GeneralInformation

Hostnames	ec2-34-224-190-201.compute-1.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

WebTechnologies

CDN

Google Hosted Libraries

JavaScript frameworks

AngularJS1.6.7

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2020-7676	5.4angular.js prior to 1.8.0 allows cross site scripting. The regex-based input HTML replacement may turn sanitized code into unsanitized one. Wrapping "<option>" elements in "<select>" ones changes parsing behavior, leading to possibly unsanitizing code.
CVE-2019-10768	7.5In AngularJS before 1.7.9 the function `merge()` could be tricked into adding or modifying properties of `Object.prototype` using a `__proto__` payload.

OpenPorts

443 8080

-667856820 | 2024-05-02T17:55:41.051822

443 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 02 May 2024 17:55:41 GMT
Content-Type: application/json
Content-Length: 45
Connection: keep-alive
x-amzn-requestid: f6b3e37e-a59e-4fc1-9a72-e253eef1b5f1

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:36:a3:fc:10:65:fa:1e:70:7f:18:41:d2:8b:ce:b7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Jan 23 00:00:00 2024 GMT
            Not After : Feb 20 23:59:59 2025 GMT
        Subject: CN=*.us-east-1.es.amazonaws.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:af:62:4e:01:65:42:a5:1c:9b:2a:14:26:a8:ae:
                    46:af:bc:2f:e6:4e:55:88:99:d7:7d:b3:da:68:d7:
                    b1:05:b5:4c:23:cc:0b:c6:f1:0e:82:4c:d4:11:40:
                    28:8c:73:04:9e:9b:13:37:6b:3e:c7:cf:91:4c:2c:
                    0a:85:94:26:94:a8:59:d1:55:e1:8f:4e:c4:90:da:
                    b5:ce:e4:c7:a7:e8:9d:ee:23:03:0c:9e:3d:9e:93:
                    63:21:e3:6c:ef:b4:2e:97:75:f4:6e:b9:26:9c:55:
                    85:e3:3e:76:e3:b5:1a:a8:20:33:3b:d7:bd:a4:ce:
                    36:c0:17:c6:b2:f6:9b:e5:77:eb:75:1d:5e:d2:9c:
                    3d:c9:09:e5:3f:32:54:e8:cc:b3:16:93:d6:62:e9:
                    67:2b:f1:b1:6b:6e:13:94:d7:b5:d3:8c:6b:87:b6:
                    44:de:49:22:67:86:63:69:0c:19:05:07:e6:24:0e:
                    0f:7b:84:83:7d:05:37:f0:b0:85:e7:d5:fa:69:50:
                    16:5a:c7:ab:f4:86:65:a8:62:0a:d2:f7:9a:3e:65:
                    57:4a:62:7f:f5:b3:c1:b8:de:b2:e1:d4:b9:44:8a:
                    e5:59:2b:09:3f:d4:96:bd:ab:36:5d:94:da:d9:e0:
                    d5:4f:31:75:fc:ab:a8:89:0d:d1:2c:71:ed:ca:bb:
                    25:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                AF:9D:B8:F7:31:5B:E7:CF:B2:2C:60:C3:CC:4A:C3:AF:68:AD:C3:E1
            X509v3 Subject Alternative Name: 
                DNS:*.us-east-1.es.amazonaws.com, DNS:*.cell-02.us-east-1.es.amazonaws.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Jan 23 11:54:07.401 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BC:18:E9:02:AA:20:3A:D1:1B:18:46:
                                78:18:72:42:CC:B8:24:96:6D:90:9C:DA:0B:3A:DD:01:
                                58:C5:CC:91:C5:02:21:00:F2:F0:29:78:BD:BE:3E:8C:
                                9E:A0:8B:B0:60:06:AB:F8:F1:18:3F:EF:13:9D:7A:16:
                                DD:75:9B:21:5E:98:D1:93
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0:
                                C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C
                    Timestamp : Jan 23 11:54:07.442 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:F3:DF:74:8E:F2:49:3A:6B:24:DA:F3:
                                7D:AE:1B:9F:F1:31:29:AE:C8:11:52:16:3B:0B:D5:00:
                                E2:A5:00:F7:6F:02:20:74:64:B6:EF:38:B5:9F:EA:B8:
                                DC:CC:DE:29:6C:93:E5:76:C1:16:E8:4F:78:C2:A3:5B:
                                53:71:48:C6:D4:C8:EF
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Jan 23 11:54:07.307 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C7:83:58:D5:69:FD:CF:64:BB:95:36:
                                C9:91:B3:24:77:88:0E:4C:AF:9E:3B:06:AC:C3:AD:AD:
                                89:C8:50:0C:EF:02:21:00:99:0B:A5:CD:E5:02:5D:63:
                                28:CA:B2:3F:FC:E4:92:3E:BC:EB:41:99:8B:BB:3E:7E:
                                82:96:54:36:AB:B5:C5:C6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        57:74:59:81:63:03:47:e0:15:58:a3:70:3c:2f:80:c6:03:ee:
        3f:42:ea:7b:ef:35:d0:29:6d:94:68:00:e8:97:38:29:81:f5:
        b2:96:d8:8c:9e:d2:56:02:e5:ee:a6:36:94:b4:88:3d:eb:1e:
        47:fd:72:f3:60:e9:48:9d:8b:b9:21:ac:0f:56:a8:83:ce:1e:
        72:f2:dc:17:9e:ec:5b:19:aa:8d:a5:86:0d:78:38:ec:0a:c3:
        56:3b:f9:94:7a:63:e3:87:a3:35:fc:4b:c4:08:3c:23:2c:7a:
        5c:f7:6f:72:cc:0f:fa:5a:bd:3f:aa:96:1b:44:d0:f8:f7:46:
        9b:71:f4:33:7a:bb:f9:c7:06:db:6a:69:2d:55:df:3f:70:97:
        1e:22:f7:51:10:7d:a6:8e:67:3c:3f:54:70:df:33:d5:3c:b1:
        74:e9:05:3e:12:b1:84:e5:95:ae:78:51:a0:b8:15:26:a3:e6:
        2d:83:75:62:df:e1:3a:af:a2:7d:b3:cd:0c:c1:3d:7b:86:83:
        e5:77:5b:57:d1:32:9a:bb:84:fe:da:d5:fd:19:8e:5e:69:ae:
        8e:b4:f1:46:30:a3:bc:c3:0a:af:0e:5d:6c:43:49:2d:45:18:
        2a:1b:98:46:12:63:19:8c:8f:47:a3:7e:14:2f:ce:cc:5d:70:
        e2:f3:1e:55

-237192615 | 2024-04-11T20:27:30.505503

8080 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 11 Apr 2024 20:27:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
server-timing: intid;desc=c13230c9ed4b864f

34.224.190.201

Last Seen: 2024-05-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-667856820 | 2024-05-02T17:55:41.051822
443 / tcp

-237192615 | 2024-04-11T20:27:30.505503
8080 / tcp

nginx1.20.1

Products

Pricing

Contact Us

34.224.190.201

Last Seen: 2024-05-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-667856820 | 2024-05-02T17:55:41.051822 443 / tcp

-237192615 | 2024-04-11T20:27:30.505503 8080 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-667856820 | 2024-05-02T17:55:41.051822
443 / tcp

-237192615 | 2024-04-11T20:27:30.505503
8080 / tcp