GeneralInformation

Hostnames	ec2-18-218-60-37.us-east-2.compute.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	us-east-2
Cloud Service	EC2
Country	United States
City	Columbus
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

897585984 | 2024-04-30T19:48:18.869167

80 / tcp

HTTP/1.1 301 Moved Permanently
Date: Tue, 30 Apr 2024 19:48:18 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Server: nginx/1.20.2
Location: https://18.218.60.37/

1420722167 | 2024-04-30T19:53:15.691296

443 / tcp

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 19:53:15 GMT
Content-Type: text/html
Content-Length: 2775
Connection: keep-alive
Server: nginx/1.20.2
Last-Modified: Tue, 02 Apr 2024 00:00:31 GMT
Vary: Accept-Encoding
ETag: "660b4a9f-ad7"
Expires: Tue, 30 Apr 2024 19:53:15 GMT
Cache-Control: max-age=0
Cache-Control: no-cache
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:93:6f:17:7c:aa:e7:ca:fa:44:68:d9:ef:f0:27:a2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Sep 23 00:00:00 2023 GMT
            Not After : Oct 22 23:59:59 2024 GMT
        Subject: CN=*.junecare.co
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d0:48:f7:e4:fe:6e:2e:53:29:6c:5e:d0:20:9d:
                    99:03:5f:c4:2e:e7:35:87:61:0d:07:e6:41:51:7b:
                    cc:59:f0:1d:6a:d8:8d:d7:0f:ea:75:41:2e:bc:96:
                    2a:da:d0:99:34:12:28:bb:e6:86:69:44:d2:81:b6:
                    de:26:ae:2d:ac:8c:f5:18:26:b6:7f:14:f3:77:b8:
                    6a:6e:76:8a:ea:00:50:56:3e:dc:91:af:7a:23:2c:
                    a4:8c:8d:8b:9c:00:10:b8:50:51:b1:f3:9e:ab:fb:
                    2d:cb:95:ae:33:56:5d:ca:b3:72:4a:58:9f:23:60:
                    17:50:b5:b8:cb:e5:8a:da:68:1c:bf:12:69:20:07:
                    83:96:86:15:1e:fc:2d:b3:11:aa:96:ef:ee:6e:b0:
                    4b:38:5c:ce:41:bf:90:e1:d0:c2:36:ef:b4:73:e7:
                    73:3c:6f:fc:93:13:e1:db:36:c9:e1:bb:5f:60:4b:
                    55:d4:de:eb:24:9d:b5:49:49:89:18:f2:22:58:b0:
                    f7:58:dc:e6:fc:fd:af:f2:5e:a1:20:56:18:9b:f1:
                    81:75:62:35:c9:3e:90:b3:a3:a8:e1:e9:cb:bc:15:
                    ba:a5:71:94:75:55:da:e3:08:79:16:c9:72:4f:08:
                    af:ba:48:9d:b3:55:d4:4b:fa:69:82:fe:66:fc:a9:
                    ec:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                FD:FF:FF:21:F1:BB:00:F5:AC:2B:ED:19:41:70:A6:A9:61:7C:CB:1D
            X509v3 Subject Alternative Name: 
                DNS:*.junecare.co
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep 23 00:09:33.082 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:4B:E7:32:A1:55:CB:FC:71:D6:27:0F:04:
                                F8:A1:8A:83:89:C4:CE:FF:D9:81:33:79:E7:9C:6B:99:
                                AC:C0:41:E2:02:21:00:D7:C2:CA:39:65:35:88:42:65:
                                DA:3C:1F:31:EC:04:A4:E1:6C:82:29:6C:35:3B:72:BA:
                                DF:B7:37:88:AA:09:D4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Sep 23 00:09:33.153 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:63:56:9C:A6:F6:34:92:1A:CA:46:D9:83:
                                39:29:CA:D3:14:D5:C1:FA:78:BD:6E:DE:C3:B7:53:5D:
                                35:10:69:A7:02:20:35:39:FE:78:7D:AD:B2:DA:8F:35:
                                A3:FA:B1:F9:E6:77:68:00:3E:8A:4B:E9:24:86:A9:A7:
                                52:EC:40:B6:D1:C4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep 23 00:09:33.113 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E4:0E:67:30:F3:C2:27:74:24:49:86:
                                E5:53:68:8A:40:1E:5F:B2:EA:1D:B1:3C:B7:44:35:7D:
                                7D:2D:B8:82:03:02:21:00:8D:1B:75:74:3E:ED:75:3A:
                                52:95:0E:5B:11:5C:7F:45:35:2D:37:FE:BD:EF:D3:5D:
                                13:A5:92:05:AE:F0:4A:81
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5a:2b:e9:12:76:d4:fc:08:c1:5e:60:a5:11:d3:51:de:96:34:
        3f:2d:fe:5c:22:93:9f:7e:d0:c7:c9:12:66:01:57:13:af:d9:
        5d:30:24:38:eb:5c:56:f7:10:fc:b2:3b:13:f9:e6:f6:88:9e:
        5c:c9:70:9f:ca:5a:c8:9c:2e:ee:02:88:0a:9d:b5:11:88:6b:
        2d:73:a1:72:2d:0f:c8:99:43:f0:0c:43:f0:cc:06:f5:f2:5d:
        fe:ef:b0:85:89:6e:49:00:10:23:62:c8:7d:5e:5d:7c:64:4e:
        00:bc:9e:85:f8:57:06:cb:a6:fc:8b:91:dd:ba:6d:7d:c4:9f:
        25:c2:cc:0d:b5:33:c7:f5:14:7d:8c:fa:7c:ea:35:08:58:78:
        66:19:cc:19:8f:23:c1:01:b3:5b:c3:bd:22:92:ca:48:fc:00:
        a9:41:7b:ba:aa:e4:33:e0:4d:98:28:a0:ef:db:ed:f5:89:c3:
        63:f5:37:bd:a6:91:94:65:08:f4:0a:0d:bd:6f:ac:ff:8a:94:
        dc:4b:80:69:1d:ad:89:a6:70:47:ef:8b:36:b4:66:1a:6d:ee:
        84:1f:e0:e6:bc:02:cb:f6:32:dc:98:56:c6:06:d0:ec:73:d7:
        31:64:2f:06:80:52:a8:0f:8e:bd:c1:07:98:d7:5e:7c:5b:de:
        84:9e:91:be

18.218.60.37

Last Seen: 2024-04-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

897585984 | 2024-04-30T19:48:18.869167
80 / tcp

nginx1.20.2

1420722167 | 2024-04-30T19:53:15.691296
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

18.218.60.37

Last Seen: 2024-04-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

897585984 | 2024-04-30T19:48:18.869167 80 / tcp

nginx1.20.2

1420722167 | 2024-04-30T19:53:15.691296 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

897585984 | 2024-04-30T19:48:18.869167
80 / tcp

1420722167 | 2024-04-30T19:53:15.691296
443 / tcp