GeneralInformation

Hostnames	chapala.ainwater.com ec2-18-213-59-194.compute-1.amazonaws.com
Domains	ainwater.com amazonaws.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000

-601502697 | 2024-04-29T06:32:20.974176

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBEZiEM92mvyq3k0LMwoannqh
/b7hXhBjehFvUgI53UXzxkSn/wPQ4Au2AWbjWBM0Yvz9hXRF0VPeT4Y990EF/oA=
Fingerprint: c0:c0:cd:96:34:7e:3b:2a:af:6c:bf:30:27:13:51:07

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-04-27T07:35:09.326510

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 27 Apr 2024 08:24:05 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://18.213.59.194/

-1190950339 | 2024-04-26T13:46:22.198184

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 26 Apr 2024 14:35:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 16556
Connection: keep-alive
X-Powered-By: Next.js
ETag: "40ac-+Ljv0F2sdu+jgtWtPTRiMOIfuIY"
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:e2:73:20:fb:53:c3:e8:6f:89:20:96:aa:92:4a:a0:78:bf
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  6 04:23:40 2024 GMT
            Not After : Jun  4 04:23:39 2024 GMT
        Subject: CN=chapala.ainwater.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bd:09:3c:04:d9:30:60:9d:af:26:bc:e5:20:de:
                    85:c0:9b:81:8b:e0:b3:64:00:d8:25:c8:3b:d6:ed:
                    52:54:f1:f9:58:fb:b8:d3:2d:b5:aa:fe:91:80:a2:
                    24:6d:ee:1a:53:6f:2c:2f:97:96:22:23:b4:10:19:
                    e1:af:b4:3c:80:93:6b:6b:a7:d4:c3:e9:90:6b:8c:
                    3a:de:b4:b5:b7:d8:d2:11:5a:a0:9d:17:ca:81:98:
                    b2:f3:d0:92:df:db:c8:b6:9a:2e:6f:2d:27:a7:9e:
                    59:b6:ef:7a:96:2d:d3:2d:1f:4d:cd:19:8a:e4:60:
                    56:2c:1f:1d:62:4e:43:55:35:0c:46:fd:22:a1:b1:
                    76:2b:8d:5c:56:80:66:36:17:1e:57:49:3b:98:55:
                    ce:96:46:6d:65:fe:d9:1c:8b:05:f9:6c:fe:57:f3:
                    8e:ec:2b:90:fb:1b:db:6c:e1:6a:67:85:91:55:e5:
                    a8:d4:16:c8:fb:2f:1b:b8:51:3a:15:26:34:27:78:
                    f7:37:0b:7a:c7:9d:ab:70:f1:24:e0:1a:99:bb:73:
                    e6:14:69:ee:7e:cd:0c:0e:08:5b:76:55:9b:a1:37:
                    57:e3:5b:0a:82:eb:43:3b:07:ec:d8:c9:d4:da:73:
                    f7:db:9b:1f:d0:08:56:cc:03:f2:81:10:f1:ad:07:
                    39:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                68:74:11:C0:2A:15:33:CC:0B:56:83:62:85:93:6B:93:E4:D3:EB:0A
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:chapala.ainwater.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar  6 05:23:40.125 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C7:51:8C:4F:77:0D:86:A8:0A:FA:4C:
                                90:A7:C4:CE:62:38:3D:36:CA:64:1B:E6:61:ED:12:EE:
                                BC:34:8F:69:DD:02:21:00:93:5C:90:DC:FA:74:F5:9F:
                                54:91:FA:66:AC:A8:44:7B:E5:10:A5:84:3B:F2:60:93:
                                D8:4D:3A:50:0F:02:2D:89
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar  6 05:23:40.144 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:84:F0:60:46:D6:83:48:04:E0:CF:4E:
                                7B:FD:30:2B:72:F9:D1:64:CF:75:2A:D8:2F:48:36:23:
                                CF:E3:54:7C:2A:02:20:76:2D:14:D5:63:A1:10:26:C3:
                                80:6C:53:31:F3:AE:16:BD:61:F3:63:63:E5:CE:4C:D3:
                                F7:40:03:19:DD:5B:02
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        18:a7:dd:d2:4a:70:e0:08:c2:a2:d1:09:2d:49:50:3c:c2:97:
        20:4d:ec:ba:4c:e8:08:3f:6b:b2:38:8d:bf:d7:16:1e:f6:62:
        4c:88:71:12:88:47:d4:43:bb:e0:aa:b1:5c:21:c7:62:a8:e5:
        b4:37:b3:59:7a:00:83:9a:e2:e6:24:57:90:88:6e:c8:0a:1f:
        c9:d7:4b:5e:c1:45:2c:8e:4c:7c:c5:9e:f1:46:41:73:bb:e3:
        fc:95:80:99:d5:47:0e:e3:8e:15:11:5c:00:9e:24:6e:9c:a4:
        d2:2e:d4:12:8b:e4:4d:4f:a6:10:1b:53:0f:bc:15:61:76:1c:
        0f:c4:5e:a9:31:09:3f:d7:94:29:94:f0:43:d3:04:dd:c4:23:
        ad:4c:03:7c:98:a1:bf:ec:6e:f7:5d:05:f8:3f:b9:7a:76:3c:
        71:24:31:12:61:a6:b5:48:67:33:1c:1d:88:25:a3:d2:e9:3a:
        70:0d:25:5f:d0:4e:b2:00:81:56:1d:54:aa:d1:f2:07:91:34:
        6d:3f:4b:29:36:db:6a:6a:b3:25:d5:04:8f:79:ec:dc:52:74:
        90:6b:81:ca:31:bc:1d:a7:6e:29:b0:2a:39:8b:45:47:66:41:
        5c:e4:60:2d:7c:31:d6:0f:15:f3:44:1c:77:93:d8:7f:54:36:
        c7:93:c1:6b

-254641555 | 2024-04-30T16:52:40.081421

3000 / tcp

HTTP/1.1 200 OK
x-nextjs-cache: HIT
X-Powered-By: Next.js
ETag: "158etlnju5seni"
Content-Type: text/html; charset=utf-8
Content-Length: 18990
Cache-Control: s-maxage=31536000, stale-while-revalidate
Vary: Accept-Encoding
Date: Tue, 30 Apr 2024 17:42:07 GMT
Connection: keep-alive
Keep-Alive: timeout=5

18.213.59.194

Last Seen: 2024-04-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-601502697 | 2024-04-29T06:32:20.974176
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-04-27T07:35:09.326510
80 / tcp

nginx1.18.0

-1190950339 | 2024-04-26T13:46:22.198184
443 / tcp

nginx1.18.0

-254641555 | 2024-04-30T16:52:40.081421
3000 / tcp

Products

Pricing

Contact Us

18.213.59.194

Last Seen: 2024-04-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-601502697 | 2024-04-29T06:32:20.974176 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-04-27T07:35:09.326510 80 / tcp

nginx1.18.0

-1190950339 | 2024-04-26T13:46:22.198184 443 / tcp

nginx1.18.0

-254641555 | 2024-04-30T16:52:40.081421 3000 / tcp

Products

Pricing

Contact Us

-601502697 | 2024-04-29T06:32:20.974176
22 / tcp

589765266 | 2024-04-27T07:35:09.326510
80 / tcp

-1190950339 | 2024-04-26T13:46:22.198184
443 / tcp

-254641555 | 2024-04-30T16:52:40.081421
3000 / tcp