GeneralInformation

Hostnames	ec2-52-50-220-169.eu-west-1.compute.amazonaws.com evl.dev.aws.renault.com int.evl.dev.aws.renault.com qua.evl.dev.aws.renault.com sta.evl.dev.aws.renault.com
Domains	amazonaws.com renault.com
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

Analytics

CDN

Font scripts

RUM

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-9516	6.8Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.
CVE-2019-9513	7.8Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
CVE-2019-9511	7.8Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 443

974570904 | 2024-05-02T23:24:54.378101

80 / tcp

HTTP/1.1 403 Forbidden
Server: awselb/2.0
Date: Thu, 02 May 2024 23:24:54 GMT
Content-Type: text/html
Content-Length: 520
Connection: keep-alive

728505161 | 2024-05-02T03:59:45.574457

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 02 May 2024 03:59:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: AWSALB=+y2yFa8tNkAGzd7XmNaReipXQb5PiKiR2SlZdazpZWiaoXG/tXhvETX2Iwo3ZY44TJwVlH6fdRjTTheSolBeV5S5XjjnX7tNK0rVAW2T/YJ/LbEYDxgBq6JevRyC; Expires=Thu, 09 May 2024 03:59:41 GMT; Path=/
Set-Cookie: AWSALBCORS=+y2yFa8tNkAGzd7XmNaReipXQb5PiKiR2SlZdazpZWiaoXG/tXhvETX2Iwo3ZY44TJwVlH6fdRjTTheSolBeV5S5XjjnX7tNK0rVAW2T/YJ/LbEYDxgBq6JevRyC; Expires=Thu, 09 May 2024 03:59:41 GMT; Path=/; SameSite=None; Secure
Server: nginx/1.17.1
Vary: Accept-Encoding
ETag: "662a62cc-367:dtagent10287240325103108RNEU"
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Last-Modified: Thu, 25 Apr 2024 14:03:55 GMT
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-795982918"
Set-Cookie: dtCookie=v_4_srv_8_sn_45DDB4BEFCE33B3F25571366C99B9779_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.renault.com
Expires: Thu, 02 May 2024 04:29:41 GMT
Cache-Control: max-age=1800
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: public, must-revalidate, proxy-revalidate
X-SIA: evl
X-IRN: IRN-71403

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:24:08:d2:29:d1:af:fe:4b:aa:4a:ee:33:05:1a:3f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Aug  5 00:00:00 2023 GMT
            Not After : Sep  2 23:59:59 2024 GMT
        Subject: CN=evl.dev.aws.renault.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9c:fc:30:d7:23:cb:53:1f:92:8c:91:b8:91:1a:
                    14:5a:90:13:9d:a3:57:07:89:36:b4:90:31:70:82:
                    43:51:4b:d3:1b:52:ad:c1:11:18:a5:7d:fb:6e:fb:
                    99:a9:e4:4e:73:05:12:7c:ed:69:38:54:c9:49:ed:
                    6d:07:db:40:46:15:49:ae:78:27:d1:c5:b7:fe:74:
                    77:a6:cb:a0:bd:b2:e6:e1:c9:47:f1:95:d6:84:58:
                    c4:09:54:85:bf:8f:44:01:f4:d7:4b:1a:62:b5:4b:
                    06:d2:b8:6e:48:fc:d0:06:2c:30:26:1e:36:b6:22:
                    a2:cd:84:70:ae:04:fa:db:2d:24:07:9d:71:b1:26:
                    b4:dc:66:a3:2f:1d:da:62:7a:c4:4d:13:e4:1e:b5:
                    30:cf:90:b3:52:0f:2f:fa:a8:a1:ce:d4:2e:28:7d:
                    e0:a8:39:5c:93:ac:53:b7:59:a9:e2:b0:69:d0:5e:
                    21:6c:1a:d8:52:49:03:10:db:d0:97:a8:93:c2:44:
                    4c:4b:5b:52:a0:08:6f:a9:ac:79:33:55:4a:55:08:
                    79:47:2c:d6:6f:3f:5d:cc:38:da:50:4b:45:22:95:
                    cb:a7:ef:a3:af:11:c3:ea:fc:4b:3c:df:e8:5d:b9:
                    8b:bd:46:79:db:0b:65:68:9b:a5:c8:75:4a:58:98:
                    cf:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                99:8E:55:72:5C:E4:71:9C:57:CF:DF:A0:17:B2:E3:C4:9C:4B:7B:72
            X509v3 Subject Alternative Name: 
                DNS:evl.dev.aws.renault.com, DNS:qua.evl.dev.aws.renault.com, DNS:int.evl.dev.aws.renault.com, DNS:sta.evl.dev.aws.renault.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Aug  5 00:35:20.668 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AE:D8:95:EF:18:E0:96:3D:07:F2:C9:
                                FD:53:49:7F:C6:E6:D9:78:FE:B9:04:21:45:6A:A5:D1:
                                22:C2:B5:3A:C9:02:21:00:9C:9A:92:9F:15:C0:48:01:
                                6F:0B:6D:41:55:53:57:7C:0C:DB:51:4D:BA:07:4D:20:
                                E0:5D:A4:CE:83:16:BF:21
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Aug  5 00:35:20.667 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:41:D1:F5:9F:32:E2:4E:11:AD:77:ED:35:
                                AB:A9:4C:4D:5E:29:97:D0:8C:0D:9C:24:39:9C:0F:81:
                                90:32:84:1C:02:21:00:A8:DA:E3:54:8D:75:9E:7C:03:
                                27:AB:9D:C6:26:22:B8:F4:4E:10:EF:F8:C5:4A:45:37:
                                D9:B7:E1:18:DD:D9:0B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Aug  5 00:35:20.620 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A8:BB:CC:CB:95:4B:6F:F8:4F:F5:DF:
                                0C:3C:C6:A9:BA:80:AF:A2:7F:97:D8:43:89:19:B4:1B:
                                0F:16:AC:1D:63:02:20:1A:39:70:D7:2F:53:DE:C8:A8:
                                33:F3:EE:5D:C3:02:B9:43:46:E5:71:79:81:4E:CD:6A:
                                7F:68:ED:7E:E4:A2:BC
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9f:0d:84:0d:d1:eb:64:db:61:d5:e5:7a:67:a8:4d:f9:c1:a9:
        38:9b:08:57:e0:3c:93:72:27:00:4f:ff:90:6e:ae:46:86:1d:
        d7:18:36:9b:41:77:0c:21:31:3e:be:64:ea:32:a5:9a:63:ee:
        52:c2:88:2e:6b:fc:66:76:5f:3d:80:df:73:e9:87:e8:cd:c9:
        a8:5e:e0:89:9c:fd:24:24:4c:e7:aa:f7:3c:58:b7:51:89:02:
        90:c1:a6:3c:a2:17:4d:c2:12:d7:3c:e3:9d:6c:6e:fc:a8:8f:
        be:e2:5f:22:15:c1:99:42:0a:83:c2:c0:56:63:3a:5b:92:73:
        66:cf:c1:e5:fa:15:c4:06:a0:75:a5:2b:76:50:e0:97:65:43:
        66:04:07:74:32:df:d3:f6:e2:f4:48:20:d7:22:09:a2:3b:95:
        38:3a:38:80:0c:da:32:b9:69:49:91:d2:e6:b1:5c:c5:da:85:
        a9:13:df:68:1d:16:79:a4:fd:03:7c:62:45:d5:3a:8a:8f:21:
        ff:4d:b8:83:66:7e:a6:91:18:e8:14:2a:66:68:0c:59:10:92:
        6d:9c:dd:77:41:0d:da:29:e8:59:68:80:57:b4:83:63:c7:90:
        02:fb:88:12:b4:16:71:4a:d4:ac:01:d0:4b:df:c8:0e:41:3e:
        6f:24:c3:79

52.50.220.169

Last Seen: 2024-05-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

974570904 | 2024-05-02T23:24:54.378101
80 / tcp

AWS ELB2.0

728505161 | 2024-05-02T03:59:45.574457
443 / tcp

nginx1.17.1

Products

Pricing

Contact Us

52.50.220.169

Last Seen: 2024-05-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

974570904 | 2024-05-02T23:24:54.378101 80 / tcp

AWS ELB2.0

728505161 | 2024-05-02T03:59:45.574457 443 / tcp

nginx1.17.1

Products

Pricing

Contact Us

974570904 | 2024-05-02T23:24:54.378101
80 / tcp

728505161 | 2024-05-02T03:59:45.574457
443 / tcp