GeneralInformation

Hostnames	ec2-15-236-69-141.eu-west-3.compute.amazonaws.com odoo.gimi.be
Domains	amazonaws.com gimi.be
Cloud Provider	Amazon
Cloud Region	eu-west-3
Cloud Service	EC2
Country	France
City	Paris
Organization	Amazon Data Services France
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 443 5432 8083

1671517006 | 2024-06-10T09:38:49.666085

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDrnSHunCdcFuo74pIkSgS31hN4ybmnvcQt5VmJGbzuToWr
bMYm5pcwHaMaXg+Tazzbs3rz1m5B6nzPzbUkgiQRh2DB1L4oCy3Ga2j/Vqjy8Wyrb05jdghkafhz
ZrCidDXjc8c8ZvYOwXwQ0BBjqovTgujjQMRbkh6BQunVmPv7YDGOZlfTYgQTLDWMKhlnn5ctxCjp
juUZqfXMoAoikOx/TH+zaAdv5aBcTE8uHmLua2o4dq5FJZ+b5CruI3kNzGeG1HnCThucXdVt2wu0
WoCghwK0FNBngoY1PcW0mzKikVaquby8wJrWLo2h96L85JSJquMdAPqW2u0bUravck2AEF44ad4k
tNT5zlnRSaiD7XWkEqMHSna+dRhP/xXZzXNnZ/2S3UDUCmcz1eFDUDKNGRjFocuxkgvEsVwppsE7
DMl09A38kbOCcx1X1i2SfnwpsBoD5S+msvqq6ZmaUftl1e29KKiLT3m5rdky35va3iM9BwhcVtFQ
oirCKqT/Gxs=
Fingerprint: e4:6f:35:f8:01:4a:ff:62:5e:56:20:94:55:4a:e6:fa

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1196936736 | 2024-06-13T05:23:17.438997

80 / tcp

401 Authorization Required

HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0
Date: Thu, 13 Jun 2024 05:23:17 GMT
Content-Type: text/html
Content-Length: 581
Connection: keep-alive
WWW-Authenticate: Basic realm="Closed site"

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

-299778970 | 2024-06-12T14:05:57.690285

443 / tcp

Odoo

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 12 Jun 2024 14:05:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 4587
Connection: keep-alive
X-Frame-Options: DENY
Set-Cookie: session_id=fbf4a3e08fe1cf3e39dcc74a0c1725778f28fab5; Expires=Tue, 10-Sep-2024 14:05:57 GMT; Max-Age=7776000; HttpOnly; Path=/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:63:55:eb:4e:2c:c1:b6:ec:b3:48:a7:7d:2a:19:2c:75:e7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 16 12:58:12 2024 GMT
            Not After : Jul 15 12:58:11 2024 GMT
        Subject: CN=odoo.gimi.be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9d:3c:8d:fe:25:72:67:20:bc:1b:54:4c:0c:6a:
                    81:16:7b:00:30:2f:94:cc:e3:1f:5c:fc:29:84:f1:
                    20:0d:74:27:2e:22:a7:b1:b7:99:0a:bf:28:85:63:
                    c4:02:7d:e0:4d:8f:c5:a8:de:08:e0:18:4c:17:d2:
                    59:a2:3c:54:13:d6:91:27:b7:f4:09:63:ce:53:7e:
                    9b:69:60:37:8e:d1:67:ce:45:33:28:db:23:c9:24:
                    1e:8d:51:46:31:4c:e0:08:c8:f7:44:ad:e4:8f:f7:
                    34:ae:8a:be:8f:5f:16:9f:d6:f0:91:3e:a3:7e:19:
                    6b:8c:cb:87:b5:b0:b3:55:a9:99:cf:ae:25:d4:d9:
                    c4:d2:e2:b7:2e:81:f5:1d:72:b0:f9:6e:df:09:dd:
                    3f:a3:6f:ac:03:f5:70:56:3d:47:40:21:3d:02:88:
                    54:c7:d8:a5:f6:67:f4:88:0f:59:24:d7:7a:52:a2:
                    c8:15:ba:3c:9c:66:09:08:eb:b5:0c:ff:3d:61:ac:
                    91:b5:cc:29:c4:d7:ac:27:4d:e5:fc:e6:6b:08:bb:
                    d7:95:5c:b6:02:bf:e5:66:36:02:48:c9:49:8e:50:
                    50:30:6f:7e:4b:05:2e:3e:d8:6a:d0:78:f9:53:d2:
                    df:35:7a:ab:31:a2:cf:0d:62:a1:c8:a1:27:93:ed:
                    49:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                75:10:FE:00:31:60:FD:B8:DF:3A:49:18:46:55:45:5D:84:44:71:A3
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:odoo.gimi.be
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 16 13:58:13.159 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:42:7C:36:21:08:F3:F2:82:E1:9A:32:12:
                                82:B1:F4:0F:38:E2:56:04:AD:F8:0A:34:8B:8E:1D:30:
                                10:C6:B5:6E:02:20:31:4A:A6:05:5F:DF:36:E9:57:C3:
                                8A:04:C8:92:A3:F8:01:FF:96:0A:6F:DF:3E:D6:10:E1:
                                81:40:16:E0:55:B6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 16 13:58:13.163 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AB:81:F1:69:66:A5:DC:A1:15:78:D8:
                                B0:D3:F5:78:B3:AD:D0:17:CE:C3:79:08:46:A5:93:07:
                                9B:2C:96:8E:7F:02:20:71:76:DF:07:11:79:F8:7B:46:
                                D6:85:BF:12:27:3A:F8:99:57:92:9B:79:A4:96:7C:45:
                                D3:18:71:59:1B:A2:8F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        05:63:a7:71:76:4e:3d:ef:33:13:d7:16:cf:29:bd:a1:86:ac:
        fe:41:b5:f7:81:a8:ae:86:fc:79:37:80:b1:a8:23:6e:5d:e7:
        17:9b:a3:fa:52:96:b7:77:3e:c1:21:7c:8d:78:01:e2:5d:1c:
        7b:0b:62:a9:c0:8a:c0:93:03:ca:f8:9f:fb:0d:c2:fb:dc:ea:
        7a:1b:c3:41:04:5f:cd:d5:00:f7:15:94:75:3e:48:fb:18:bf:
        c4:18:cd:d7:9b:95:b3:78:e4:f6:3b:70:1d:a9:e2:43:88:68:
        14:b6:ed:b5:10:4f:2c:d8:42:f7:87:23:e6:5e:95:a6:22:2a:
        26:85:36:eb:41:04:e3:7b:2a:ee:4a:fb:10:6a:5c:ba:a1:ea:
        26:7d:83:25:fc:a2:19:53:2d:86:d1:16:f1:5b:b8:bf:f3:17:
        25:84:62:ac:ea:4c:8f:16:67:03:06:3d:0b:1a:ff:35:27:58:
        84:aa:7f:11:98:5c:d3:28:33:da:34:0e:25:bd:9c:35:be:17:
        a3:c9:f0:a4:d8:1e:67:a3:70:49:53:2a:c2:86:99:8d:8b:44:
        e7:57:3d:7e:c7:78:b2:49:3b:54:91:83:c6:50:28:75:31:6b:
        b7:95:e1:18:c0:db:b1:89:56:c7:f1:f4:07:46:d5:d0:ef:75:
        c8:b2:8b:42

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

333713077 | 2024-06-03T21:27:06.572484

5432 / tcp

PostgreSQL
FATAL:  no pg_hba.conf entry for host "224.127.96.254", user "postgres", database "template0", SSL on
FATAL:  no pg_hba.conf entry for host "224.127.96.254", user "postgres", database "template0", SSL off

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:00:76:08:35:98:b9:a4:e7:32:c5:f3:49:09:e0:88:a3:8b:f5:bc
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ip-172-26-6-140.eu-west-3.compute.internal
        Validity
            Not Before: Jul 19 19:11:27 2022 GMT
            Not After : Jul 16 19:11:27 2032 GMT
        Subject: CN=ip-172-26-6-140.eu-west-3.compute.internal
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cb:eb:d3:ee:8d:59:cc:15:3e:31:82:bc:02:e4:
                    d0:6a:ef:79:b7:71:96:72:3f:13:b5:ab:26:1b:78:
                    4d:e1:e2:74:fb:ad:7b:07:2a:33:16:83:7e:19:bd:
                    a1:89:78:71:5e:96:ce:71:01:69:55:6a:a3:aa:0a:
                    5f:4a:98:76:0d:28:e6:c7:b6:6d:bc:26:4c:b6:8f:
                    30:2f:eb:a1:d6:f1:40:b7:3f:26:7e:1e:e2:af:05:
                    31:6d:60:88:c8:e4:44:4a:5f:3d:a1:34:a1:7d:6b:
                    0c:bc:bd:b7:55:94:2d:7f:dc:e2:b5:e9:32:d4:9d:
                    e1:b5:21:74:5b:0c:a6:99:a8:5a:e4:b4:dd:33:00:
                    2d:23:4d:ac:e3:55:8f:d0:64:56:96:b5:42:ed:1f:
                    b3:40:cd:bc:a3:41:3d:9c:41:fa:10:4e:97:7d:47:
                    35:37:67:72:c7:b8:b3:65:e3:e4:3d:50:db:e8:07:
                    04:6f:24:63:e0:9a:8e:cd:25:11:02:ad:66:42:26:
                    09:16:8e:5b:ab:15:8b:b9:54:5e:ad:c9:aa:14:c5:
                    4d:81:56:df:79:62:f7:8d:56:6c:64:75:e8:04:15:
                    83:98:b7:a3:b7:48:81:93:e3:d7:4d:6d:e8:45:58:
                    9e:ff:ac:28:16:c8:7c:a4:0e:3e:0a:f5:55:f3:66:
                    fb:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:ip-172-26-6-140.eu-west-3.compute.internal
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4e:39:83:88:a2:8e:bd:4a:c0:da:14:37:53:de:10:ac:96:02:
        e8:a4:bb:86:9d:a4:e7:c9:4f:71:af:38:03:c4:37:ce:51:51:
        e0:d1:08:73:c2:32:72:10:07:95:b0:ad:85:19:48:86:ee:2a:
        2f:80:66:15:6a:6e:65:5b:c9:21:dd:96:3e:be:6b:49:8a:2d:
        6e:2b:79:10:42:26:ac:59:ea:67:39:ee:1f:04:cc:1b:a9:a7:
        80:42:c0:ea:8c:33:70:d6:02:16:5b:a7:f9:91:1d:09:f5:63:
        e0:be:ca:ae:06:4d:45:4e:5d:b2:e8:13:63:22:ba:e4:d5:63:
        60:ad:20:08:86:3b:f3:bd:e1:be:aa:9b:fc:fd:06:0a:d3:0a:
        33:34:df:a2:de:28:f4:c3:5c:98:d1:4e:85:f5:bf:c1:31:ca:
        81:13:21:01:d0:52:1e:b3:1f:33:e9:a9:9d:ea:f3:c1:1d:4c:
        c9:81:e9:c2:69:3d:39:c3:6a:65:60:3a:d4:d7:04:80:a3:64:
        b2:2e:09:88:25:8d:32:71:ef:1f:d9:de:fe:bf:b1:a6:ce:a8:
        54:c9:7f:81:49:a8:a8:db:1f:72:4e:c1:bd:67:64:30:48:7a:
        e8:d3:1b:a8:fb:b5:5a:45:83:4c:dd:ef:66:8f:4b:3e:80:4e:
        1c:3a:f5:a9

-746039836 | 2024-05-22T19:21:23.666949

8083 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0
Date: Wed, 22 May 2024 19:21:23 GMT
Content-Type: text/html
Content-Length: 179
Connection: keep-alive
WWW-Authenticate: Basic realm="Closed site"

<html>
<head><title>401 Authorization Required</title></head>
<body>
<center><h1>401 Authorization Required</h1></center>
<hr><center>nginx/1.18.0</center>
</body>
</html>

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

15.236.69.141

Last Seen: 2024-06-13

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1671517006 | 2024-06-10T09:38:49.666085
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

-1196936736 | 2024-06-13T05:23:17.438997
80 / tcp

nginx1.18.0

-299778970 | 2024-06-12T14:05:57.690285
443 / tcp

nginx1.18.0

333713077 | 2024-06-03T21:27:06.572484
5432 / tcp

PostgreSQL13.13 - 13.14

-746039836 | 2024-05-22T19:21:23.666949
8083 / tcp

nginx1.18.0

Products

Pricing

Contact Us

15.236.69.141

Last Seen: 2024-06-13

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Port 8083 Latest CVSS

OpenPorts

1671517006 | 2024-06-10T09:38:49.666085 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

-1196936736 | 2024-06-13T05:23:17.438997 80 / tcp

nginx1.18.0

-299778970 | 2024-06-12T14:05:57.690285 443 / tcp

nginx1.18.0

333713077 | 2024-06-03T21:27:06.572484 5432 / tcp

PostgreSQL13.13 - 13.14

-746039836 | 2024-05-22T19:21:23.666949 8083 / tcp

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

1671517006 | 2024-06-10T09:38:49.666085
22 / tcp

-1196936736 | 2024-06-13T05:23:17.438997
80 / tcp

-299778970 | 2024-06-12T14:05:57.690285
443 / tcp

333713077 | 2024-06-03T21:27:06.572484
5432 / tcp

-746039836 | 2024-05-22T19:21:23.666949
8083 / tcp