GeneralInformation

Hostnames	ec2-13-233-210-102.ap-south-1.compute.amazonaws.com api.smeamaze.biz www.api.smeamaze.biz
Domains	amazonaws.com smeamaze.biz
Cloud Provider	Amazon
Cloud Region	ap-south-1
Cloud Service	EC2
Country	India
City	Mumbai
Organization	Amazon Data Services India
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

610368660 | 2024-05-07T06:08:34.677349

80 / tcp

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 06:08:34 GMT
Content-Type: text/html
Content-Length: 4197
Connection: keep-alive
Server: nginx/1.18.0 (Ubuntu)
Last-Modified: Mon, 06 May 2024 11:17:03 GMT
ETag: "6638bc2f-1065"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Accept-Ranges: bytes

-642373203 | 2024-05-02T13:04:50.663544

443 / tcp

HTTP/1.1 404 Not Found
Date: Thu, 02 May 2024 13:04:50 GMT
Content-Type: text/html
Content-Length: 6646
Connection: keep-alive
Server: nginx/1.18.0 (Ubuntu)
Vary: Authorization, Origin
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:96:28:87:88:d5:24:38:f2:53:65:55:17:b5:34:6c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Apr  1 00:00:00 2024 GMT
            Not After : May  1 23:59:59 2025 GMT
        Subject: CN=api.smeamaze.biz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bc:08:65:af:b0:bd:ec:3e:b3:00:fc:df:ba:5b:
                    f7:1b:4b:91:f3:a4:e3:f2:28:b6:10:3f:71:8e:38:
                    5f:e3:2a:77:74:5f:9e:fa:64:fb:56:b2:5a:4c:c7:
                    a4:3c:7f:1e:86:8f:1c:6c:3c:09:29:a1:6f:e5:31:
                    b4:3c:f6:90:50:d1:8e:5c:47:10:e3:9a:c0:65:23:
                    c6:17:21:a3:a2:f8:25:ef:5f:fa:92:b6:23:c8:18:
                    24:4e:c9:fe:c3:15:d1:95:df:3c:ec:f1:15:21:f2:
                    80:d0:fe:03:f1:3c:ee:d9:c8:44:c9:bd:ac:dc:47:
                    67:da:9d:d7:70:ad:11:6e:5b:72:a2:5a:bd:be:fc:
                    9b:00:e1:cc:1e:93:be:4a:eb:81:9e:32:85:1c:e2:
                    c6:eb:c2:e8:f2:6b:38:c7:2e:62:20:ea:23:b1:3d:
                    32:c5:88:d9:54:0c:24:fe:ea:fc:8c:d8:94:be:c1:
                    ac:f9:ba:02:0d:4a:a3:92:93:ca:9f:9e:e0:80:fd:
                    33:da:56:7b:c6:2a:19:dc:9f:e3:47:6c:56:18:b3:
                    d9:dc:4e:8f:87:5e:f9:ca:e4:a3:92:31:41:99:fc:
                    6e:76:04:3b:b6:3c:26:62:34:2e:64:5c:db:f0:cc:
                    f5:5f:6e:3e:1a:44:42:2a:c8:8b:06:3f:2c:6c:e9:
                    ee:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                90:FE:41:BC:AD:54:E8:4C:5C:38:5C:01:BD:9E:70:7F:D5:DC:38:2E
            X509v3 Subject Alternative Name: 
                DNS:api.smeamaze.biz, DNS:www.api.smeamaze.biz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Apr  1 00:18:16.539 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:93:F8:1A:C0:13:D1:E6:74:5F:84:0D:
                                89:D6:A3:4F:18:5C:FB:E7:A2:EC:BA:49:12:A0:CE:C0:
                                55:7F:F2:F1:45:02:20:4F:0C:DD:03:CF:FF:C4:36:61:
                                CA:F1:B2:37:F1:9F:63:8E:48:C2:B7:86:CA:8A:40:42:
                                3A:AF:5B:96:A6:C8:9B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Apr  1 00:18:16.476 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:5F:7B:42:E7:A7:54:E7:5E:B7:31:52:3A:
                                55:91:69:50:D6:23:49:E5:72:F8:D5:50:45:72:06:8B:
                                8F:65:F4:CD:02:20:57:11:27:3A:E9:83:05:D6:5C:D4:
                                C8:04:43:3C:A5:A9:00:68:56:1D:E3:58:46:32:50:AE:
                                02:22:66:3F:B8:63
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Apr  1 00:18:16.498 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:06:41:5B:3B:5F:B3:B4:A2:B3:A9:05:D0:
                                84:22:C1:82:70:33:DE:20:45:FE:71:8C:7B:0A:DD:6E:
                                55:0F:8B:35:02:20:11:10:0B:46:44:3E:01:61:4D:D1:
                                46:48:FA:8D:28:86:AD:A4:B1:23:45:CB:6F:22:05:00:
                                62:53:C3:69:4B:B5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7f:32:df:3d:8f:3f:dc:03:d1:32:9a:b1:a8:00:bb:95:9a:00:
        5a:4b:42:cc:4a:80:ed:52:cc:c1:0d:20:2f:fa:d6:32:90:cf:
        be:5d:3c:55:0d:3d:4a:de:ea:fa:ac:cc:5d:98:ac:c8:a5:2e:
        e1:f8:44:77:0e:d5:d8:c5:58:e4:c8:f7:78:11:0d:75:ff:8b:
        8d:aa:b9:6b:03:d7:44:7f:00:59:be:3b:ca:46:df:70:25:84:
        aa:92:b5:9e:ec:7b:6b:ba:b4:31:ce:fe:ed:40:1a:1c:53:89:
        5f:9d:73:12:0e:aa:2c:70:2e:f8:91:c6:8c:5e:f9:59:ab:36:
        55:71:fb:22:0b:fc:e5:8a:f5:f7:d5:84:ee:dc:51:8d:b6:d6:
        71:3c:d2:d8:32:b6:27:91:65:5a:c9:87:ce:70:d1:82:bd:54:
        cf:63:07:fe:d0:1f:e9:18:eb:e5:e1:63:c8:34:78:e9:33:dd:
        81:95:1d:18:84:80:c3:17:f5:31:05:b5:57:34:71:03:c2:e7:
        4d:0f:08:c0:54:21:47:d0:08:0f:3b:d6:0e:11:a1:69:f9:63:
        37:a1:55:99:9b:8e:c3:90:da:aa:07:c7:dd:66:fe:b2:83:59:
        c1:74:90:72:84:80:6c:9f:bf:24:fc:e1:0f:4e:8e:78:10:46:
        c2:6f:a9:65

13.233.210.102

Last Seen: 2024-05-07

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

610368660 | 2024-05-07T06:08:34.677349
80 / tcp

nginx1.18.0

-642373203 | 2024-05-02T13:04:50.663544
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

13.233.210.102

Last Seen: 2024-05-07

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

610368660 | 2024-05-07T06:08:34.677349 80 / tcp

nginx1.18.0

-642373203 | 2024-05-02T13:04:50.663544 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

610368660 | 2024-05-07T06:08:34.677349
80 / tcp

-642373203 | 2024-05-02T13:04:50.663544
443 / tcp