GeneralInformation

Hostnames	ec2-35-156-138-184.eu-central-1.compute.amazonaws.com proxy.secure-atoll-5410.herokuspace.com
Domains	amazonaws.com herokuspace.com
Cloud Provider	Amazon
Cloud Region	eu-central-1
Cloud Service	EC2
Country	Germany
City	Frankfurt am Main
Organization	A100 ROW GmbH
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

631619146 | 2024-04-27T13:21:33.903362

80 / tcp

HTTP/1.1 200 OK
Date: Sat, 27 Apr 2024 13:21:33 GMT
Content-Type: text/html
Content-Length: 559
Connection: keep-alive
Server: nginx/1.18.0
Last-Modified: Fri, 08 Apr 2022 15:37:49 GMT
ETag: "625056cd-22f"
Accept-Ranges: bytes

806484921 | 2024-04-18T00:38:01.639036

443 / tcp

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=31536000
Date: Thu, 18 Apr 2024 00:38:01 GMT
Content-Length: 3
Content-Type: text/plain; charset=utf-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1155316384 (0x44dcbaa0)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=California, L=San Francisco, O=Heroku, CN=spacemgr
        Validity
            Not Before: Apr 10 15:26:57 2024 GMT
            Not After : Apr 10 15:26:57 2027 GMT
        Subject: C=US, ST=California, L=San Francisco, O=Heroku, CN=proxy.secure-atoll-5410.herokuspace.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f5:3e:09:e0:67:da:06:a0:68:57:4e:8f:ca:5b:
                    43:1d:06:b7:ac:72:81:d8:27:48:90:d9:0c:ee:59:
                    fb:e9:33:c6:48:f0:93:38:e2:c7:e8:ff:27:4d:a1:
                    4f:b5:06:c7:3b:98:d5:48:2b:e6:65:99:20:11:2e:
                    c0:9c:c9:2d:4a:77:01:be:c9:a4:0c:dc:b8:11:ed:
                    89:26:66:96:a7:9a:a3:53:81:31:43:f2:b2:b0:68:
                    08:3e:8c:b0:d0:d9:a7:ab:f6:4d:f5:c7:6a:25:10:
                    0f:5e:09:11:19:69:f0:69:1f:d7:41:aa:02:5e:06:
                    5b:db:51:39:6e:1f:d5:0c:f3:ae:87:19:07:05:57:
                    5f:30:dd:99:a2:24:54:43:20:6e:61:39:5f:99:ac:
                    ad:1c:77:82:53:94:5b:f9:4b:48:33:f1:e4:e0:bf:
                    be:c7:ea:5a:77:a5:fc:28:f8:fa:b7:40:d2:bf:b1:
                    8d:4f:ba:23:ec:96:32:f4:66:1d:f9:93:86:00:ee:
                    e6:00:f4:04:ba:91:b6:a8:b8:36:f1:52:77:b6:c0:
                    ba:3c:14:be:8a:66:5d:26:eb:6a:0c:88:9d:00:2e:
                    bf:54:8d:d1:a2:cb:07:43:4c:93:de:1e:10:ea:f7:
                    e6:3e:ea:0a:1d:1a:24:c5:b1:cf:65:b0:09:6e:30:
                    ff:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: critical
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name: 
                DNS:proxy.secure-atoll-5410.herokuspace.com
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4f:eb:23:f6:9b:d0:0c:ea:fb:7e:ca:6c:62:ff:b4:69:0e:4b:
        af:4a:45:29:c0:1d:c8:3f:84:99:22:5a:4e:1a:1b:d2:c5:dd:
        d9:80:86:bd:ff:5e:52:36:d4:7a:39:45:7f:26:88:07:33:65:
        9d:da:4c:8e:54:51:0a:34:e6:06:40:b1:e0:be:f7:58:1d:24:
        0f:a0:40:2d:e3:19:11:f6:64:ca:24:31:e1:05:dd:b5:b5:d5:
        8a:83:57:de:fc:65:e6:12:4b:1a:2c:47:d3:79:5c:d7:56:49:
        f8:79:77:20:66:b0:3c:84:c1:26:37:16:7f:d0:74:77:7c:79:
        ae:04:ba:b9:84:c1:a3:84:23:1f:4d:59:b0:e8:f1:4c:c3:6a:
        26:41:da:51:ac:73:94:16:00:c7:05:f5:8a:76:4d:c7:a1:74:
        c0:48:cb:75:1d:b1:69:52:d9:45:05:dc:40:f3:d5:a0:ab:8d:
        02:a8:7b:f2:40:2f:20:2b:12:27:c1:ff:47:9e:02:bd:43:17:
        51:a0:82:19:b4:40:fb:f8:89:d6:9c:e2:d3:4d:93:42:8f:05:
        b9:38:16:97:65:22:8a:9d:52:76:0d:c3:6b:50:3b:bc:6c:51:
        69:18:de:5a:f9:ca:ae:3a:e8:32:6b:f2:91:02:b9:92:9d:1c:
        93:67:cf:a8

35.156.138.184

Last Seen: 2024-04-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

631619146 | 2024-04-27T13:21:33.903362
80 / tcp

nginx1.18.0

806484921 | 2024-04-18T00:38:01.639036
443 / tcp

Products

Pricing

Contact Us

35.156.138.184

Last Seen: 2024-04-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

631619146 | 2024-04-27T13:21:33.903362 80 / tcp

nginx1.18.0

806484921 | 2024-04-18T00:38:01.639036 443 / tcp

Products

Pricing

Contact Us

631619146 | 2024-04-27T13:21:33.903362
80 / tcp

806484921 | 2024-04-18T00:38:01.639036
443 / tcp