GeneralInformation

Hostnames	ec2-18-176-207-71.ap-northeast-1.compute.amazonaws.com webpush.jp
Domains	amazonaws.com webpush.jp
Cloud Provider	Amazon
Cloud Region	ap-northeast-1
Cloud Service	EC2
Country	Japan
City	Tokyo
Organization	Amazon Data Services Japan
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 443

-2026612939 | 2024-04-03T11:28:01.616490

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Wed, 03 Apr 2024 11:28:00 GMT
Content-Type: text/html
Content-Length: 45
Last-Modified: Mon, 23 Jan 2017 09:17:10 GMT
Connection: keep-alive
Cache-Control: no-cache
Accept-Ranges: bytes

-2026612939 | 2024-04-16T22:45:02.326090

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 16 Apr 2024 22:45:02 GMT
Content-Type: text/html
Content-Length: 45
Last-Modified: Mon, 23 Jan 2017 09:17:10 GMT
Connection: keep-alive
Cache-Control: no-cache
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            44:75:ce:74:93:89:20:9a:64:be:3f:9a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020
        Validity
            Not Before: Dec  1 09:27:02 2023 GMT
            Not After : Jan  1 08:25:17 2025 GMT
        Subject: CN=*.webpush.jp
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:af:74:18:ba:44:45:de:d5:68:93:bd:5f:27:a7:
                    4c:1d:44:15:68:74:2a:51:75:7d:da:06:26:7d:7b:
                    73:62:96:76:34:0e:03:4c:e9:4f:5a:fc:22:45:db:
                    60:b1:86:f4:da:56:29:dc:88:7c:00:8f:4b:c8:67:
                    df:54:9b:68:11:54:a9:ef:de:93:24:dc:e0:f5:1d:
                    8a:0d:5d:80:1a:26:c5:6a:dd:03:05:5b:44:16:8d:
                    af:d0:0a:a5:ce:0f:29:fa:bd:50:4c:8c:ad:24:9a:
                    d1:77:d7:fa:04:b8:85:50:8c:94:fb:95:66:db:9f:
                    8e:1a:81:b8:32:d7:35:12:7a:cf:be:24:68:d7:14:
                    c5:8b:fa:1b:5d:25:14:01:9d:66:83:ef:5f:3d:f7:
                    bf:02:b3:05:8e:fc:be:50:e7:7f:df:2a:a9:0f:39:
                    5f:41:74:b0:a5:58:3a:30:9f:7e:67:c3:33:e5:16:
                    a6:af:26:a0:b8:4d:0b:33:79:cf:93:03:d7:17:0d:
                    ca:b2:6f:74:84:95:c3:e6:82:e6:31:8f:f8:69:d1:
                    8e:f4:ec:d3:fc:2b:a8:c4:b3:0e:51:92:71:9e:0b:
                    8e:0d:2b:8d:f7:74:d5:73:ed:27:f9:0a:a5:93:db:
                    0f:8a:18:4f:5e:ea:bb:c7:65:34:61:45:88:b1:6b:
                    39:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.10
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
            X509v3 Subject Alternative Name: 
                DNS:*.webpush.jp, DNS:webpush.jp
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C
            X509v3 Subject Key Identifier: 
                64:AD:FC:6F:E2:23:4B:94:F1:5E:3D:60:4C:96:D8:4D:D2:B2:78:F8
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Dec  1 09:27:05.131 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:42:DC:55:FD:BB:82:DB:39:66:C0:25:08:
                                57:D1:C0:E6:E5:B6:5C:9C:F9:9A:EA:D7:FE:76:71:BA:
                                AC:65:86:B9:02:21:00:80:B7:F7:49:BE:6E:7D:9C:27:
                                39:1A:3F:50:F8:F9:8E:A8:15:7A:0A:9A:A8:C3:7E:64:
                                8F:5E:FE:98:CE:73:45
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Dec  1 09:27:05.860 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7C:8F:EB:29:42:46:50:5A:A1:2D:CC:F9:
                                5B:A7:2D:02:26:22:39:67:3D:9B:13:34:56:C7:23:82:
                                7A:F1:A0:86:02:20:17:D5:9D:03:B3:CF:BA:B0:86:27:
                                88:4C:B4:AD:8A:7B:66:6A:99:5A:78:7D:9F:E1:CB:31:
                                49:F8:2E:E3:1D:43
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Dec  1 09:27:05.424 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E9:09:14:73:6C:C0:EA:BE:32:40:D9:
                                2D:E9:E8:7D:A4:0B:9F:14:2A:57:AC:46:05:61:A8:4D:
                                FF:00:35:B0:22:02:20:75:A3:8E:98:E9:EE:0B:A6:99:
                                2C:12:88:0A:26:E5:FE:44:52:C4:AA:F1:18:14:44:12:
                                F9:62:4E:21:20:44:C3
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        89:2d:8f:06:10:02:1d:32:07:45:5c:24:a1:f4:67:78:09:7a:
        10:99:c6:22:35:e4:83:1e:e0:f5:7b:23:9c:31:3a:b1:d9:71:
        c0:80:96:a6:61:a0:85:d6:95:09:11:e7:15:5b:b0:7a:d0:75:
        58:09:57:b7:79:de:af:db:b8:b7:43:8b:fd:ac:78:da:40:0b:
        d7:90:04:a0:ea:fb:be:3b:90:35:82:cf:e0:88:3b:07:d2:e4:
        ce:9e:a9:46:53:f7:2f:38:1a:cf:85:1c:5c:bd:cb:5e:34:8d:
        32:94:a6:ae:77:ba:a2:96:8a:0f:72:c9:5a:61:22:4a:d0:6e:
        32:71:76:e1:f4:1f:60:b3:95:f5:aa:e7:8c:0d:32:e8:d0:84:
        40:a7:ef:77:73:a3:e4:e6:a2:d5:bf:4e:54:c3:9d:23:76:2d:
        36:11:23:59:9a:7f:c3:96:bd:03:8b:e5:ed:e0:19:a6:36:e1:
        6d:ce:07:5d:ff:f4:26:6d:f5:71:22:95:ed:4a:3b:53:5e:e7:
        07:79:87:0a:89:81:b0:f3:c3:04:66:ee:4d:2c:d1:59:49:10:
        9e:52:5a:15:75:b7:a8:d8:11:22:68:cc:8e:68:44:c1:eb:33:
        60:d5:3a:a4:0d:d7:7c:73:18:30:0d:4f:86:0d:5c:2d:94:de:
        cd:91:e9:20

18.176.207.71

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2026612939 | 2024-04-03T11:28:01.616490
80 / tcp

nginx1.16.1

-2026612939 | 2024-04-16T22:45:02.326090
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

18.176.207.71

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2026612939 | 2024-04-03T11:28:01.616490 80 / tcp

nginx1.16.1

-2026612939 | 2024-04-16T22:45:02.326090 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-2026612939 | 2024-04-03T11:28:01.616490
80 / tcp

-2026612939 | 2024-04-16T22:45:02.326090
443 / tcp