GeneralInformation

Hostnames	ec2-18-205-138-83.compute-1.amazonaws.com auth.mlbom-356w.prometheusgroup.app
Domains	amazonaws.com prometheusgroup.app
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

WebTechnologies

CDN

Font scripts

JavaScript frameworks

JavaScript libraries

Miscellaneous

Programming languages

Node.js

Static site generator

UI frameworks

Web frameworks

Web servers

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

OpenPorts

80 443

-947372816 | 2024-04-28T04:09:40.204305

80 / tcp

HTTP/1.1 200 OK
Date: Sun, 28 Apr 2024 04:09:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 3467
Connection: keep-alive
Set-Cookie: AWSALB=UrueVM3q3re9naXmvNKK4aCZJZh2ZUqn/AZJi95wMJHShLD+t0bzI046pFfL0cit6Fr4jaWZc/bzxthGQrPWpmHCz5NI3KRdo43RkVIOJoI6bg+zRsRpF5YBfj2P; Expires=Sun, 05 May 2024 04:09:39 GMT; Path=/
Set-Cookie: AWSALBCORS=UrueVM3q3re9naXmvNKK4aCZJZh2ZUqn/AZJi95wMJHShLD+t0bzI046pFfL0cit6Fr4jaWZc/bzxthGQrPWpmHCz5NI3KRdo43RkVIOJoI6bg+zRsRpF5YBfj2P; Expires=Sun, 05 May 2024 04:09:39 GMT; Path=/; SameSite=None
etag: "d8b-3XbNEycmw8miyoo3LGgg53LW3O8"
accept-ranges: none
vary: Accept-Encoding
cache-control: no-store, max-age=600

-1160054881 | 2024-05-04T16:32:23.536998

443 / tcp

HTTP/1.1 404 Not Found
Server: awselb/2.0
Date: Sat, 04 May 2024 16:32:22 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:d9:f7:25:8d:dc:e5:e4:55:4b:c6:fb:8a:aa:0b:45
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Apr 10 00:00:00 2024 GMT
            Not After : May  8 23:59:59 2025 GMT
        Subject: CN=*.prometheusgroup.app
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ba:1d:f4:be:e1:58:21:40:7f:7c:f5:eb:09:c5:
                    bd:10:44:da:31:4c:53:25:bd:2e:c0:f9:67:27:0e:
                    1e:4b:f2:4c:1c:bc:a0:bb:f4:3c:95:04:be:cd:e8:
                    7b:b9:51:ed:4c:71:86:88:aa:9e:8a:dc:78:0d:74:
                    fe:6d:14:c9:42:a5:b2:e2:68:5f:d3:15:f0:dc:51:
                    82:a6:b7:fe:d8:78:88:d6:07:d4:35:76:0d:dc:8f:
                    de:c7:53:73:d6:a0:7d:6b:1e:46:b8:7c:29:40:93:
                    8d:55:ac:f6:45:ea:ad:71:3d:32:e3:85:3a:b7:f4:
                    9f:7c:e1:a0:40:7c:6e:86:f9:63:7a:e9:89:1d:40:
                    86:d7:1a:70:a4:9e:60:5a:6c:fc:4a:5e:e7:68:ed:
                    d6:8f:7d:2c:f0:be:4c:8c:92:d5:50:8c:09:16:46:
                    31:57:fb:1b:74:49:92:bc:07:c9:95:80:43:7f:fb:
                    d5:cf:88:8c:7c:85:74:57:fe:f4:ff:23:48:61:4d:
                    20:f4:13:da:11:c0:de:36:74:70:92:8f:7c:7a:34:
                    23:29:8d:38:a6:f5:1e:48:b4:9d:d5:53:98:13:41:
                    5e:f0:73:ef:41:19:81:cb:a6:39:66:40:ce:b2:14:
                    cc:f2:a3:90:bb:a0:4c:ac:f2:ca:5d:99:84:d2:f8:
                    05:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                16:FA:9D:DC:D1:6F:F7:4F:6B:31:3D:6A:95:CB:A7:BA:B5:34:31:87
            X509v3 Subject Alternative Name: 
                DNS:*.prometheusgroup.app, DNS:auth.mlbom-356w.prometheusgroup.app
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Apr 10 08:40:00.856 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6A:A0:E2:AA:91:5A:31:99:4D:93:BB:7B:
                                52:37:0D:75:A4:43:C9:34:F0:10:15:02:FA:D5:A0:C7:
                                16:B0:AA:D9:02:20:0D:71:F4:DD:E8:3A:B4:13:C9:7C:
                                C4:5E:5D:78:0C:2C:A0:AA:16:E0:36:9F:61:14:03:A7:
                                44:66:D0:D9:9E:33
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Apr 10 08:40:00.911 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:14:88:93:5A:30:20:CC:9E:8A:95:E0:C8:
                                03:B7:83:51:7D:D6:EA:C8:54:05:B9:E0:04:7D:B1:81:
                                32:DA:92:1F:02:20:49:00:22:5A:FF:94:F5:0C:2E:A9:
                                C1:0C:90:FA:A7:78:88:8E:B1:11:A7:5B:A7:8F:4D:E2:
                                31:A5:98:80:1E:5D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Apr 10 08:40:00.932 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A5:2A:91:E6:F4:AF:12:63:2D:B0:7E:
                                73:C0:07:5F:AB:CD:DB:2A:15:74:24:B2:64:51:E7:17:
                                B3:5F:25:D2:07:02:21:00:D7:B5:78:7E:E9:24:E9:F6:
                                97:B5:D5:BB:EC:7B:F1:DA:E6:82:C6:36:D0:D1:0A:DC:
                                89:5C:A7:36:36:92:D2:43
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        63:9a:35:15:09:4b:d0:1b:2e:b5:15:08:90:37:6e:f3:8a:5a:
        19:ae:c6:17:8c:c8:58:e1:3b:e7:9f:96:a8:74:70:e0:77:44:
        bb:91:f2:99:f1:0b:ca:16:7b:dd:c4:c2:8b:e6:de:5a:4e:a2:
        1d:bb:ab:2e:dd:4b:29:21:43:0a:0d:5a:d2:87:ec:5a:5c:40:
        5e:a1:58:30:42:e3:c4:4d:4c:9d:19:dd:36:26:6a:81:82:4f:
        d5:a4:7a:24:22:05:f5:e3:4b:1e:a4:42:ec:95:3b:64:b9:de:
        cc:03:21:a6:aa:71:79:10:af:f5:ec:37:1b:97:1c:82:d3:61:
        d5:89:10:4e:8b:a2:87:ab:09:b1:98:c8:e4:f9:56:03:9a:27:
        46:2c:66:70:8f:79:7a:77:da:40:81:a7:4d:30:3b:74:e6:3a:
        ca:65:94:55:7c:98:4b:29:5d:d6:f3:57:e5:f1:92:bf:9a:04:
        12:6d:f7:e3:63:20:e8:b5:3b:a1:b3:e5:2a:e7:a5:ab:7f:c0:
        cd:55:9d:fa:0e:8c:23:81:23:a8:95:60:25:18:33:bd:77:8c:
        ef:02:e1:aa:e9:03:5e:98:96:41:43:83:6c:2c:b4:7d:57:ae:
        19:a7:bd:ce:1d:e4:bc:5a:94:56:b5:d3:6b:83:ca:9f:7e:9b:
        ca:c3:ea:66

18.205.138.83

Last Seen: 2024-05-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-947372816 | 2024-04-28T04:09:40.204305
80 / tcp

-1160054881 | 2024-05-04T16:32:23.536998
443 / tcp

AWS ELB2.0

Products

Pricing

Contact Us

18.205.138.83

Last Seen: 2024-05-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-947372816 | 2024-04-28T04:09:40.204305 80 / tcp

-1160054881 | 2024-05-04T16:32:23.536998 443 / tcp

AWS ELB2.0

Products

Pricing

Contact Us

-947372816 | 2024-04-28T04:09:40.204305
80 / tcp

-1160054881 | 2024-05-04T16:32:23.536998
443 / tcp