
Plugin Output
udp/53/dns
10.13.100.254 1250
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote device type : firewall

10.13.100.254 1251
17367 - Fortinet FortiGate Web Console Management Detection
Synopsis
A firewall management console is running on the remote host.
Description
A Fortinet FortiGate Firewall is running on the remote host, and connections are allowed to its web-based
console management port.
Letting attackers know that you are using this software will help them to focus their attack or will make
them change their strategy. In addition to this, an attacker may set up a brute-force attack against the
remote interface.
See Also
https://www.fortinet.com/products/fortigate/
Solution
Filter incoming traffic to this port.
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
The following instance of FortiOS Web Interface was detected on the remote host :
Version : >= 5.4

URL : https://10.13.100.254:8181/
10.13.100.254 1252
Synopsis
Description
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/8181/www
Apache
10.13.100.254 1253
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www

SSL : yes
Keep-Alive : yes
Headers :
Date: Mon, 09 Oct 2023 10:20:13 GMT

Server: Apache
Content-Security-Policy: frame-ancestors 'self'
Strict-Transport-Security: max-age=15552000
Location: https://10.13.100.254:8181/ng
Content-Length: 213
Content-Type: text/html; charset=iso-8859-1
Response Body :
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">

<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
10.13.100.254 1254
<p>The document has moved <a href="https://10.13.100.254:8181/ng">here</a>.</p>
</body></html>
10.13.100.254 1255
Synopsis
Description
Solution
Risk Factor
None
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
10.13.100.254 1256
11387 - L2TP Network Server Detection
Synopsis
A VPN service is listening on this port.
Description
The report host understands the L2TP tunneling protocol and appears to be a VPN endpoint, or more
specifically, an L2TP Network Server.
See Also
https://en.wikipedia.org/wiki/L2TP
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
udp/1701/l2tp
10.13.100.254 1257
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/53/dns
10.13.100.254 1258
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/541
10.13.100.254 1259
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
10.13.100.254 1260
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Scan type : Normal
10.13.100.254 1261
Scanner IP : 10.13.100.122
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 5
Max checks : 5
Recv timeout : 5
Backports : None
10.13.100.254 1262
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote operating system : FortiOS on Fortinet FortiGate

Method : HTML
The remote host is running FortiOS on Fortinet FortiGate
10.13.100.254 1263
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
This port supports TLSv1.3/TLSv1.1/TLSv1.2.
10.13.100.254 1264
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
Subject Name:
Country: US
State/Province: California
Locality: Sunnyvale
Organization: Fortinet
Organization Unit: FortiGate
Common Name: FGT50E5620014027
Email Address: support@fortinet.com
Issuer Name:
Country: US
State/Province: California
Locality: Sunnyvale
Organization: Fortinet
Organization Unit: Certificate Authority
Common Name: support
Email Address: support@fortinet.com
Serial Number: 4D 97 AA
Version: 3

Not Valid After: Jan 19 03:14:07 2038 GMT
Public Key Info:
10.13.100.254 1265
Public Key: 00 B2 E1 DD C8 74 00 75 EB 53 D7 8E CA 16 6C CB 5E F5 D9 F6
1C CA D8 A1 0F 0D 79 52 F2 4F FC C1 81 BE 08 38 1B AF 26 76
FB BD 12 79 A7 0B 63 2F DF 9C E5 CA CF 43 2F 55 DC A1 13 0F
13 E8 7E AA 4C 6E C8 99 BB AF 8E 4E 76 31 D6 0A 15 C5 80 BC
27 AA 80 A0 50 C2 1F 16 4D 4E A8 AE 71 B5 10 4E EA 2F 46 2F
AB 51 F0 A8 18 EA 34 1F AC 6B AA 58 75 A1 82 67 54 6A 52 55
AD 99 2B E7 E6 3F 75 57 05 0A 49 04 A6 0A 07 09 95 1E B4 7E
8B D0 9C 32 04 16 EB DA C8 BE B4 B5 E8 A2 C7 F9 63 4C F7 E0
1F 87 0C DF 3C 20 78 23 43 92 E2 09 68 E3 A1 EC 84 EE 90 0D
94 C3 5D 49 8C 1A FA A7 D9 90 18 84 A2 1F 61 B0 A4 FA 25 4B
42 86 C2 3D A0 C2 0C B3 1A 12 E2 EA C4 14 1E 0C DF 76 74 CA
DD 45 B8 B8 8E DB C7 2A 23 55 AF A4 61 48 09 1B 59 4F E1 3D
89 29 B5 8C A1 16 E0 3E 54 3C 39 AE E6 CB 9E 1C E9
Exponent: 01 00 01

Signature: 00 8F 22 FA CC F5 A5 9F 02 01 1C 56 BE 95 82 A6 08 76 75 3E
44 BF 71 97 32 3A 30 69 34 99 6B F9 17 D1 B5 20 CA 75 35 6A
12 C7 59 8B 0D A5 81 F9 21 DE 46 00 7C 00 98 80 AE 24 4D 18
D7 DD C3 5F EE 90 E1 5C 8D DE 71 A1 2D E6 BC 6E 6C D2 4C E0
BE F3 9A 81 01 8A 38 F5 06 86 AF 9A A6 85 6E 2D 45 89 02 C7
5E FD 37 EB EE 72 6E 1A 4B 63 E0 BB 32 0D 8D 9 [...]
10.13.100.254 1266
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
SHA1
SHA1
SHA1
10.13.100.254 1267
SHA1
SHA256
SHA256
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.254 1268
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA256
10.13.100.254 1269
SHA256
SHA384
SHA1
SHA1
SHA1
SHA1
SHA1
SHA1
SHA256
DHE-RSA-AES256-SHA256 0x00, 0x6B DH RSA AE [...]
10.13.100.254 1270
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA256
SHA384
SHA1
SHA1
10.13.100.254 1271
SHA1
SHA1
SHA256
SHA256
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.254 1272
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
|-Subject : C=US/ST=California/L=Sunnyvale/O=Fortinet/OU=Certificate Authority/

CN=support/E=support@fortinet.com
|-Issuer : C=US/ST=California/L=Sunnyvale/O=Fortinet/OU=Certificate Authority/
CN=support/E=support@fortinet.com
|-Valid From : Jul 16 22:34:39 2015 GMT
|-Valid To : Jan 19 22:34:39 2038 GMT
10.13.100.254 1273
Synopsis
Description
TLSv1.3:
- 0x13,0x01 TLS13_AES_128_GCM_SHA256
- 0x13,0x02 TLS13_AES_256_GCM_SHA384
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
10.13.100.254 1274
Plugin Output
tcp/8181/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
SHA1
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
10.13.100.254 1275
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
tcp/8181/www
10.13.100.254 1276
Synopsis
Description

browser.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
Strict-Transport-Security: max-age=15552000
10.13.100.254 1277
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
10.13.100.254 1278
84821 - TLS ALPN Supported Protocol Enumeration
Synopsis
The remote host supports the TLS ALPN extension.
Description
The remote host supports the TLS ALPN extension. This plugin enumerates the protocols the extension
supports.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
http/1.1
10.13.100.254 1279
Synopsis
Description

See Also
Solution
Risk Factor
None
References
XREF CWE:327
Plugin Information
Plugin Output
tcp/8181/www
10.13.100.254 1280
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
10.13.100.254 1281
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

10.13.100.122
10.13.100.254
Hop Count: 1
10.13.100.254 1282
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/541
Port : 541
Type : spontaneous
Banner :
0x0000: 16 03 01 01 50 01 00 01 4C 03 03 9B F3 F1 FE 00 ....P...L.......
0x0010: 8A 16 7A 8B AD 8F B4 0D 9F 79 F7 FC E9 01 63 E5 ..z......y....c.
0x0020: FA 95 D5 86 81 AC D7 4A AD A0 51 20 3E 36 32 A8 .......J..Q >62.
0x0030: E1 5A 2D 53 70 39 8B A8 F9 3E 1C F3 78 C0 DD 7A .Z-Sp9...>..x..z
0x0040: 56 25 C3 C1 B3 8F 97 2B 7A A4 37 0C 00 32 13 02 V%.....+z.7..2..
0x0050: 13 03 13 01 00 39 00 35 00 6B 00 3D C0 30 C0 2C .....9.5.k.=.0.,
0x0060: C0 28 C0 24 C0 14 C0 0A 00 33 00 2F 00 67 00 3C .(.$.....3./.g.<
0x0070: C0 2F C0 2B 00 9E C0 27 C0 23 C0 13 C0 09 00 FF ./.+...'.#......
0x0080: 01 00 00 D1 00 00 00 19 00 17 00 00 14 73 75 70 .............sup
0x0090: 70 6F 72 74 2E 66 6F 72 74 69 6E 65 74 2E 63 6F port.fortinet.co
0x00A0: 6D 00 0B 00 04 03 00 01 02 00 0A 00 08 00 06 00 m...............
0x00B0: 17 00 19 00 18 00 23 00 00 00 16 00 00 00 17 00 ......#.........
0x00C0: 00 00 0D 00 30 00 2E 04 03 05 03 06 03 08 07 08 ....0...........
0x00D0: 08 08 09 08 0A 08 0B 08 04 08 05 08 06 04 01 05 ................
0x00E0: 01 06 01 03 03 02 03 03 01 02 01 03 02 02 02 04 ................
0x00F0: 02 05 02 06 02 00 2B 00 0B 0A 03 04 03 03 03 02 ......+.........
0x0100: 03 01 03 00 00 2D 00 02 01 01 00 33 00 47 00 45 .....-.....3.G.E
0x0110: 00 17 00 41 04 9D FF A2 CF E2 58 9E 0E C1 C1 B9 ...A......X.....
0x0120: 65 31 38 3F 36 CA D1 F2 12 A4 EF 79 8E 99 F2 39 e18?6......y...9
0x0130: 1B 17 B3 DA 15 DE D4 61 53 3B 88 01 C1 FB 61 DF .......aS;....a.
0x0140: ED 93 80 42 05 1B 83 89 90 3C 02 4F FA F [...]
10.13.100.254 1283
100669 - Web Application Cookies Are Expired
Synopsis
HTTP cookies have an 'Expires' attribute that is set with a past date or time.
Description
The remote web application sets various cookies throughout a user's unauthenticated and authenticated
session. However, Nessus has detected that one or more of the cookies have an 'Expires' attribute that is
set with a past date or time, meaning that these cookies will be removed by the browser.
See Also
Solution
Each cookie should be carefully reviewed to determine if it contains sensitive data or is relied upon for a
security decision.
If needed, set an expiration date in the future so the cookie will persist or remove the Expires cookie
attribute altogether to convert the cookie to a session cookie.
Risk Factor
None
Plugin Information
Plugin Output
tcp/8181/www
The following cookies are expired :
Name : APSCOOKIE_3427010539
Path : /
Value : "0%260"
Domain :
Version : 1
Expires : Sun, 21-Oct-1973 10:19:41 GMT
Comment :
Secure : 1
Httponly : 0
Port :
Name : FILE_DOWNLOADING_3427010539
Path : /
Value : "0%260"
10.13.100.254 1284
Domain :
Version : 1
Comment :
Secure : 1
Httponly : 0
Port :
Name : ccsrftoken_3427010539
Path : /
Value : "0%260"
Domain :
Version : 1
Comment :
Secure : 1
Httponly : 0
Port :
Name : ccsrftoken
Path : /
Value : "0%260"
Domain :
Version : 1
Comment :
Secure : 1
Httponly : 0
Port :
Name : VDOM_3427010539
Path : /
Value : "0%260"
Domain :
Version : 1
Comment :
Secure : 1
Httponly : 0
Port :
Name : EDIT_HISTORY_3427010539
Path : /
Value : "0%260"
Domain :
Version : 1
Comment :
Secure : 1
Httponly : 0
Port :
Name : CENTRAL_MGMT_OVERRIDE_3427010539
Path : /
Value : "0%260"
Domain :
Version : 1
Comment :
Secure : 1
Httponly : 0
Port :
10.13.100.254 1285

Lotusdew Q7zyq6

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Lotusdew Q7zyq6

Uploaded by

Copyright:

Available Formats

ly

CVSS v2.0 Base Score

Published: 2002/11/25, Modified: 2022/06/01

The remote SNMP server replies to the following default community

CVSS v2.0 Base Score

CVSS v2.0 Temporal Score

Published: 2014/07/11, Modified: 2023/04/25

Request size (bytes) : 42

The manufacturer can be identified from the Ethernet OUI.

Published: 2009/02/19, Modified: 2020/05/13

The following card manufacturers were identified :

Published: 2015/10/16, Modified: 2020/05/13

The following is a consolidated list of detected MAC addresses:

Some information about the remote HTTP configuration can be extracted.

Published: 2007/01/30, Modified: 2019/11/22

Response Code : HTTP/1.0 303 Use Instead

Protocol version : HTTP/1.0

It is possible to determine which TCP ports are open.

Protect your target with an IP filter.

Published: 2009/02/04, Modified: 2023/09/25

Port 80/tcp was found to be open

This plugin displays information about the Nessus scan.

- The version of the plugin set.

Published: 2005/08/26, Modified: 2023/07/31

Information about this scan :

Nessus version : 10.6.1

It was not possible to determine the remote operating system.

Published: 2010/10/26, Modified: 2020/01/22

If you think these signatures would help us improve OS fingerprinting,

Be sure to include a brief description of the device itself, such as

SNMP:!:CSS610-8G-2S+ SwOS v2.14

Published: 2009/01/06, Modified: 2019/11/22

Nessus has negotiated SNMP communications at SNMPv2c.

Published: 2001/11/06, Modified: 2023/05/18

Published: 2000/11/13, Modified: 2011/05/24

Published: 2009/07/31, Modified: 2022/10/06

This host supports SNMP version SNMPv1.

The remote service could be identified.

Published: 2007/08/19, Modified: 2023/07/10

A web server is running on this port.

It was possible to obtain traceroute information.

Makes a traceroute to the remote host.

Published: 1999/11/27, Modified: 2023/06/26

For your information, here is the traceroute from 10.13.100.122 to 10.13.100.100 :

It is possible to determine the exact time set on the remote host.

CVSS v3.0 Base Score

CVSS v2.0 Base Score

Published: 1999/08/01, Modified: 2023/04/27

It is possible to determine which TCP ports are open.

Protect your target with an IP filter.

Published: 2009/02/04, Modified: 2023/09/25

Port 5005/tcp was found to be open

This plugin displays information about the Nessus scan.

- The version of the plugin set.

Published: 2005/08/26, Modified: 2023/07/31

Information about this scan :

Nessus version : 10.6.1

It was not possible to determine the remote operating system.

Published: 2010/10/26, Modified: 2020/01/22

If you think these signatures would help us improve OS fingerprinting,

Be sure to include a brief description of the device itself, such as

The remote service implements TCP timestamps.

Published: 2007/05/16, Modified: 2019/03/06