GeneralInformation

Hostnames	ec2-3-133-176-229.us-east-2.compute.amazonaws.com api.staging.foodslope.quickmechs.com
Domains	amazonaws.com quickmechs.com
Cloud Provider	Amazon
Cloud Region	us-east-2
Cloud Service	EC2
Country	United States
City	Columbus
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

1155993821 | 2024-05-08T17:57:53.793465

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBAmfOiFpc26xcYorUBDcmoGy
0gElHrNdQ5nexoSvd117fXruO0U96A46Oovb351EdgY6DR5U9A/Zt+ZMYoEHZnA=
Fingerprint: 1b:1b:50:a9:60:01:60:01:93:28:dc:db:43:0d:da:90

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-30T20:53:51.560904

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 30 Apr 2024 20:53:51 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

780672404 | 2024-05-09T03:26:10.212928

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 09 May 2024 03:26:10 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:6d:e9:9b:bb:b0:85:cb:c2:e6:0d:b4:98:ce:53:1c:05:f9
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 10 20:58:36 2024 GMT
            Not After : Jun  8 20:58:35 2024 GMT
        Subject: CN=api.staging.foodslope.quickmechs.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c3:ec:3a:79:d7:99:7d:19:5d:c1:4a:9f:a0:89:
                    2a:af:9a:db:1a:67:ee:c3:22:1f:c5:28:db:dc:29:
                    22:a3:ac:85:c0:6a:54:e6:d4:a2:14:a4:68:5d:a4:
                    e7:df:1d:00:55:70:bf:8d:0b:72:3b:28:09:02:c9:
                    98:d5:29:50:cb:bb:c2:15:0f:c3:8e:a6:cf:d1:70:
                    1e:e2:39:a2:9b:55:1c:9d:90:8b:ea:ff:ed:32:e5:
                    0d:3f:ce:5a:f7:0f:9f:8a:97:1f:02:c0:23:a0:22:
                    97:28:b6:ed:07:3a:23:0d:e3:b4:fc:f9:3f:ea:86:
                    ac:6f:9d:be:46:51:bc:08:02:2a:ea:e1:a7:f9:ab:
                    8b:b2:eb:45:12:a2:1f:2b:24:25:21:3c:f5:ca:18:
                    91:29:ed:45:17:66:2a:87:37:a5:fd:ea:a5:62:ab:
                    bd:59:85:65:37:74:19:4a:f9:91:7c:e0:05:b6:e4:
                    d6:e5:69:b6:b6:ab:0b:25:e4:ca:29:54:7f:81:c5:
                    e5:c3:e2:2f:cd:76:59:d6:92:89:17:4a:25:ca:3c:
                    a3:c6:e3:8d:e4:19:35:38:65:e3:08:e7:cf:54:a0:
                    12:3f:55:22:fb:ea:49:98:93:30:7b:7b:3f:86:c1:
                    93:35:8b:ba:04:f1:3b:ff:4b:4d:fc:bf:2a:2d:21:
                    b1:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                27:5C:22:59:E6:FD:40:B0:80:AE:86:A9:4D:FA:85:2F:3E:18:4F:41
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.staging.foodslope.quickmechs.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 10 21:58:36.283 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:23:98:DB:BF:10:6A:B2:A6:52:49:85:D4:
                                AE:1E:FA:EF:3B:A2:90:4D:52:24:A2:4B:86:7B:D5:5A:
                                4D:61:4F:93:02:21:00:8B:1F:EC:56:C1:33:7D:BD:4F:
                                86:60:DC:8F:AC:21:81:EA:AA:B3:F6:EB:88:FC:CC:46:
                                51:9F:6D:EC:CD:B1:60
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 10 21:58:36.423 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EE:1A:40:E0:52:EC:A0:B0:8E:AD:45:
                                B0:90:2C:92:36:96:AA:5C:BD:AB:13:90:58:DC:6E:3C:
                                50:48:61:D4:0C:02:21:00:AD:C4:24:3B:F4:8B:8A:ED:
                                DA:3C:86:DB:C6:48:D2:EA:EF:CF:8F:BA:3D:C0:C4:EC:
                                E6:9A:53:85:8B:CE:1B:D4
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0b:a4:c9:bb:3b:0c:4a:3f:34:7b:1a:89:28:3b:b1:8d:07:e0:
        82:8c:e6:c0:3a:69:3c:83:cc:31:ad:43:49:cb:96:80:b1:d0:
        9b:08:ab:60:7f:c9:40:d0:87:d5:90:1e:08:dc:be:5f:ef:e1:
        15:dc:4f:0f:85:32:fe:df:dd:74:d1:60:8f:55:26:cd:45:7a:
        b3:92:c0:cd:0a:5d:17:cc:ab:a3:88:7e:90:8a:85:3e:ae:4b:
        2c:ff:95:1d:03:90:2b:51:9c:87:aa:5a:e7:da:7a:d6:28:17:
        0e:8b:6a:a6:7f:20:05:06:8c:c6:55:02:93:e2:b1:11:f1:0e:
        f9:66:36:35:2a:0a:82:c9:18:99:69:ff:64:67:59:16:21:ff:
        64:bc:de:a6:54:ab:11:a4:3f:fc:e3:5c:66:a6:1f:8c:94:9d:
        e1:cf:20:6c:6d:64:00:6c:62:f3:d8:61:58:c2:6f:b8:db:a2:
        1d:bd:a8:13:6a:79:9a:10:73:22:6d:c8:6f:3e:24:bb:72:64:
        00:0f:b6:50:66:bb:dd:d2:f4:1e:5b:c9:55:64:a0:98:74:d4:
        8b:5a:44:ed:f1:db:a5:e0:82:d0:87:49:69:95:ec:d0:50:db:
        0f:13:12:8b:77:a3:b2:92:70:7d:60:30:07:17:dc:62:bd:09:
        6f:01:ea:b8

3.133.176.229

Last Seen: 2024-05-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1155993821 | 2024-05-08T17:57:53.793465
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-04-30T20:53:51.560904
80 / tcp

nginx1.18.0

780672404 | 2024-05-09T03:26:10.212928
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

3.133.176.229

Last Seen: 2024-05-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1155993821 | 2024-05-08T17:57:53.793465 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-04-30T20:53:51.560904 80 / tcp

nginx1.18.0

780672404 | 2024-05-09T03:26:10.212928 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1155993821 | 2024-05-08T17:57:53.793465
22 / tcp

677579724 | 2024-04-30T20:53:51.560904
80 / tcp

780672404 | 2024-05-09T03:26:10.212928
443 / tcp