GeneralInformation

Hostnames	ec2-18-206-52-141.compute-1.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

974570904 | 2024-04-12T14:54:03.652837

80 / tcp

HTTP/1.1 403 Forbidden
Server: awselb/2.0
Date: Fri, 12 Apr 2024 14:54:03 GMT
Content-Type: text/html
Content-Length: 520
Connection: keep-alive

622038537 | 2024-03-21T18:35:38.983810

443 / tcp

HTTP/1.1 301 Moved Permanently
Date: Thu, 21 Mar 2024 18:35:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.20.0
Strict-Transport-Security: max-age=300; includeSubDomains
X-Content-Type-Options: nosniff
Set-Cookie: hours=HYVwNmQ; Path=/; SameSite=Strict
Set-Cookie: phoneNumber=EQDgDGCsCcBsCMB2elhA; Path=/; SameSite=Strict
Set-Cookie: ahi.sess=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpYXQiOjE3MTEwNDYxMzcsImV4cCI6MTcxMTA3NDkzNywiYXVkIjoiMmVjYjZjNzItNGQ3Yi00ZDkyLTg1NTQtY2U0MjQyMjljMGVmIn0.P1XPyk_Ysr7eMdUnimJlyC3XsH4HvVkDRyNA2wKv3wY; Max-Age=86400; Path=/; Secure; SameSite=None
Location: https://www.healthinsurance.com

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:b9:33:e2:8c:70:38:51:27:d3:bd:6b:6c:1d:71:f2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M01
        Validity
            Not Before: Jun 12 00:00:00 2023 GMT
            Not After : Jul  9 23:59:59 2024 GMT
        Subject: CN=*.agilehealthinsurance.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b6:f4:a6:ca:e6:c6:ae:20:cd:31:65:69:05:d9:
                    c1:93:9f:9f:0c:17:c2:07:b9:ad:da:b1:5e:54:1f:
                    a2:49:e9:d5:fc:69:f2:5c:19:b0:b0:b9:0b:e7:aa:
                    53:dc:4a:3a:bb:b4:a4:3c:59:26:d5:fa:36:8b:7b:
                    80:fe:f9:55:77:30:6d:20:9f:76:9e:44:07:a4:53:
                    91:11:70:77:94:6f:38:ce:e8:25:b0:43:f3:61:7b:
                    06:8d:54:df:45:dc:71:d5:20:f1:3f:e6:7a:1b:0d:
                    f3:df:1b:0a:0e:d9:0c:07:8e:5d:06:c2:ed:92:c6:
                    7c:ea:34:db:bc:d3:24:6d:ce:12:7e:bf:0f:5b:3f:
                    62:d1:76:a8:2e:3c:9a:72:0f:5e:cd:6e:82:c4:9c:
                    62:88:ad:81:36:3c:33:fb:c4:30:a9:b9:9b:a0:11:
                    a5:a5:be:23:cb:b8:e4:5e:c1:f4:3f:42:40:1b:46:
                    8a:a7:a0:a3:9d:fa:1c:ca:15:68:58:dc:98:8a:c9:
                    75:b2:88:27:68:b7:df:77:a0:ce:9a:a2:96:69:f9:
                    15:83:12:2b:89:cd:ef:26:d7:0f:50:39:aa:42:a4:
                    f6:3e:51:b3:9e:d4:31:f8:28:60:92:71:2f:97:7a:
                    2a:59:fb:20:07:52:8d:ed:d0:60:96:45:24:6f:02:
                    15:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                81:B8:0E:63:8A:89:12:18:E5:FA:3B:3B:50:95:9F:E6:E5:90:13:85
            X509v3 Subject Key Identifier: 
                19:48:2A:6B:79:80:2A:7F:11:6B:6E:53:8D:77:B3:A7:54:57:28:6F
            X509v3 Subject Alternative Name: 
                DNS:*.agilehealthinsurance.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m01.amazontrust.com/r2m01.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m01.amazontrust.com
                CA Issuers - URI:http://crt.r2m01.amazontrust.com/r2m01.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Jun 12 13:29:36.219 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B1:E3:7B:90:91:D6:BD:5A:A0:24:F0:
                                8F:A4:6B:25:AE:44:71:7D:99:42:E5:BE:0E:36:37:48:
                                D9:AF:82:48:E2:02:20:12:CF:B2:0C:7C:AE:C0:33:AD:
                                61:27:E7:CB:1F:83:6E:FA:71:6F:7C:8A:64:56:4C:15:
                                08:88:C8:93:56:16:7D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Jun 12 13:29:36.192 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:87:0C:6A:03:3F:BD:D2:17:EC:0D:71:
                                44:0C:3C:AC:C2:89:B7:38:D2:33:8B:00:9B:50:60:42:
                                8F:BD:F0:76:E0:02:21:00:F0:D1:48:1D:E5:BF:77:82:
                                BD:E0:8E:94:58:A8:AD:48:51:87:08:2F:66:F6:C3:16:
                                11:0F:5D:D6:3B:6E:DC:63
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Jun 12 13:29:36.141 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:92:A2:07:45:F0:D7:03:25:80:91:FD:
                                30:F5:52:4D:51:DA:0A:A6:7C:9A:A0:D2:CD:E8:26:C6:
                                49:BF:34:D9:3F:02:21:00:94:8E:31:C3:F1:36:53:E8:
                                F9:21:44:6E:7C:1B:6A:D6:18:A2:4A:1C:1A:A6:E7:D9:
                                B7:03:3D:19:7D:7B:F2:7B
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        c7:01:c3:53:47:08:10:bf:63:f2:4a:8a:1c:d0:fe:38:75:f4:
        2a:b0:5f:c5:bf:ca:bd:19:d6:28:7f:49:78:64:96:9b:fa:d7:
        9d:1a:4c:09:6f:48:ad:3b:2f:7c:11:21:99:5d:f8:1f:57:69:
        c7:1d:9f:3c:de:9b:97:96:16:78:0b:1b:f9:7e:73:42:46:dd:
        48:94:36:d2:a9:aa:09:28:e9:51:00:02:fc:a0:9a:f3:e0:32:
        09:05:4c:f3:16:98:7e:83:eb:7b:75:bc:66:33:4e:60:53:5f:
        df:21:9b:da:86:f5:bc:a3:73:7f:c0:fc:dc:22:76:7f:fd:f9:
        c7:e9:be:aa:56:5e:dd:45:3d:62:8b:ea:b6:2e:cf:31:8e:30:
        45:a5:ec:ec:9e:76:a1:60:0a:8c:7b:14:3c:7b:4b:3a:41:36:
        8e:6e:59:1b:fa:49:c5:74:32:38:cf:75:20:49:c8:a5:ed:17:
        62:2a:a0:e7:40:17:2f:90:92:60:17:95:5b:2e:4e:e9:2d:c0:
        1f:dc:51:6f:22:6b:d2:ff:46:be:6e:76:24:a1:e5:91:27:9b:
        2b:08:cd:b1:5a:79:dd:12:d2:34:b2:4f:ed:bb:a6:70:ce:fb:
        c0:c8:56:d2:51:a2:51:3b:03:98:7e:3f:3c:9f:98:57:d4:f1:
        50:76:3f:f6

18.206.52.141

Last Seen: 2024-04-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

974570904 | 2024-04-12T14:54:03.652837
80 / tcp

AWS ELB2.0

622038537 | 2024-03-21T18:35:38.983810
443 / tcp

nginx1.20.0

Products

Pricing

Contact Us

18.206.52.141

Last Seen: 2024-04-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

974570904 | 2024-04-12T14:54:03.652837 80 / tcp

AWS ELB2.0

622038537 | 2024-03-21T18:35:38.983810 443 / tcp

nginx1.20.0

Products

Pricing

Contact Us

974570904 | 2024-04-12T14:54:03.652837
80 / tcp

622038537 | 2024-03-21T18:35:38.983810
443 / tcp