GeneralInformation

Hostnames	lb.akinoncloud.com ec2-18-156-125-36.eu-central-1.compute.amazonaws.com
Domains	akinoncloud.com amazonaws.com
Cloud Provider	Amazon
Cloud Region	eu-central-1
Cloud Service	EC2
Country	Germany
City	Frankfurt am Main
Organization	A100 ROW GmbH
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

-2027631099 | 2024-05-02T10:40:53.235046

80 / tcp

HTTP/1.1 200 OK
Date: Thu, 02 May 2024 10:40:53 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3163
Connection: keep-alive
Server: nginx/1.20.0
X-Powered-By: Express
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Sun, 23 Oct 2022 12:32:46 GMT
ETag: W/"c5b-18404d4cdb0"

1767680735 | 2024-04-03T23:34:40.495365

443 / tcp

HTTP/1.1 404 Not Found
Server: awselb/2.0
Date: Wed, 03 Apr 2024 23:34:40 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:bd:a5:15:99:6a:87:89:d8:59:a4:47:2d:ec:ce:5c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Mar 11 00:00:00 2024 GMT
            Not After : Apr  9 23:59:59 2025 GMT
        Subject: CN=lb.akinoncloud.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b0:d5:d4:2e:37:cd:4c:ca:b8:45:e1:88:74:11:
                    c0:a5:2a:47:be:6f:a4:2d:b3:a2:c8:f0:6f:ec:06:
                    16:01:55:98:25:6d:a3:b6:50:1f:eb:f6:92:84:7a:
                    3a:8e:96:00:73:68:0a:d0:37:bd:40:eb:6f:0e:14:
                    c6:27:b5:95:fd:fc:59:cb:e8:ea:f8:f2:ee:b1:a2:
                    73:80:5a:67:78:a4:c9:dd:aa:66:14:b7:7c:52:c6:
                    f4:53:78:21:a9:9a:f2:42:0a:7f:f2:97:1a:78:e5:
                    9b:73:93:43:39:c4:6f:4f:e7:ca:c0:8c:c5:a2:30:
                    c8:2d:24:05:57:26:5c:9f:78:14:e1:7c:d7:37:72:
                    14:55:4d:f9:a0:ff:59:d7:c3:cd:93:fa:02:77:89:
                    3c:bd:d3:13:ee:7f:2d:18:fa:3c:01:b6:81:8c:b1:
                    d1:56:13:9b:63:67:a2:62:00:ee:f2:af:76:3b:b4:
                    3a:2e:4d:21:e9:09:47:15:4b:7a:2a:d7:ad:25:c2:
                    83:22:ec:8c:ee:d2:21:67:49:f6:79:16:d7:0c:7e:
                    86:e5:a4:28:bc:35:30:98:58:20:fd:06:df:b4:e8:
                    39:78:c0:04:25:df:70:85:a4:a5:e5:4c:c0:c3:71:
                    45:23:61:2b:64:05:4b:90:0d:47:c0:24:80:ed:80:
                    ef:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                D0:B9:FD:7E:18:70:C0:0F:03:4F:8C:A2:5C:60:E2:F6:D2:51:F8:12
            X509v3 Subject Alternative Name: 
                DNS:lb.akinoncloud.com, DNS:*.lb.akinoncloud.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar 11 00:30:36.791 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:20:88:E3:DC:21:30:0D:21:33:02:DA:08:
                                CC:34:16:A0:5B:AC:59:8E:A5:44:D7:14:DD:EA:EC:1E:
                                36:97:4F:08:02:20:73:6E:DE:82:2C:7B:49:5E:4F:2D:
                                73:4A:7D:D8:71:AF:0D:A0:5E:00:12:2F:EB:B4:F8:E6:
                                68:8F:9A:6B:8D:3F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Mar 11 00:30:36.848 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:3B:C9:CE:0B:2B:5E:B9:8E:57:18:86:3A:
                                F6:AD:05:87:CE:55:DA:FF:8F:13:76:7B:AD:25:CD:0C:
                                D5:DA:17:0C:02:21:00:89:FF:32:EF:8E:02:53:32:F3:
                                39:80:9A:CD:28:BC:96:44:25:6E:85:99:D6:FA:AD:7A:
                                3D:C6:4E:1B:5F:A2:6A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Mar 11 00:30:36.890 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:2F:32:B3:BF:D9:E2:D8:17:C4:F5:B3:F0:
                                99:E2:E3:90:0F:A6:43:B1:F7:9F:92:60:F1:38:3E:90:
                                C6:D9:B6:E4:02:20:6B:1A:46:3D:D7:67:2E:62:EA:DE:
                                E2:4A:04:D0:65:E9:D2:92:9E:FD:DE:27:D8:C0:4A:C8:
                                C2:C6:BE:8D:B0:BA
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9d:cd:0b:7a:e9:31:a9:1b:16:f2:6c:64:2b:1c:85:b5:86:c2:
        d8:8d:ba:3d:4e:6d:67:6a:4c:e9:59:91:4f:5a:3b:f0:9d:b7:
        bb:96:b4:3b:1b:d0:78:b3:46:1b:2f:6d:e1:ae:c5:e5:97:d7:
        41:d0:1a:2a:54:27:e3:57:57:08:80:bf:13:ac:57:7b:d4:6f:
        de:3f:2f:b3:7b:3c:83:3c:3e:a4:90:46:7b:f5:fb:a4:55:ec:
        22:26:1c:b1:c5:ac:e5:49:8f:6a:9a:87:bd:ad:e1:85:4e:13:
        41:72:45:8c:c1:0c:10:ec:c4:c8:31:0c:65:fc:c6:b2:24:ec:
        06:4e:aa:b7:20:09:d8:e3:67:09:9f:40:ca:64:d5:69:9a:5c:
        5f:29:ee:f8:e5:81:d0:34:de:52:bb:c6:c0:0b:07:49:d9:68:
        9a:f5:41:bf:84:f6:e8:77:0c:0d:38:8f:a3:f7:39:02:3a:bc:
        5c:65:f9:f0:ba:6a:38:4c:a8:36:51:09:33:1b:78:21:e9:3f:
        04:b9:9f:91:ad:0d:1a:da:9a:2c:2d:0f:ea:19:30:45:da:0f:
        d4:35:05:ba:61:a0:d5:a3:86:c5:b6:5b:02:89:b5:e3:6a:6c:
        25:ee:1a:e1:a2:30:f0:bd:62:1d:5e:e6:a2:53:60:d3:76:15:
        07:61:48:a8

18.156.125.36

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2027631099 | 2024-05-02T10:40:53.235046
80 / tcp

nginx1.20.0

1767680735 | 2024-04-03T23:34:40.495365
443 / tcp

AWS ELB2.0

Products

Pricing

Contact Us

18.156.125.36

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2027631099 | 2024-05-02T10:40:53.235046 80 / tcp

nginx1.20.0

1767680735 | 2024-04-03T23:34:40.495365 443 / tcp

AWS ELB2.0

Products

Pricing

Contact Us

-2027631099 | 2024-05-02T10:40:53.235046
80 / tcp

1767680735 | 2024-04-03T23:34:40.495365
443 / tcp