GeneralInformation

Hostnames	ec2-34-198-47-19.compute-1.amazonaws.com rally-dev.windu.io
Domains	amazonaws.com windu.io
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

WebTechnologies

UI frameworks

Ant Design

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

604251835 | 2024-03-30T14:26:10.605780

80 / tcp

HTTP/1.1 200 OK
Date: Sat, 30 Mar 2024 14:26:10 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Server: nginx/1.18.0

-270097568 | 2024-04-13T10:33:26.000671

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 13 Apr 2024 10:33:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 26217
Connection: keep-alive
Set-Cookie: AWSALB=dY8OWsA9bL4OeEwAWKLKPaDYhQvtUdujK5hBTWVP5FasbMgrwpG5l6XqQ57AZ+EAa7ZI5xACBlB5g7JOujG+AfiXbthZvDYFurRLUKVGArUbB0BK21/4/iGlccs+; Expires=Sat, 20 Apr 2024 10:33:25 GMT; Path=/
Set-Cookie: AWSALBCORS=dY8OWsA9bL4OeEwAWKLKPaDYhQvtUdujK5hBTWVP5FasbMgrwpG5l6XqQ57AZ+EAa7ZI5xACBlB5g7JOujG+AfiXbthZvDYFurRLUKVGArUbB0BK21/4/iGlccs+; Expires=Sat, 20 Apr 2024 10:33:25 GMT; Path=/; SameSite=None; Secure
X-Powered-By: Next.js
ETag: "k2cnfsdwl7k89"
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            08:ed:73:73:5e:b1:0e:28:7d:3b:42:24:da:71:6f:c3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Mar 12 00:00:00 2024 GMT
            Not After : Apr 11 23:59:59 2025 GMT
        Subject: CN=rally-dev.windu.io
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:94:e9:71:bc:93:7e:c4:ec:b4:9a:48:d4:c6:96:
                    af:0c:2f:67:34:d5:2e:97:c0:2c:28:57:9e:45:90:
                    5e:e7:34:0b:a9:72:95:4c:60:58:4d:62:f0:dd:37:
                    ff:81:ee:f3:fb:2f:65:d6:ad:30:16:95:65:60:64:
                    7b:31:e3:e4:86:1e:3a:5d:12:3e:b0:fe:fa:ae:9e:
                    4f:78:c1:62:a9:3b:47:73:9a:10:91:5c:9b:8d:a1:
                    cf:81:43:68:cd:85:da:c7:d4:e2:f8:aa:22:f2:21:
                    9b:6a:e2:39:2b:13:b9:02:ec:43:37:3e:ba:c3:95:
                    cc:d4:e9:f7:25:a8:f7:a8:d4:97:34:23:07:92:77:
                    e8:2f:bb:ea:d4:55:23:bb:20:32:41:a6:4f:f4:c6:
                    e2:bd:9f:b7:0c:de:85:1d:f0:31:ca:04:dc:60:77:
                    9a:18:2a:b2:ed:48:a4:7a:db:2c:78:2f:ab:f1:6e:
                    2e:a3:f1:61:e3:d2:43:e9:62:fa:cf:07:ef:1c:8b:
                    0c:38:45:b3:6b:40:8d:0f:fe:24:10:47:4e:d1:21:
                    9a:2e:71:68:07:bf:cd:03:1d:11:93:e6:66:ff:c0:
                    5c:de:b4:75:51:0a:25:8f:a4:04:9c:dd:f8:0d:9f:
                    f0:3f:d0:44:f3:15:92:eb:3a:61:1c:91:36:c8:7d:
                    e0:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                E9:76:CE:E1:68:67:DF:AA:62:D5:E8:0F:B1:7E:8D:C9:F0:90:29:86
            X509v3 Subject Alternative Name: 
                DNS:rally-dev.windu.io
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar 12 05:20:27.031 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C6:E2:3F:0E:D6:FE:21:CA:DF:DC:64:
                                69:09:78:E3:E1:D4:A5:9B:4D:B7:76:44:A5:72:B0:4C:
                                7E:C0:0F:EB:6C:02:21:00:BF:AC:3F:D6:76:3C:B2:FA:
                                A0:D2:FD:C8:61:C0:21:19:F5:FE:DA:37:B3:0F:41:23:
                                60:52:3A:1E:4D:A3:AE:B5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Mar 12 05:20:27.036 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:CC:99:BD:B2:07:45:01:CD:9B:36:0E:
                                C2:C9:2C:0A:DB:DB:FF:55:1B:73:CC:60:A8:93:94:6C:
                                25:C5:41:4C:70:02:20:57:8F:A6:4D:8A:0F:31:84:A0:
                                95:9B:0F:76:35:28:0E:08:55:CB:8B:3B:AF:00:4E:04:
                                90:A4:44:DD:A9:AF:48
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Mar 12 05:20:27.075 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:71:B7:DB:97:73:F5:AE:E2:67:7E:BA:F6:
                                91:82:24:83:2F:7A:7B:B0:A8:B4:6F:CD:05:3F:A7:BD:
                                5F:16:E6:7A:02:20:7B:38:9E:02:6F:20:E1:72:D0:4D:
                                C1:84:2D:37:0B:9C:43:B2:76:A7:98:AA:0F:4A:59:78:
                                95:2A:FB:29:21:1E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5d:af:5b:4c:95:59:a5:07:27:c1:d9:8d:90:41:ae:e6:fe:16:
        a9:88:29:86:44:1b:24:19:e8:4b:8b:76:95:bc:fc:d0:28:d8:
        4c:0b:2f:fb:54:c5:87:79:30:ba:99:2e:55:41:b1:68:5e:7a:
        56:89:c7:f0:02:dc:46:62:7c:67:bb:06:f9:41:d8:02:ea:f5:
        af:35:5c:d9:3a:09:20:ce:be:a7:6f:67:b9:ab:ee:85:ed:08:
        4a:59:9d:45:3f:84:00:c2:f6:f6:01:12:86:0b:a6:f0:f4:cd:
        77:c1:26:22:2c:a3:00:c3:2a:85:76:f0:7f:58:d4:0c:5f:4f:
        a6:8a:6e:98:8e:07:41:70:fc:5e:e8:16:d6:15:bb:5f:3b:77:
        48:b5:5b:d9:73:2e:50:c3:19:bd:c0:3a:2d:9c:48:96:4f:a2:
        15:62:24:6b:ae:77:4c:d6:b0:1a:4d:3a:a1:ab:18:1b:44:40:
        15:29:09:7a:3c:50:77:97:2f:31:ef:4e:82:3d:95:4d:ce:a7:
        7c:82:91:cb:7f:78:3d:27:18:d0:d9:a1:2d:77:f7:cc:09:55:
        7d:27:60:e6:17:1a:be:f8:4a:b1:8a:a0:c7:c7:90:f3:82:9d:
        58:d4:fa:14:49:76:16:ff:3c:81:96:c8:3a:1f:0e:26:f9:b5:
        03:c3:91:f6

34.198.47.19

Last Seen: 2024-04-13

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

604251835 | 2024-03-30T14:26:10.605780
80 / tcp

nginx1.18.0

-270097568 | 2024-04-13T10:33:26.000671
443 / tcp

Products

Pricing

Contact Us

34.198.47.19

Last Seen: 2024-04-13

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

604251835 | 2024-03-30T14:26:10.605780 80 / tcp

nginx1.18.0

-270097568 | 2024-04-13T10:33:26.000671 443 / tcp

Products

Pricing

Contact Us

604251835 | 2024-03-30T14:26:10.605780
80 / tcp

-270097568 | 2024-04-13T10:33:26.000671
443 / tcp