GeneralInformation

Hostnames	ec2-18-223-19-14.us-east-2.compute.amazonaws.com api.confusability.ai stapi.confusability.ai
Domains	amazonaws.com confusability.ai
Cloud Provider	Amazon
Cloud Region	us-east-2
Cloud Service	EC2
Country	United States
City	Columbus
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-1358869370 | 2024-05-15T15:00:50.487915

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBDlxM/WgrDgvTDLuhKjV00f+
xsnCBWIpLjhjsgqhJgRjxjCSA+4qkRB8TUR4klcrG9M/eXMftE8KzIjgvievcZE=
Fingerprint: 14:50:8c:aa:20:05:8c:c9:dd:1b:3c:d2:8f:b5:c6:a1

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1831106190 | 2024-05-18T02:49:28.375169

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 18 May 2024 02:49:28 GMT
Content-Type: text/html
Content-Length: 621
Last-Modified: Sat, 01 Apr 2023 17:28:12 GMT
Connection: keep-alive
ETag: "642869ac-26d"
Accept-Ranges: bytes

-2036609140 | 2024-05-23T13:08:02.149639

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 23 May 2024 13:08:02 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 38
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Wed, 31 Jan 2024 19:21:39 GMT
ETag: W/"26-18d60f844b6"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:72:c8:78:4e:a8:d0:36:66:6e:b6:26:dd:59:c8:60:c8:e7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 15 15:55:49 2024 GMT
            Not After : Jul 14 15:55:48 2024 GMT
        Subject: CN=api.confusability.ai
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:71:10:ae:d8:80:19:41:96:d5:02:e6:be:27:56:
                    5a:cf:4a:4d:93:41:4c:4a:09:54:85:fd:a0:f9:2f:
                    e9:a7:1e:36:a0:88:5a:00:7b:3e:d7:3e:a2:39:70:
                    49:cb:0f:f3:23:6d:39:a8:86:d6:20:e7:78:4d:09:
                    e3:94:17:c8:04
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                FC:6F:5D:58:3C:31:3B:3C:B3:4A:47:85:CF:D7:4E:99:C0:7F:D4:EC
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.confusability.ai, DNS:stapi.confusability.ai
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 15 16:55:49.352 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A0:68:0C:16:02:20:F3:94:4D:85:B0:
                                A0:33:96:C0:04:8F:85:91:68:E0:97:09:05:37:C0:6F:
                                03:7D:8B:18:B8:02:20:60:4B:BA:48:DB:2C:F1:03:CC:
                                D6:93:D9:A3:F8:F2:11:91:50:02:67:16:0D:07:48:E6:
                                5B:42:D0:F1:6E:7E:C6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 15 16:55:49.342 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9C:A5:8D:B0:B4:96:78:D4:7B:F0:08:
                                08:41:63:1A:3C:82:CE:97:6C:1E:2F:DD:10:9A:A9:3A:
                                A0:40:45:9E:6E:02:20:5F:3E:12:B6:BC:C7:DB:5E:7E:
                                68:41:A7:79:6A:3F:01:4C:65:4B:D1:C1:49:62:29:43:
                                45:7C:93:3B:0D:F5:97
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        41:bd:9b:09:62:78:9c:03:09:16:46:5d:6f:be:b5:8c:4e:10:
        d8:e1:ec:05:a4:98:22:84:f2:7b:c9:c0:66:36:83:ce:68:e1:
        fa:e2:30:2d:d8:11:06:1f:f9:a1:b0:80:20:66:2f:3a:63:3a:
        eb:18:f5:4b:c7:76:43:a4:37:6d:52:f7:eb:d6:54:df:01:07:
        9a:54:8d:ca:d5:de:1b:95:18:40:25:b9:eb:67:2c:e2:27:42:
        95:ab:22:be:62:ed:c3:99:fd:cd:ee:46:7e:53:75:ad:0f:4e:
        ed:b7:15:10:86:ac:1f:9b:cb:9a:5c:df:18:a5:8a:c6:97:bc:
        61:76:01:ca:9b:52:f4:39:1d:86:9c:d2:c6:f2:43:53:e4:df:
        55:88:37:c6:c6:74:98:57:e8:3e:3d:af:1f:11:4f:53:c5:ed:
        6b:56:d4:35:9a:64:71:d2:ce:2c:00:97:9d:99:44:32:25:dc:
        95:ae:c2:f3:e4:4f:74:05:e5:ad:e0:9b:67:c9:6e:73:a0:1b:
        2a:85:ae:77:75:b4:6a:5d:72:c3:c1:50:33:f9:94:ac:27:0c:
        a4:7e:7c:53:b0:79:04:c9:0e:79:2f:20:11:cd:4f:ca:b9:7b:
        e1:da:b1:98:66:8d:95:ff:ad:25:bb:e3:d1:e9:0f:95:fa:39:
        98:60:11:d4

18.223.19.14

Last Seen: 2024-05-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1358869370 | 2024-05-15T15:00:50.487915
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-1831106190 | 2024-05-18T02:49:28.375169
80 / tcp

nginx1.18.0

-2036609140 | 2024-05-23T13:08:02.149639
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

18.223.19.14

Last Seen: 2024-05-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1358869370 | 2024-05-15T15:00:50.487915 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-1831106190 | 2024-05-18T02:49:28.375169 80 / tcp

nginx1.18.0

-2036609140 | 2024-05-23T13:08:02.149639 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1358869370 | 2024-05-15T15:00:50.487915
22 / tcp

-1831106190 | 2024-05-18T02:49:28.375169
80 / tcp

-2036609140 | 2024-05-23T13:08:02.149639
443 / tcp