Hostnames |
ec2-52-210-134-168.eu-west-1.compute.amazonaws.com prd.api.max-next.com prd.api.blue.max-tests.com prd.api.orange.max-tests.com prd.api.yellow.max-tests.com prd.api.max.com |
Domains | amazonaws.com max-next.com max-tests.com max.com |
Cloud Provider | Amazon |
Cloud Region | eu-west-1 |
Cloud Service | EC2 |
Country | Ireland |
City | Dublin |
Organization | Amazon Data Services Ireland Limited |
ISP | Amazon.com, Inc. |
ASN | AS16509 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
1283556915 | 2024-04-24T00:02:03.745785443 / tcp
HTTP/1.1 200 OK Date: Wed, 24 Apr 2024 00:02:03 GMT Content-Type: text/html Content-Length: 3815 Connection: keep-alive Server: nginx/1.18.0 Last-Modified: Fri, 25 Mar 2022 19:24:21 GMT ETag: "623e16e5-ee7" Accept-Ranges: bytes
Certificate: Data: Version: 3 (0x2) Serial Number: 0d:6e:cd:a0:0a:16:8f:76:97:5d:94:c5:2a:15:f6:71 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 13 23:59:59 2025 GMT Subject: CN=*.flexserve.ch Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:e6:94:c9:35:09:90:28:db:24:69:83:30:cc:43: 46:f0:de:96:91:ff:13:a4:61:86:26:b1:4d:4a:e5: 2a:82:b7:b0:b3:ff:3f:8e:7f:33:bd:d2:d2:c7:fa: 58:37:8b:bc:ed:a5:75:d0:78:a2:83:be:11:07:f9: 80:f4:40:fa:97:27:b4:65:7a:51:5d:68:98:0c:73: 19:92:17:f1:69:9a:17:63:69:92:11:8f:cc:24:98: de:47:53:fe:aa:0a:6e:57:bb:ba:41:3b:1a:8e:76: 28:ea:8a:39:d2:f6:80:3f:1a:95:c4:7f:84:a0:17: e5:4a:81:3e:d3:e6:7d:d7:ca:2b:0a:77:e8:c2:45: 66:a8:eb:2c:bb:f7:0c:fc:9c:a4:ca:8a:b9:31:a5: ee:77:30:49:34:f3:e9:6c:78:71:b0:f9:d2:df:52: b0:69:78:47:75:45:52:34:04:94:88:64:6a:0d:a3: 7b:c3:00:16:04:15:c4:98:c3:80:03:65:ee:24:6b: 8e:8a:34:f1:74:8f:ad:4b:a4:c4:cc:02:4c:90:c3: 1e:39:17:3b:a1:60:8f:6e:3c:44:b0:04:a4:d5:b1: 9f:c9:a7:80:f4:af:72:1e:33:3e:df:99:61:e0:e0: 04:67:8e:50:d9:8a:e9:35:5c:3f:cd:25:b7:97:e7: 5a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02 X509v3 Subject Key Identifier: B3:0B:FD:47:12:83:4B:0B:F0:61:16:CF:C6:D4:8A:DA:C1:A2:DD:6B X509v3 Subject Alternative Name: DNS:*.flexserve.ch X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 CRL Distribution Points: Full Name: URI:http://crl.r2m03.amazontrust.com/r2m03.crl Authority Information Access: OCSP - URI:http://ocsp.r2m03.amazontrust.com CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer X509v3 Basic Constraints: critical CA:FALSE CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Apr 15 10:34:25.844 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:AB:AE:AB:95:3E:8A:AB:1B:0B:15:BD: A3:35:E4:94:9A:5E:BF:9E:58:01:1D:B6:8F:E0:6D:BF: AC:4B:77:61:EC:02:20:4C:39:3A:17:14:24:C7:2E:F7: 5D:89:40:E1:3A:37:83:05:0E:88:D6:FD:18:47:81:F3: 9A:98:5E:1A:AC:00:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0: C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C Timestamp : Apr 15 10:34:25.947 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:59:83:E1:24:0F:14:78:17:FC:F5:BC:45: 0A:40:12:F8:D1:0F:93:74:34:F0:38:3A:56:75:16:4B: 0A:FF:04:24:02:20:07:72:B8:9B:EB:E1:57:E2:D9:D9: 30:69:43:63:47:EC:63:DD:87:1B:13:EE:EA:26:F6:48: E5:89:9E:AC:37:EA Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0: 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8 Timestamp : Apr 15 10:34:25.838 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:D0:89:F4:DB:F7:F7:5B:5D:A8:47:9E: B7:AA:56:55:C5:B5:B0:FB:75:8E:B2:10:E0:19:B0:A2: 05:49:9E:CC:FE:02:21:00:D8:CD:7C:10:0D:08:56:21: 78:28:06:EE:E8:C3:4D:08:E8:BB:94:4D:05:73:B1:07: C9:0C:B6:7C:A4:32:D8:48 Signature Algorithm: sha256WithRSAEncryption Signature Value: 3a:06:22:45:48:84:e1:6c:77:92:db:c2:70:d6:42:34:5e:d0: 5b:f7:43:a8:67:85:c4:07:b7:c0:5f:35:d2:68:f4:19:f2:a5: 97:94:15:1b:6b:3a:75:f4:bd:e3:c2:f5:0d:69:9f:2e:2c:61: d7:dd:8d:d2:19:84:d3:f1:0d:b4:68:be:2d:4d:82:6b:6f:ce: 7e:9e:dd:78:9e:2b:27:da:22:64:55:fa:a1:7f:e1:61:c8:b6: 0a:23:a6:bb:4b:35:02:0e:71:06:44:c4:42:68:73:5e:5c:fd: 23:5a:ea:e5:0b:5e:b1:7d:c9:e9:ee:ee:40:66:15:9f:a0:cb: 89:74:6c:21:a1:b0:72:6e:dd:1b:f4:37:e0:05:bf:cc:d1:1e: 0d:7b:03:e5:77:ac:18:51:62:3a:77:ac:99:da:40:5b:87:b6: 92:83:68:a8:98:2a:80:34:b8:d8:43:5f:8f:e7:05:6f:27:ce: 47:f2:78:d2:b3:d3:68:c7:b6:80:5c:fe:52:11:7c:66:f6:df: 43:ac:95:94:67:71:b4:13:eb:65:14:95:29:7a:02:e7:13:a1: bb:47:de:fd:4f:c7:ca:f8:49:a5:e2:b8:55:e3:52:56:50:22: 93:2e:5c:d7:89:90:29:47:5e:e2:8b:5c:e2:66:fd:cc:cc:e3: 0e:a3:1f:d7
-712507572 | 2024-04-10T21:05:49.9097112000 / tcp
HTTP/1.1 400 Bad Request Server: awselb/2.0 Date: Wed, 10 Apr 2024 21:05:49 GMT Content-Type: text/html Content-Length: 122 Connection: close <html> <head><title>400 Bad Request</title></head> <body> <center><h1>400 Bad Request</h1></center> </body> </html>
1102849523 | 2024-04-15T13:28:13.4221115000 / tcp
HTTP/1.1 400 Bad Request Server: awselb/2.0 Date: Mon, 15 Apr 2024 13:28:13 GMT Content-Type: text/html Content-Length: 622 Connection: close
1678375448 | 2024-04-13T18:56:54.7689885001 / tcp
HTTP/1.1 404 Not Found Date: Sat, 13 Apr 2024 18:56:53 GMT Content-Length: 0 Connection: keep-alive vary: Accept-Encoding
Certificate: Data: Version: 3 (0x2) Serial Number: 0a:1e:af:de:65:ac:86:32:5e:b4:23:4f:f3:db:5b:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03 Validity Not Before: Dec 12 00:00:00 2023 GMT Not After : Jan 9 23:59:59 2025 GMT Subject: CN=*.prd.api.discomax.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:d7:ca:92:9d:89:1b:76:34:02:3b:bf:6e:e8:16: 90:02:54:43:f5:e5:f4:c4:0e:04:30:d9:77:0a:4d: 15:69:94:65:c7:1b:e6:82:92:a6:bc:08:79:07:29: 93:a2:30:0c:40:04:ab:01:0d:71:07:b0:08:4b:7a: 30:d5:6d:41:49:38:5e:52:9a:1f:76:f2:66:5e:21: 98:d2:6c:13:07:38:7c:46:8a:25:92:11:42:9f:a8: c1:e9:6c:72:25:ca:58:cf:55:94:2e:c9:26:c3:b7: ed:1f:fb:57:1b:69:e6:90:cc:17:63:2c:89:d6:25: 85:d0:98:58:a9:0f:11:18:ff:28:ef:1a:33:46:49: 8d:09:90:50:6a:93:ce:df:40:db:18:15:54:e2:15: 3d:31:86:b1:4f:37:d2:e6:24:6c:80:c3:f7:de:bf: 04:39:e1:44:08:7e:6b:b3:bd:a4:53:f6:40:bb:c7: 95:c8:e5:dd:af:65:63:0a:ce:e2:dd:1d:a8:a0:31: 02:98:4d:80:31:b2:d4:5e:42:f6:76:b8:2f:0c:da: 75:ba:35:fc:b2:fa:07:7b:c3:02:c9:08:95:81:d8: 68:44:a7:11:d5:a8:0d:ee:f8:25:9d:e6:2d:ef:b6: 0c:c0:77:f9:8c:1b:15:26:82:e7:34:6b:e8:f8:35: 49:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02 X509v3 Subject Key Identifier: 82:48:B1:70:98:AF:24:0B:8F:09:05:BA:B8:E9:71:F9:E0:F3:B5:70 X509v3 Subject Alternative Name: DNS:*.prd.api.discomax.com, DNS:*.euw1.prd.api.discomax.com, DNS:*.prd.api.max-next.com, DNS:*.dev-vod.h264.io, DNS:*.prd.api.blue.max-tests.com, DNS:prd.api.max-next.com, DNS:prd.api.orange.max-tests.com, DNS:prd.api.yellow.max-tests.com, DNS:*.stage-vod.h264.io, DNS:*.prd.api.max.com, DNS:prd.api.blue.max-tests.com, DNS:*.prod-vod.h264.io, DNS:prd.api.max.com, DNS:*.prod.api.discomax.com, DNS:*.prd.api.orange.max-tests.com, DNS:*.prd.api.yellow.max-tests.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 CRL Distribution Points: Full Name: URI:http://crl.r2m03.amazontrust.com/r2m03.crl Authority Information Access: OCSP - URI:http://ocsp.r2m03.amazontrust.com CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer X509v3 Basic Constraints: critical CA:FALSE CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Dec 12 10:23:08.375 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:09:36:64:0C:51:58:29:D8:B6:FD:1C:AA: 77:17:49:E9:B3:21:78:F4:4E:A7:B5:50:CD:91:FB:F7: 23:43:28:BE:02:21:00:96:47:F9:12:39:DC:28:3B:1E: 35:54:8E:47:0E:E5:A6:DB:58:69:BE:EA:26:BD:B4:DE: 6C:8C:00:D1:F3:C0:3A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Dec 12 10:23:08.444 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B5:5D:45:01:A1:39:62:B8:7F:CD:2A: 68:39:75:D1:8D:13:03:32:D4:C3:CF:C5:FA:AB:C6:DE: E5:B4:20:64:36:02:21:00:DE:C7:4A:91:04:87:0D:A9: 18:5E:60:3B:02:34:5E:F7:11:75:57:74:3D:86:B7:54: 98:80:0F:92:94:EB:DE:DB Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0: 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8 Timestamp : Dec 12 10:23:08.426 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:D9:E8:D2:5A:D4:60:E5:64:FA:C0:89: 19:D9:79:DF:53:AF:B8:F5:6B:EA:7A:B2:9C:29:CE:03: 19:E3:12:DC:FF:02:20:5C:4D:04:9A:FF:E6:63:39:3F: 73:BF:D6:7D:87:E3:32:92:FE:A3:F4:57:DE:AD:14:43: 7F:4D:23:64:7B:5F:34 Signature Algorithm: sha256WithRSAEncryption Signature Value: 48:05:10:59:7e:a2:af:49:68:da:1e:ad:16:f8:fa:9f:0b:36: b5:4f:62:5f:c9:bd:db:f2:fd:a6:3f:ac:87:60:f9:14:79:ac: 89:9a:c0:4a:8b:cd:26:b7:75:2d:f5:ed:35:54:8e:4b:37:44: 16:91:b5:6a:1d:22:db:9d:53:49:cd:f4:4c:cb:98:1d:7c:38: 4b:51:47:86:c7:fe:e2:ee:5d:b8:9b:98:ca:c9:f3:29:af:62: 40:f2:93:48:68:39:90:81:67:28:98:8a:fc:af:b5:68:2a:9e: 03:33:74:4d:c6:93:c8:90:27:60:af:09:07:82:27:89:45:d9: 47:c5:3c:6c:3a:47:95:b5:d7:ae:44:11:54:44:a9:7d:16:35: d4:b3:c4:0c:54:6f:47:92:03:e2:e3:bd:98:af:2f:07:fb:72: 0f:13:bb:7a:2d:dd:b8:ba:3e:49:74:62:0a:eb:ec:25:29:90: 5c:1c:0e:ba:29:80:d6:b5:b5:48:ac:19:65:3d:ca:d7:17:68: d5:12:c5:c7:6f:ba:2b:93:60:31:31:cc:29:83:ca:17:d1:5e: 7c:31:28:aa:25:c7:58:3d:01:06:aa:80:8e:3f:ff:2c:d0:d5: 06:5c:ec:87:ea:9f:c2:74:b5:fe:31:4c:4d:c4:2b:97:75:7d: 8f:a1:62:65