GeneralInformation

Hostnames	ec2-3-6-160-182.ap-south-1.compute.amazonaws.com publish.phcode.dev
Domains	amazonaws.com phcode.dev
Cloud Provider	Amazon
Cloud Region	ap-south-1
Cloud Service	EC2
Country	India
City	Mumbai
Organization	Amazon Data Services India
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

677579724 | 2024-04-17T11:57:31.784108

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 17 Apr 2024 11:57:31 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

1009235027 | 2024-04-22T00:03:43.243497

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 00:03:43 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 9
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:6b:63:d4:59:3d:c3:86:9a:ee:a8:30:4c:5a:ce:34:0f:d6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  3 08:33:11 2024 GMT
            Not After : Jul  2 08:33:10 2024 GMT
        Subject: CN=publish.phcode.dev
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d2:49:db:ee:df:4c:aa:c7:9b:60:d7:45:9a:a3:
                    94:52:9a:80:d3:ba:71:f1:ef:44:81:1b:8a:5b:42:
                    e2:17:49:31:07:c6:6f:d6:5f:ef:7c:3f:b3:7c:61:
                    cb:83:e8:dc:20:1f:6a:d4:7a:28:31:22:d2:73:84:
                    c5:f6:fe:88:de:c0:7d:82:be:8d:e2:fd:66:fe:47:
                    5a:15:64:af:7e:01:89:ed:c6:59:ce:47:dd:d0:d2:
                    96:15:c1:45:0f:c8:93:e9:84:25:14:0c:bb:0a:6c:
                    12:20:27:55:08:37:08:ee:d1:88:a5:24:63:40:66:
                    36:f8:23:fd:eb:e9:bd:54:de:eb:14:e2:02:8f:ab:
                    49:11:78:96:16:6c:90:4e:9f:fc:dd:af:3e:4f:b1:
                    45:75:89:4a:74:f3:29:af:ba:a6:aa:8a:8b:f5:f3:
                    c4:fa:7c:02:a2:f3:a2:9d:3b:5d:13:d1:2a:9b:2c:
                    96:26:6f:52:52:d7:58:36:8e:87:c6:b5:4e:9a:e5:
                    94:f5:e0:49:76:0e:1d:7d:b8:28:7b:86:3b:dc:bd:
                    f1:3e:89:78:ab:98:aa:76:c5:19:e0:64:d8:47:4f:
                    3f:2a:ff:15:1b:fe:0e:c8:24:b3:b8:39:f4:5d:d6:
                    af:1c:96:e3:dd:34:32:de:77:cb:03:58:c1:ee:0b:
                    a4:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                AD:C9:B3:26:B5:91:53:E8:CB:27:7F:E5:8C:E2:26:AE:1A:B6:3F:CA
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:publish.phcode.dev
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  3 09:33:11.493 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AF:FF:7D:AF:4F:84:CE:2F:ED:6A:7F:
                                C2:3B:B6:33:5D:6D:19:20:01:DF:48:B5:93:D4:9F:DE:
                                56:86:03:35:36:02:21:00:FB:D5:43:CC:23:76:F1:8C:
                                69:BD:31:FE:A0:B8:0E:1B:0F:52:B8:38:F9:EA:C8:CC:
                                D5:84:79:60:E5:C2:AA:B3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr  3 09:33:11.511 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D3:D7:CE:F1:B6:C7:D3:C4:EF:21:E6:
                                7D:23:4A:BE:59:6A:5C:24:9F:8E:D8:5F:BD:E6:8A:A1:
                                3E:51:11:95:25:02:20:34:FB:3E:EF:8F:30:09:39:45:
                                28:CA:6E:B4:73:9F:BA:29:95:62:A2:47:AC:36:21:E7:
                                12:FD:81:A6:67:E9:51
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        45:db:9e:99:c7:0d:63:ee:fb:a1:ce:59:5f:2c:34:5f:b5:69:
        75:c1:55:39:ae:14:b2:ea:72:c8:23:f6:2c:b0:11:44:ca:a9:
        65:ae:84:85:94:b2:22:fd:a5:68:be:da:c6:62:34:35:48:ad:
        5c:6a:8f:6b:52:e7:29:dc:da:3f:26:04:99:1e:b9:c9:55:6a:
        10:84:80:f3:68:2e:98:b8:72:33:b8:9b:fc:e9:ec:c2:bd:42:
        5c:23:2f:12:52:00:ea:4c:f4:00:1f:61:f6:e3:04:e0:ff:b5:
        9a:0c:01:99:b3:87:2f:3b:cc:48:a8:21:85:22:84:ea:93:0d:
        64:1c:49:8a:bb:3e:b0:01:3f:71:5f:0d:cd:9a:f9:be:28:b4:
        fa:29:a0:ea:94:9b:44:97:3f:af:b4:bf:eb:f0:9f:13:03:40:
        ed:87:4e:28:3c:d5:6b:9f:5d:34:67:84:63:28:e9:12:c8:8c:
        df:cc:45:0c:d3:da:12:61:c7:1c:f9:15:d9:fa:dd:58:37:10:
        df:6e:03:d5:d6:8f:52:f5:4d:b2:6a:d9:64:39:27:5c:7e:6e:
        16:c4:fd:fb:fa:16:3c:32:7b:ce:26:6a:26:fa:96:b5:84:85:
        44:57:98:55:98:a5:e7:7e:e8:83:d7:10:f3:de:7d:6e:f2:89:
        56:21:18:0c

3.6.160.182

Last Seen: 2024-04-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-04-17T11:57:31.784108
80 / tcp

nginx1.18.0

1009235027 | 2024-04-22T00:03:43.243497
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

3.6.160.182

Last Seen: 2024-04-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-04-17T11:57:31.784108 80 / tcp

nginx1.18.0

1009235027 | 2024-04-22T00:03:43.243497 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

677579724 | 2024-04-17T11:57:31.784108
80 / tcp

1009235027 | 2024-04-22T00:03:43.243497
443 / tcp