GeneralInformation

Hostnames	53.199.186.35.bc.googleusercontent.com events-server-staging.eng.nianticlabs.com
Domains	googleusercontent.com nianticlabs.com
Cloud Provider	Google
Cloud Region	global
Country	United States
City	Kansas City
Organization	Google LLC
ISP	Google LLC
ASN	AS15169

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2023-36478

Eclipse Jetty provides a web server and servlet container. In versions 11.0.0 through 11.0.15, 10.0.0 through 10.0.15, and 9.0.0 through 9.4.52, an integer overflow in `MetaDataBuilder.checkSize` allows for HTTP/2 HPACK header values to exceed their size limit. `MetaDataBuilder.java` determines if a header name or value exceeds the size limit, and throws an exception if the limit is exceeded. However, when length is very large and huffman is true, the multiplication by 4 in line 295 will overflow, and length will become negative. `(_size+length)` will now be negative, and the check on line 296 will not be triggered. Furthermore, `MetaDataBuilder.checkSize` allows for user-entered HPACK header value sizes to be negative, potentially leading to a very large buffer allocation later on when the user-entered size is multiplied by 2. This means that if a user provides a negative length value (or, more precisely, a length value which, when multiplied by the 4/3 fudge factor, is negative), and this length value is a very large positive number when multiplied by 2, then the user can cause a very large buffer to be allocated on the server. Users of HTTP/2 can be impacted by a remote denial of service attack. The issue has been fixed in versions 11.0.16, 10.0.16, and 9.4.53. There are no known workarounds.

OpenPorts

80 443

449384047 | 2024-05-18T13:14:57.732064

443 / tcp

HTTP/1.1 403 Forbidden
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: text/html;charset=iso-8859-1
Content-Length: 450
Server: Jetty(9.4.52.v20230823)
Date: Sat, 18 May 2024 13:14:57 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            35:14:e1:b3:46:4a:a0:ff:10:9a:cf:18:da:65:96:c2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Google Trust Services LLC, CN=GTS CA 1D4
        Validity
            Not Before: May  2 16:56:50 2024 GMT
            Not After : Jul 31 17:50:04 2024 GMT
        Subject: CN=events-server-staging.eng.nianticlabs.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a1:62:42:9b:00:42:90:72:94:4d:3a:ab:fd:b1:
                    a1:08:c7:31:76:a1:b0:ff:4a:af:ed:35:1a:c2:54:
                    4c:42:77:2e:f4:ed:c6:c2:15:95:6a:8f:dd:8f:94:
                    01:a4:63:ed:91:52:37:b2:fe:e3:07:1f:9d:7d:5b:
                    63:75:42:86:c8:31:61:cd:01:35:b6:ec:3b:21:7a:
                    45:58:af:31:56:49:b5:6b:96:71:02:c4:e6:d5:83:
                    6b:2e:47:f5:1c:5f:cb:50:df:43:35:de:43:49:46:
                    98:a5:60:17:99:5c:74:cd:17:46:b6:b7:d8:08:48:
                    ad:7e:ec:47:b7:51:86:f7:26:22:83:77:0d:07:62:
                    27:45:9e:cc:8f:f0:58:d6:ce:ec:91:87:88:05:28:
                    a2:4f:60:17:2e:da:b0:79:0c:53:a5:bf:4b:20:f7:
                    07:d3:e3:3b:7d:5e:ae:f1:0e:48:8a:77:77:a9:01:
                    94:9f:f2:f2:c7:50:55:54:d6:1a:73:9f:29:e1:fa:
                    12:da:ad:0e:3a:0c:1e:7e:71:15:a2:54:ce:98:97:
                    2c:18:68:78:70:36:a3:2b:90:4e:7b:25:a4:8a:3b:
                    cc:7c:d8:19:a9:be:af:c9:8d:6c:61:09:f3:4a:b3:
                    0e:38:d8:c4:68:a1:ac:81:35:84:53:5c:c7:28:03:
                    be:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                99:90:A3:0F:12:BF:00:C8:4A:49:1A:80:99:57:9E:B2:A0:32:01:28
            X509v3 Authority Key Identifier: 
                25:E2:18:0E:B2:57:91:94:2A:E5:D4:5D:86:90:83:DE:53:B3:B8:92
            Authority Information Access: 
                OCSP - URI:http://ocsp.pki.goog/s/gts1d4/EkC8PPimxBI
                CA Issuers - URI:http://pki.goog/repo/certs/gts1d4.der
            X509v3 Subject Alternative Name: 
                DNS:events-server-staging.eng.nianticlabs.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.11129.2.5.3
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crls.pki.goog/gts1d4/TVf9Le0ssTU.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : May  2 17:56:51.356 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EB:D2:72:18:E7:A5:13:C3:6C:A8:BA:
                                28:F7:5D:E5:CE:FD:46:85:BC:F7:B4:62:2B:2C:51:86:
                                7F:7B:BA:99:32:02:21:00:B6:8F:59:3A:29:E7:07:F1:
                                F5:02:9D:81:36:62:80:0F:3D:13:53:C1:49:1A:DF:00:
                                81:7B:6B:74:EE:5F:C7:AE
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May  2 17:56:51.350 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:95:9B:49:98:F1:F8:22:43:2C:D4:0F:
                                B8:CC:4F:59:A5:CE:C9:97:0D:8D:40:29:1E:8A:A9:DC:
                                EF:E5:5D:55:D7:02:20:0D:58:74:0D:74:02:7A:9F:57:
                                99:4E:4D:F0:15:CF:18:99:EC:2E:3C:5F:3D:90:18:9B:
                                1C:70:EA:2F:42:A6:37
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        28:44:c7:ea:39:79:66:3b:ea:56:c4:05:e1:4c:25:8e:49:13:
        cf:07:6c:13:ff:d0:63:76:b0:50:98:d7:dc:92:93:9c:a5:10:
        31:e5:ac:e9:d9:2c:ed:eb:dc:84:a9:fe:f7:c2:21:40:31:0f:
        3d:18:a0:47:8c:f1:79:43:43:f4:5d:fa:6c:67:35:14:74:48:
        b5:77:83:cf:f8:82:a4:d3:19:ff:ba:d8:1f:09:99:2e:b8:b6:
        1b:25:07:75:f4:b5:94:55:34:61:89:9f:e9:5d:85:24:a8:fa:
        51:f8:5b:4a:6a:f2:d9:69:7d:35:f4:9e:2e:69:3a:83:65:0e:
        dd:1c:dc:74:4d:bf:2a:b7:41:67:69:ce:58:e5:e1:a3:4e:11:
        95:9f:43:0e:4c:75:2e:45:eb:f3:fa:df:62:ef:98:11:39:c6:
        86:10:eb:73:94:1b:75:f9:d2:55:b1:83:db:fb:6e:dc:13:b0:
        44:97:41:fc:ff:6f:b9:45:79:5a:0f:63:04:39:08:cc:c8:9b:
        af:6d:de:82:c0:d4:f5:7b:d3:73:18:66:cb:45:e7:d0:d0:fb:
        69:69:f6:5f:ea:22:8c:83:a7:a2:e3:0d:d4:f6:5f:8c:64:80:
        98:db:be:db:24:02:3a:7b:3f:c6:3a:dc:dc:bb:4f:57:4c:32:
        83:c4:57:79

35.186.199.53

Last Seen: 2024-05-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

449384047 | 2024-05-18T13:14:57.732064
443 / tcp

Jetty9.4.52.v20230823

Products

Pricing

Contact Us

35.186.199.53

Last Seen: 2024-05-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

449384047 | 2024-05-18T13:14:57.732064 443 / tcp

Jetty9.4.52.v20230823

Products

Pricing

Contact Us

449384047 | 2024-05-18T13:14:57.732064
443 / tcp