GeneralInformation

Hostnames	ec2-52-211-100-164.eu-west-1.compute.amazonaws.com apic2.csprep.bayard.host
Domains	amazonaws.com bayard.host
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

293410365 | 2024-04-15T12:37:21.977068

80 / tcp

HTTP/1.1 503 Service Temporarily Unavailable
Server: awselb/2.0
Date: Mon, 15 Apr 2024 12:37:21 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-341126049 | 2024-04-25T13:07:43.414358

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 13:07:43 GMT
Content-Type: application/octet-stream
Content-Length: 2
Connection: keep-alive
Server: nginx/1.18.0

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:77:f1:c5:56:fc:02:08:0e:a1:98:d4:a0:55:e1:8a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Mar  8 00:00:00 2024 GMT
            Not After : Apr  6 23:59:59 2025 GMT
        Subject: CN=apic2.csprep.bayard.host
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bb:a6:20:72:d5:45:3a:3a:69:04:c6:cd:84:15:
                    aa:0d:2d:0c:48:fa:46:f1:b8:a6:77:1a:1e:69:3c:
                    9e:b2:41:e1:f3:08:7d:a1:b1:7b:3d:c1:a6:74:bc:
                    d0:e5:7e:db:34:fd:37:20:0f:74:84:1d:c7:ff:4a:
                    7e:3a:bc:d3:27:74:a0:f2:11:a2:1a:09:8d:f7:4f:
                    79:ad:47:13:99:7d:0d:cd:98:8b:2b:97:17:6b:c1:
                    b0:bf:42:90:96:3a:0e:c9:b6:8a:e4:38:1f:1a:4f:
                    b7:9e:e2:03:4c:5b:f2:0e:ee:3b:18:08:f1:a7:a2:
                    cb:f5:78:07:ec:ae:9b:0c:16:19:0d:05:7e:7a:0b:
                    c2:8c:f2:9e:22:78:95:12:88:23:85:5b:fe:dc:a6:
                    d6:54:9b:6d:31:16:7f:b4:1c:e9:1c:30:9d:29:16:
                    e8:86:06:2d:29:ae:4e:0e:e1:52:9a:ec:8b:82:02:
                    6b:4a:94:78:85:22:1e:9e:13:fe:3a:59:0a:57:bf:
                    c7:5d:5c:42:15:32:8d:32:bd:90:b8:e7:c6:7a:77:
                    6e:f6:73:d1:a9:d7:0d:c8:6a:e5:a7:f8:ae:86:b7:
                    b2:a1:6e:c3:5b:ca:29:fe:12:b2:80:aa:77:34:df:
                    a2:86:b5:c4:20:29:51:d6:06:c3:e5:96:fd:d7:3f:
                    da:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                C6:91:81:16:67:97:DF:27:8E:74:50:94:FE:C6:11:1F:D8:BA:11:5A
            X509v3 Subject Alternative Name: 
                DNS:apic2.csprep.bayard.host
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Mar  8 00:43:27.815 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D5:E2:29:E4:1D:E9:C5:8B:6A:47:42:
                                BC:AA:AA:33:8B:00:45:29:C3:BB:DC:5B:31:0F:DD:97:
                                7B:67:D0:F9:8E:02:21:00:EC:77:D6:5B:7A:F5:32:13:
                                14:31:8F:BD:63:33:42:1E:ED:61:03:39:E6:A5:3A:18:
                                3A:48:C2:4C:DE:FE:C1:30
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Mar  8 00:43:27.816 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:97:65:6C:47:F6:3C:E4:44:78:C2:E8:
                                99:2B:6D:2A:FD:D3:5E:A2:16:7B:C6:B4:97:22:F3:AD:
                                C2:2D:C9:B3:3A:02:20:53:F7:29:F7:50:48:57:AE:A4:
                                55:E5:73:17:44:74:22:3E:5E:41:9A:27:FB:57:15:4C:
                                E0:76:8F:8B:58:72:96
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Mar  8 00:43:27.849 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:62:83:7D:0D:71:F8:AB:0F:46:09:CB:6C:
                                CA:53:80:9B:C5:74:2D:71:3A:61:48:27:6C:A7:23:D6:
                                C2:5A:19:B0:02:21:00:8C:A8:86:1D:CB:2E:31:38:1B:
                                73:C8:4B:75:E5:6E:57:36:A7:17:CA:8D:25:E7:09:7B:
                                81:FA:CC:0B:D0:D7:A0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a3:4a:f1:35:b4:e8:a3:6a:34:7c:fa:fd:66:e0:90:8f:c2:1d:
        5d:af:3a:eb:03:c1:b7:6a:d1:51:22:19:42:62:cf:bd:86:8d:
        92:2c:38:74:aa:23:26:77:6c:ec:21:06:f3:80:48:d3:53:e4:
        7f:ab:b0:d6:6f:d1:ab:10:43:d1:2c:69:f4:ea:17:d9:97:4a:
        24:6f:2c:59:7e:28:b4:5a:49:b3:31:9e:d9:26:f9:a2:6e:5e:
        52:74:4b:a3:6b:d6:1b:33:e1:66:0c:ca:6b:66:08:42:ae:fd:
        f0:46:9c:47:b7:77:35:2b:9f:9f:ba:97:49:40:97:18:f6:e7:
        ff:9a:21:5f:be:ca:fa:9e:e2:87:1f:c8:c3:a6:7e:e0:d8:b3:
        48:83:82:6d:d5:e0:4b:d8:8c:4f:05:f8:bc:1f:f0:58:47:0b:
        2f:a0:34:d1:21:e4:84:1e:d8:b9:53:89:c3:db:a4:0c:2f:40:
        b1:62:78:84:1c:de:2b:00:74:07:29:9e:4d:cc:63:fb:0b:fe:
        c4:37:9e:5a:34:12:65:f9:de:6b:69:c0:f0:1a:05:75:a1:c0:
        c0:09:5c:f0:2d:70:3b:89:37:3f:8e:f6:a1:f4:d9:3b:c7:e3:
        0e:3d:3b:d5:22:20:11:a6:24:41:3d:cd:30:a2:59:12:84:1c:
        cf:14:a5:ed

52.211.100.164

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

293410365 | 2024-04-15T12:37:21.977068
80 / tcp

AWS ELB2.0

-341126049 | 2024-04-25T13:07:43.414358
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

52.211.100.164

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

293410365 | 2024-04-15T12:37:21.977068 80 / tcp

AWS ELB2.0

-341126049 | 2024-04-25T13:07:43.414358 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

293410365 | 2024-04-15T12:37:21.977068
80 / tcp

-341126049 | 2024-04-25T13:07:43.414358
443 / tcp