GeneralInformation

Hostnames	ec2-18-178-73-162.ap-northeast-1.compute.amazonaws.com namako.rion-cloud-measurement-system.net
Domains	amazonaws.com rion-cloud-measurement-system.net
Cloud Provider	Amazon
Cloud Region	ap-northeast-1
Cloud Service	EC2
Country	Japan
City	Tokyo
Organization	Amazon Data Services Japan
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

752382516 | 2024-05-08T13:24:45.859175

80 / tcp

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 13:24:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 69011
Connection: keep-alive
Server: nginx/1.20.1
X-Powered-By: Next.js
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=63072000
X-Frame-Options: deny
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
ETag: "10d93-aMNa1E234hmKpLB35vMpL+8xOeM"
Vary: Accept-Encoding

47888340 | 2024-04-30T06:56:55.689344

443 / tcp

HTTP/1.1 404 Not Found
Date: Tue, 30 Apr 2024 06:56:55 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 69
Connection: keep-alive
Server: TornadoServer/6.1

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:8d:5a:f0:7a:ed:e1:0c:31:19:bc:eb:04:f5:be:f3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Apr 23 00:00:00 2024 GMT
            Not After : May 23 23:59:59 2025 GMT
        Subject: CN=namako.rion-cloud-measurement-system.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c2:c2:ca:da:f5:a9:eb:83:06:c6:51:dc:63:a1:
                    26:64:5a:3e:b6:df:39:f7:58:bc:7f:4c:ea:17:bf:
                    53:af:d2:b6:75:c4:6e:ba:b0:8c:f7:32:76:0b:08:
                    5b:ba:85:52:af:5d:f0:83:66:0d:78:32:6a:a4:f4:
                    18:53:d2:4b:9f:89:25:bd:4a:c7:16:b0:2d:2c:17:
                    8f:ab:4d:18:42:28:11:de:26:f7:5e:46:31:a8:fa:
                    1c:37:cc:f9:50:7a:b6:7c:67:ca:06:27:d2:5b:99:
                    5d:b0:1a:40:20:8c:dc:9b:02:f1:6e:27:10:7c:de:
                    89:ec:aa:f8:6c:dd:da:14:24:ff:68:12:d5:b9:5a:
                    85:0d:69:4d:0b:d0:ad:9f:8c:42:9e:60:1e:96:aa:
                    21:68:81:9e:0c:3a:b2:32:f4:20:aa:5b:62:1f:83:
                    a2:5a:09:aa:66:66:bb:76:08:e4:ee:b0:1f:09:55:
                    16:3c:fb:2a:ad:13:e7:bf:32:bf:b6:69:71:cb:cc:
                    e0:6d:a3:ac:e5:23:d7:78:7d:9f:b5:ae:58:13:b7:
                    a1:50:61:ff:f6:3f:40:d8:37:e3:75:98:cb:70:36:
                    57:e9:03:2e:f0:cd:20:20:93:98:ea:17:d6:76:0d:
                    3b:34:35:02:7c:b5:3d:5a:eb:6f:32:b6:ac:74:08:
                    47:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                07:5D:EB:E0:EC:3B:97:41:41:9F:42:F4:21:8D:BD:4B:F3:E1:7D:5D
            X509v3 Subject Alternative Name: 
                DNS:namako.rion-cloud-measurement-system.net
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Apr 23 00:31:26.672 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:06:92:D1:3A:F1:C8:C9:74:76:1B:F9:B2:
                                BF:02:DB:CC:65:55:CC:32:0D:46:16:18:FD:D9:CA:41:
                                3A:72:C3:11:02:20:74:EA:09:2F:97:78:06:B9:3B:9E:
                                80:CA:42:55:94:C0:F1:56:2A:E9:27:D1:E8:79:B6:E6:
                                96:5B:55:2E:A9:99
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Apr 23 00:31:26.609 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:88:85:D6:29:3D:7F:AA:C5:06:79:59:
                                92:AD:86:A2:53:E7:2C:F7:5B:9B:74:BB:1C:35:61:15:
                                0B:1E:1B:F6:24:02:21:00:E4:5F:32:01:D4:54:4D:D9:
                                FD:73:AB:50:6C:CE:FA:24:8A:A3:98:95:68:C2:CB:60:
                                40:F2:D4:98:84:05:C5:9F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Apr 23 00:31:26.626 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:68:D0:9A:92:66:DE:D4:6E:B4:C2:CE:32:
                                B0:17:24:BA:6C:A5:5A:4E:9F:00:F0:40:33:99:F0:7C:
                                6D:73:BF:55:02:20:5B:4F:50:7A:C3:52:35:B4:D0:6D:
                                84:8B:66:C0:1E:8F:3B:E7:B4:8C:B2:7F:C0:F8:7C:E9:
                                57:08:0B:FC:C2:99
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        77:d1:ff:3d:03:b9:88:99:89:ba:32:40:f1:0a:f5:01:66:71:
        15:1a:8b:68:9b:e0:86:75:9d:81:a4:96:78:29:b3:bc:ff:c0:
        8e:7c:21:43:42:49:67:66:a7:e3:0a:ba:2c:b1:b3:ef:f8:3d:
        41:49:cb:02:04:b2:80:6d:90:34:52:13:20:73:d2:cc:0d:8d:
        02:12:ec:c5:5e:d3:f6:bb:a6:b1:e4:e8:c1:57:05:d5:4c:56:
        cc:79:9e:28:de:ee:df:25:49:82:a6:f1:23:09:2e:2e:b9:dd:
        d6:ea:30:c1:e1:2c:cd:32:99:53:b8:18:84:e0:d1:3e:d5:3e:
        09:2d:6a:eb:3f:54:ff:39:23:a7:60:a9:d5:e8:7d:a5:e2:fc:
        90:79:2e:a6:d6:56:1d:04:3e:ba:4e:c4:73:d8:69:5c:90:a8:
        2b:ed:47:e6:c0:b0:75:65:e3:f3:d7:6b:6e:00:88:68:c5:ea:
        fb:fb:87:1b:02:21:ee:22:f3:41:a3:7e:c3:6f:e9:6b:fa:fe:
        a8:be:8d:7c:e0:93:d4:12:92:07:13:46:e0:51:97:95:c4:7b:
        ed:39:cf:1f:01:4c:6c:55:91:52:9e:7f:8c:b3:be:98:26:6a:
        85:99:9e:ab:e6:fc:b0:3d:52:4b:c4:b3:81:cf:d5:6c:63:57:
        e7:23:a2:46

18.178.73.162

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

752382516 | 2024-05-08T13:24:45.859175
80 / tcp

nginx1.20.1

47888340 | 2024-04-30T06:56:55.689344
443 / tcp

Tornado Web Server6.1

Products

Pricing

Contact Us

18.178.73.162

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

752382516 | 2024-05-08T13:24:45.859175 80 / tcp

nginx1.20.1

47888340 | 2024-04-30T06:56:55.689344 443 / tcp

Tornado Web Server6.1

Products

Pricing

Contact Us

752382516 | 2024-05-08T13:24:45.859175
80 / tcp

47888340 | 2024-04-30T06:56:55.689344
443 / tcp