GeneralInformation

Hostnames	ec2-52-210-134-168.eu-west-1.compute.amazonaws.com prd.api.max-next.com prd.api.blue.max-tests.com prd.api.orange.max-tests.com prd.api.yellow.max-tests.com prd.api.max.com
Domains	amazonaws.com max-next.com max-tests.com max.com
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

443 2000 5000 5001

1283556915 | 2024-04-24T00:02:03.745785

443 / tcp

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 00:02:03 GMT
Content-Type: text/html
Content-Length: 3815
Connection: keep-alive
Server: nginx/1.18.0
Last-Modified: Fri, 25 Mar 2022 19:24:21 GMT
ETag: "623e16e5-ee7"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:6e:cd:a0:0a:16:8f:76:97:5d:94:c5:2a:15:f6:71
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Apr 15 00:00:00 2024 GMT
            Not After : May 13 23:59:59 2025 GMT
        Subject: CN=*.flexserve.ch
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e6:94:c9:35:09:90:28:db:24:69:83:30:cc:43:
                    46:f0:de:96:91:ff:13:a4:61:86:26:b1:4d:4a:e5:
                    2a:82:b7:b0:b3:ff:3f:8e:7f:33:bd:d2:d2:c7:fa:
                    58:37:8b:bc:ed:a5:75:d0:78:a2:83:be:11:07:f9:
                    80:f4:40:fa:97:27:b4:65:7a:51:5d:68:98:0c:73:
                    19:92:17:f1:69:9a:17:63:69:92:11:8f:cc:24:98:
                    de:47:53:fe:aa:0a:6e:57:bb:ba:41:3b:1a:8e:76:
                    28:ea:8a:39:d2:f6:80:3f:1a:95:c4:7f:84:a0:17:
                    e5:4a:81:3e:d3:e6:7d:d7:ca:2b:0a:77:e8:c2:45:
                    66:a8:eb:2c:bb:f7:0c:fc:9c:a4:ca:8a:b9:31:a5:
                    ee:77:30:49:34:f3:e9:6c:78:71:b0:f9:d2:df:52:
                    b0:69:78:47:75:45:52:34:04:94:88:64:6a:0d:a3:
                    7b:c3:00:16:04:15:c4:98:c3:80:03:65:ee:24:6b:
                    8e:8a:34:f1:74:8f:ad:4b:a4:c4:cc:02:4c:90:c3:
                    1e:39:17:3b:a1:60:8f:6e:3c:44:b0:04:a4:d5:b1:
                    9f:c9:a7:80:f4:af:72:1e:33:3e:df:99:61:e0:e0:
                    04:67:8e:50:d9:8a:e9:35:5c:3f:cd:25:b7:97:e7:
                    5a:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                B3:0B:FD:47:12:83:4B:0B:F0:61:16:CF:C6:D4:8A:DA:C1:A2:DD:6B
            X509v3 Subject Alternative Name: 
                DNS:*.flexserve.ch
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Apr 15 10:34:25.844 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AB:AE:AB:95:3E:8A:AB:1B:0B:15:BD:
                                A3:35:E4:94:9A:5E:BF:9E:58:01:1D:B6:8F:E0:6D:BF:
                                AC:4B:77:61:EC:02:20:4C:39:3A:17:14:24:C7:2E:F7:
                                5D:89:40:E1:3A:37:83:05:0E:88:D6:FD:18:47:81:F3:
                                9A:98:5E:1A:AC:00:81
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0:
                                C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C
                    Timestamp : Apr 15 10:34:25.947 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:59:83:E1:24:0F:14:78:17:FC:F5:BC:45:
                                0A:40:12:F8:D1:0F:93:74:34:F0:38:3A:56:75:16:4B:
                                0A:FF:04:24:02:20:07:72:B8:9B:EB:E1:57:E2:D9:D9:
                                30:69:43:63:47:EC:63:DD:87:1B:13:EE:EA:26:F6:48:
                                E5:89:9E:AC:37:EA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Apr 15 10:34:25.838 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D0:89:F4:DB:F7:F7:5B:5D:A8:47:9E:
                                B7:AA:56:55:C5:B5:B0:FB:75:8E:B2:10:E0:19:B0:A2:
                                05:49:9E:CC:FE:02:21:00:D8:CD:7C:10:0D:08:56:21:
                                78:28:06:EE:E8:C3:4D:08:E8:BB:94:4D:05:73:B1:07:
                                C9:0C:B6:7C:A4:32:D8:48
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3a:06:22:45:48:84:e1:6c:77:92:db:c2:70:d6:42:34:5e:d0:
        5b:f7:43:a8:67:85:c4:07:b7:c0:5f:35:d2:68:f4:19:f2:a5:
        97:94:15:1b:6b:3a:75:f4:bd:e3:c2:f5:0d:69:9f:2e:2c:61:
        d7:dd:8d:d2:19:84:d3:f1:0d:b4:68:be:2d:4d:82:6b:6f:ce:
        7e:9e:dd:78:9e:2b:27:da:22:64:55:fa:a1:7f:e1:61:c8:b6:
        0a:23:a6:bb:4b:35:02:0e:71:06:44:c4:42:68:73:5e:5c:fd:
        23:5a:ea:e5:0b:5e:b1:7d:c9:e9:ee:ee:40:66:15:9f:a0:cb:
        89:74:6c:21:a1:b0:72:6e:dd:1b:f4:37:e0:05:bf:cc:d1:1e:
        0d:7b:03:e5:77:ac:18:51:62:3a:77:ac:99:da:40:5b:87:b6:
        92:83:68:a8:98:2a:80:34:b8:d8:43:5f:8f:e7:05:6f:27:ce:
        47:f2:78:d2:b3:d3:68:c7:b6:80:5c:fe:52:11:7c:66:f6:df:
        43:ac:95:94:67:71:b4:13:eb:65:14:95:29:7a:02:e7:13:a1:
        bb:47:de:fd:4f:c7:ca:f8:49:a5:e2:b8:55:e3:52:56:50:22:
        93:2e:5c:d7:89:90:29:47:5e:e2:8b:5c:e2:66:fd:cc:cc:e3:
        0e:a3:1f:d7

-712507572 | 2024-04-10T21:05:49.909711

2000 / tcp

HTTP/1.1 400 Bad Request
Server: awselb/2.0
Date: Wed, 10 Apr 2024 21:05:49 GMT
Content-Type: text/html
Content-Length: 122
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
</body>
</html>

1102849523 | 2024-04-15T13:28:13.422111

5000 / tcp

HTTP/1.1 400 Bad Request
Server: awselb/2.0
Date: Mon, 15 Apr 2024 13:28:13 GMT
Content-Type: text/html
Content-Length: 622
Connection: close

1678375448 | 2024-04-13T18:56:54.768988

5001 / tcp

HTTP/1.1 404 Not Found
Date: Sat, 13 Apr 2024 18:56:53 GMT
Content-Length: 0
Connection: keep-alive
vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0a:1e:af:de:65:ac:86:32:5e:b4:23:4f:f3:db:5b:d1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Dec 12 00:00:00 2023 GMT
            Not After : Jan  9 23:59:59 2025 GMT
        Subject: CN=*.prd.api.discomax.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d7:ca:92:9d:89:1b:76:34:02:3b:bf:6e:e8:16:
                    90:02:54:43:f5:e5:f4:c4:0e:04:30:d9:77:0a:4d:
                    15:69:94:65:c7:1b:e6:82:92:a6:bc:08:79:07:29:
                    93:a2:30:0c:40:04:ab:01:0d:71:07:b0:08:4b:7a:
                    30:d5:6d:41:49:38:5e:52:9a:1f:76:f2:66:5e:21:
                    98:d2:6c:13:07:38:7c:46:8a:25:92:11:42:9f:a8:
                    c1:e9:6c:72:25:ca:58:cf:55:94:2e:c9:26:c3:b7:
                    ed:1f:fb:57:1b:69:e6:90:cc:17:63:2c:89:d6:25:
                    85:d0:98:58:a9:0f:11:18:ff:28:ef:1a:33:46:49:
                    8d:09:90:50:6a:93:ce:df:40:db:18:15:54:e2:15:
                    3d:31:86:b1:4f:37:d2:e6:24:6c:80:c3:f7:de:bf:
                    04:39:e1:44:08:7e:6b:b3:bd:a4:53:f6:40:bb:c7:
                    95:c8:e5:dd:af:65:63:0a:ce:e2:dd:1d:a8:a0:31:
                    02:98:4d:80:31:b2:d4:5e:42:f6:76:b8:2f:0c:da:
                    75:ba:35:fc:b2:fa:07:7b:c3:02:c9:08:95:81:d8:
                    68:44:a7:11:d5:a8:0d:ee:f8:25:9d:e6:2d:ef:b6:
                    0c:c0:77:f9:8c:1b:15:26:82:e7:34:6b:e8:f8:35:
                    49:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                82:48:B1:70:98:AF:24:0B:8F:09:05:BA:B8:E9:71:F9:E0:F3:B5:70
            X509v3 Subject Alternative Name: 
                DNS:*.prd.api.discomax.com, DNS:*.euw1.prd.api.discomax.com, DNS:*.prd.api.max-next.com, DNS:*.dev-vod.h264.io, DNS:*.prd.api.blue.max-tests.com, DNS:prd.api.max-next.com, DNS:prd.api.orange.max-tests.com, DNS:prd.api.yellow.max-tests.com, DNS:*.stage-vod.h264.io, DNS:*.prd.api.max.com, DNS:prd.api.blue.max-tests.com, DNS:*.prod-vod.h264.io, DNS:prd.api.max.com, DNS:*.prod.api.discomax.com, DNS:*.prd.api.orange.max-tests.com, DNS:*.prd.api.yellow.max-tests.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Dec 12 10:23:08.375 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:09:36:64:0C:51:58:29:D8:B6:FD:1C:AA:
                                77:17:49:E9:B3:21:78:F4:4E:A7:B5:50:CD:91:FB:F7:
                                23:43:28:BE:02:21:00:96:47:F9:12:39:DC:28:3B:1E:
                                35:54:8E:47:0E:E5:A6:DB:58:69:BE:EA:26:BD:B4:DE:
                                6C:8C:00:D1:F3:C0:3A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Dec 12 10:23:08.444 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B5:5D:45:01:A1:39:62:B8:7F:CD:2A:
                                68:39:75:D1:8D:13:03:32:D4:C3:CF:C5:FA:AB:C6:DE:
                                E5:B4:20:64:36:02:21:00:DE:C7:4A:91:04:87:0D:A9:
                                18:5E:60:3B:02:34:5E:F7:11:75:57:74:3D:86:B7:54:
                                98:80:0F:92:94:EB:DE:DB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Dec 12 10:23:08.426 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D9:E8:D2:5A:D4:60:E5:64:FA:C0:89:
                                19:D9:79:DF:53:AF:B8:F5:6B:EA:7A:B2:9C:29:CE:03:
                                19:E3:12:DC:FF:02:20:5C:4D:04:9A:FF:E6:63:39:3F:
                                73:BF:D6:7D:87:E3:32:92:FE:A3:F4:57:DE:AD:14:43:
                                7F:4D:23:64:7B:5F:34
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        48:05:10:59:7e:a2:af:49:68:da:1e:ad:16:f8:fa:9f:0b:36:
        b5:4f:62:5f:c9:bd:db:f2:fd:a6:3f:ac:87:60:f9:14:79:ac:
        89:9a:c0:4a:8b:cd:26:b7:75:2d:f5:ed:35:54:8e:4b:37:44:
        16:91:b5:6a:1d:22:db:9d:53:49:cd:f4:4c:cb:98:1d:7c:38:
        4b:51:47:86:c7:fe:e2:ee:5d:b8:9b:98:ca:c9:f3:29:af:62:
        40:f2:93:48:68:39:90:81:67:28:98:8a:fc:af:b5:68:2a:9e:
        03:33:74:4d:c6:93:c8:90:27:60:af:09:07:82:27:89:45:d9:
        47:c5:3c:6c:3a:47:95:b5:d7:ae:44:11:54:44:a9:7d:16:35:
        d4:b3:c4:0c:54:6f:47:92:03:e2:e3:bd:98:af:2f:07:fb:72:
        0f:13:bb:7a:2d:dd:b8:ba:3e:49:74:62:0a:eb:ec:25:29:90:
        5c:1c:0e:ba:29:80:d6:b5:b5:48:ac:19:65:3d:ca:d7:17:68:
        d5:12:c5:c7:6f:ba:2b:93:60:31:31:cc:29:83:ca:17:d1:5e:
        7c:31:28:aa:25:c7:58:3d:01:06:aa:80:8e:3f:ff:2c:d0:d5:
        06:5c:ec:87:ea:9f:c2:74:b5:fe:31:4c:4d:c4:2b:97:75:7d:
        8f:a1:62:65

52.210.134.168

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1283556915 | 2024-04-24T00:02:03.745785
443 / tcp

nginx1.18.0

-712507572 | 2024-04-10T21:05:49.909711
2000 / tcp

1102849523 | 2024-04-15T13:28:13.422111
5000 / tcp

AWS ELB2.0

1678375448 | 2024-04-13T18:56:54.768988
5001 / tcp

Products

Pricing

Contact Us

52.210.134.168

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1283556915 | 2024-04-24T00:02:03.745785 443 / tcp

nginx1.18.0

-712507572 | 2024-04-10T21:05:49.909711 2000 / tcp

1102849523 | 2024-04-15T13:28:13.422111 5000 / tcp

AWS ELB2.0

1678375448 | 2024-04-13T18:56:54.768988 5001 / tcp

Products

Pricing

Contact Us

1283556915 | 2024-04-24T00:02:03.745785
443 / tcp

-712507572 | 2024-04-10T21:05:49.909711
2000 / tcp

1102849523 | 2024-04-15T13:28:13.422111
5000 / tcp

1678375448 | 2024-04-13T18:56:54.768988
5001 / tcp