GeneralInformation

Hostnames	ec2-18-215-70-75.compute-1.amazonaws.com api.staging.redd.plus
Domains	amazonaws.com redd.plus
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 3000

1949896279 | 2024-04-26T16:51:50.629009

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Fri, 26 Apr 2024 16:51:49 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://18.215.70.75:443/

592490958 | 2024-04-22T01:35:57.534100

443 / tcp

HTTP/1.1 404 Not Found
Date: Mon, 22 Apr 2024 01:35:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 179
Connection: keep-alive
Server: nginx/1.19.6
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: PATCH, GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: App-Session-Id,Cookie,Set-Cookie,Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:cd:32:cc:88:71:e3:78:b4:ff:4f:52:40:db:3d:93
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Oct 24 00:00:00 2023 GMT
            Not After : Nov 20 23:59:59 2024 GMT
        Subject: CN=*.redd.plus
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e5:0f:7d:3f:6d:0b:c3:cf:f9:06:4e:f4:4b:75:
                    f4:40:50:22:e8:1c:8b:ee:88:35:09:ad:9d:80:6e:
                    ed:e0:fa:45:7f:31:87:b6:d7:cf:d2:dd:ff:81:93:
                    e8:f5:7f:53:43:25:ba:4a:81:82:4b:0a:bd:4c:2b:
                    00:32:f2:cb:f1:00:04:5d:3d:fe:9e:60:4f:5d:5f:
                    a6:67:14:33:03:55:10:41:7f:d8:ce:ea:d9:dd:da:
                    c1:93:c7:78:e9:fa:1a:96:2b:f4:5a:79:75:26:7d:
                    95:97:3e:93:c6:a5:8c:51:c0:1a:f0:a6:1d:44:ce:
                    97:02:1a:a6:6c:62:73:8a:27:52:c6:a9:3b:78:2b:
                    8a:ef:0b:36:5c:46:5a:a6:6a:9c:c9:67:42:60:92:
                    6b:63:a1:d0:a9:dc:01:56:eb:e6:69:a6:76:57:dc:
                    95:ef:3b:18:a1:fb:a4:b1:7b:52:7b:2b:ab:2b:01:
                    39:8d:61:04:e4:d7:32:a0:eb:7e:2c:f0:d1:79:fb:
                    ef:46:83:3c:7f:50:1b:95:13:52:67:03:87:de:d9:
                    3a:75:69:be:ee:78:c3:38:c2:72:6a:3e:55:bd:a5:
                    fa:22:9e:c7:f1:fa:13:fb:eb:9b:4c:a4:16:e4:0c:
                    73:86:34:9f:a2:90:eb:0e:65:c1:58:8a:09:32:64:
                    8c:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                1D:25:79:52:C6:CF:BF:2A:6D:A0:FD:28:5D:9E:3C:AA:C1:9B:51:E5
            X509v3 Subject Alternative Name: 
                DNS:*.redd.plus, DNS:api.staging.redd.plus
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 24 07:47:10.670 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A2:1F:28:D1:73:2F:CD:16:82:43:92:
                                D4:67:AF:C6:DF:A3:9F:7F:7F:A9:10:AC:98:65:F0:73:
                                AB:E1:D7:22:90:02:21:00:8E:EE:4F:02:8F:BD:53:7B:
                                00:79:A3:7E:E7:51:69:A9:EC:D8:2B:AD:C3:59:60:AD:
                                55:54:F8:66:C4:5E:79:24
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct 24 07:47:10.570 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4C:02:A1:1D:98:B8:74:56:3C:E3:FC:E4:
                                AA:B6:61:BD:5E:BB:6A:0A:97:40:DD:9C:1B:CF:61:4A:
                                88:08:82:46:02:20:63:3E:E3:CF:0B:58:E0:BD:4E:E6:
                                BD:A5:FB:09:11:44:F6:F9:F8:FF:DC:43:91:01:6B:B9:
                                FE:D8:87:7F:C0:FA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 24 07:47:10.578 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0B:92:28:98:B2:C1:73:C7:95:2C:E8:09:
                                A8:15:A7:33:A0:27:95:5C:0B:BD:9C:22:5A:64:B0:E7:
                                D4:BD:D3:7C:02:21:00:BE:08:16:1A:69:FB:DA:F9:18:
                                94:7E:5A:CB:16:84:CB:87:94:0A:5D:E7:E8:4A:EC:0C:
                                15:50:11:C1:D1:64:CE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        37:dc:5f:be:fc:c8:e4:89:2e:b8:25:d4:c4:97:b4:c4:cd:ed:
        a0:56:b6:d1:5b:9c:2f:ea:88:c1:ec:7a:33:d3:a6:59:2b:98:
        a7:93:cc:b3:83:c4:c2:a2:de:94:a3:b3:d2:fa:f1:10:07:91:
        e2:02:f3:c3:bb:bd:d9:b5:20:6f:b1:28:e5:db:cc:dd:b2:9a:
        79:c1:2e:3e:96:9b:7f:fe:46:2d:2e:25:c9:1d:40:22:f9:4b:
        0f:82:48:bd:25:b5:6d:52:8d:69:e7:60:a5:3f:c0:40:72:31:
        44:21:9f:d3:c1:98:13:0b:44:fa:de:be:75:e0:be:ef:e8:d2:
        68:c8:81:93:0e:61:21:32:65:4f:52:e1:74:cd:f6:87:c5:fa:
        bc:0f:a3:f2:cc:79:6f:37:95:e1:71:c5:ec:02:63:17:48:c1:
        b9:c1:55:2b:c7:53:31:9b:cb:de:3f:0d:85:72:ba:85:80:a3:
        3b:9a:f2:0c:e5:3a:94:55:5e:61:5e:51:37:96:37:f5:c8:62:
        c0:24:07:b6:b7:8e:ba:33:4b:74:3c:40:3c:97:e4:75:3a:b2:
        a7:3a:f1:21:12:c7:a7:b3:1c:7f:16:15:85:15:ae:49:ec:9b:
        95:d4:98:46:31:fe:fc:27:78:ca:f2:e0:e7:d2:8b:3a:dd:23:
        58:9a:70:05

293410365 | 2024-04-27T04:12:51.237352

3000 / tcp

HTTP/1.1 503 Service Temporarily Unavailable
Server: awselb/2.0
Date: Sat, 27 Apr 2024 04:12:51 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

18.215.70.75

Last Seen: 2024-04-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1949896279 | 2024-04-26T16:51:50.629009
80 / tcp

AWS ELB2.0

592490958 | 2024-04-22T01:35:57.534100
443 / tcp

nginx1.19.6

293410365 | 2024-04-27T04:12:51.237352
3000 / tcp

AWS ELB2.0

Products

Pricing

Contact Us

18.215.70.75

Last Seen: 2024-04-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1949896279 | 2024-04-26T16:51:50.629009 80 / tcp

AWS ELB2.0

592490958 | 2024-04-22T01:35:57.534100 443 / tcp

nginx1.19.6

293410365 | 2024-04-27T04:12:51.237352 3000 / tcp

AWS ELB2.0

Products

Pricing

Contact Us

1949896279 | 2024-04-26T16:51:50.629009
80 / tcp

592490958 | 2024-04-22T01:35:57.534100
443 / tcp

293410365 | 2024-04-27T04:12:51.237352
3000 / tcp