GeneralInformation

Hostnames	ec2-52-72-166-72.compute-1.amazonaws.com www.cloudflow.io lightbend.com cloudstate.lightbend.com info.lightbend.com monitoring.lightbend.com resources.lightbend.com shop.lightbend.com solutions.lightbend.com typesafe.com info.typesafe.com monitoring.typesafe.com www.typesafe.com
Domains	amazonaws.com cloudflow.io lightbend.com typesafe.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

-1293820708 | 2024-05-20T00:45:47.387734

80 / tcp

HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive

64797515 | 2024-05-05T05:45:03.202427

443 / tcp

HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Sun, 05 May 2024 05:45:02 GMT
Location: https://www.lightbend.com/
Server: nginx/1.19.6
Content-Length: 169
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6f:2c:4c:f5:c3:a0:88:e2:e0:dd:0b:1f:c8:67:96:4b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Sep 15 00:00:00 2023 GMT
            Not After : Sep 14 23:59:59 2024 GMT
        Subject: CN=typesafe.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f2:3a:ab:e5:69:24:ee:86:2a:3c:e4:d0:4d:2b:
                    29:d1:17:9d:b7:e2:65:06:40:25:cf:44:1f:0b:07:
                    d5:60:b7:86:96:ca:c4:20:31:85:c2:db:a8:e4:e9:
                    5a:85:2e:04:66:d0:ce:3e:4e:b9:d9:dd:53:ea:73:
                    f0:dd:7b:fd:ec:9f:bf:c8:61:4a:d5:8b:ce:e3:31:
                    c5:db:52:3c:8a:30:a1:60:44:b1:04:4a:95:f3:0e:
                    8d:c6:c9:7c:17:16:cc:29:0d:0a:62:cb:36:f7:64:
                    8f:a2:62:ce:8a:01:87:86:11:d9:85:e2:0c:0f:1f:
                    52:96:e4:dc:0d:d7:e1:d4:10:b0:74:5c:66:10:db:
                    8f:17:7a:37:8d:b9:f7:d5:2b:50:96:6d:75:76:88:
                    b5:2c:59:7d:c7:44:9b:cb:8d:a9:c3:76:6e:28:00:
                    bd:b5:b4:ee:a5:2d:b2:d8:5e:2d:e5:81:46:2b:18:
                    d8:a9:c3:3b:34:60:4f:0b:a0:92:e0:8e:ee:cf:e9:
                    63:08:64:f7:a6:c9:8a:08:6a:a5:6d:12:d8:60:70:
                    1e:b6:61:2a:a2:ac:a6:2e:6d:b0:51:d6:ff:a5:84:
                    3a:25:65:42:57:dd:31:25:e3:07:2c:a5:80:4f:9c:
                    45:ad:70:72:1f:e7:52:b8:47:1c:b4:5b:31:36:bc:
                    4f:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                AA:70:D9:0F:AD:3F:3D:29:D0:D3:B9:7B:FA:45:1F:92:E5:F2:5A:C4
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Sep 15 02:27:15.001 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:92:76:33:89:24:DD:E5:37:DB:9D:0E:
                                C9:A2:9F:C7:8B:32:D0:61:1F:A9:12:BD:A1:9B:AB:0D:
                                E5:9E:C4:95:3A:02:20:7A:5D:26:6F:E1:09:93:BD:48:
                                C1:06:39:D9:DF:87:DF:9B:D9:F0:97:BC:76:19:B7:3D:
                                D6:75:79:0E:CA:F2:BE
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep 15 02:27:15.090 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:ED:83:00:77:8D:80:2C:8D:4B:25:45:
                                16:01:CE:25:91:BE:C5:FF:A5:5F:F5:35:07:B8:91:80:
                                C8:D7:70:2D:05:02:21:00:E4:62:F1:59:07:35:44:84:
                                1A:77:AA:0E:8F:FA:A7:2F:16:10:E7:F6:AB:FA:21:36:
                                83:BD:D8:F2:8C:05:1F:6B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep 15 02:27:15.048 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:16:87:74:37:D9:9F:5E:86:13:DA:C7:8E:
                                60:95:EE:A2:7E:64:92:E1:90:08:C6:A0:74:2C:3B:54:
                                27:F3:C5:0A:02:21:00:E8:7B:CF:8F:6C:9F:52:C7:B6:
                                05:F5:D1:6B:D5:DD:AC:2C:0B:BB:AD:4D:E7:44:08:D2:
                                C8:A2:52:BE:F5:09:53
            X509v3 Subject Alternative Name: 
                DNS:typesafe.com, DNS:cloudstate.lightbend.com, DNS:info.lightbend.com, DNS:info.typesafe.com, DNS:lightbend.com, DNS:monitoring.lightbend.com, DNS:monitoring.typesafe.com, DNS:resources.lightbend.com, DNS:shop.lightbend.com, DNS:solutions.lightbend.com, DNS:www.cloudflow.io, DNS:www.typesafe.com
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2d:58:2f:b4:35:93:79:49:b0:1d:bd:f6:af:b3:71:e9:c4:9b:
        38:ad:28:32:ca:29:db:3d:0a:a6:02:d2:7c:be:2e:7b:ef:1a:
        de:29:36:3e:b0:4d:a3:27:3d:17:74:86:2d:25:fc:30:c8:97:
        11:c4:2b:b3:a3:42:03:20:3b:94:47:b2:f4:39:a5:64:a2:bc:
        c5:87:1a:2d:0a:49:72:9e:54:fb:8e:eb:ab:68:87:f2:bc:f0:
        77:d6:67:54:04:f7:3c:6d:f4:da:0a:f0:6d:48:2a:b0:a7:6e:
        a3:ef:1b:47:ee:08:62:ef:ee:ac:eb:84:1d:3d:97:78:45:62:
        50:99:4c:96:1c:e1:52:a4:f8:b8:fb:3c:d0:5e:11:d3:41:16:
        93:4d:89:ca:fa:fb:35:ee:3e:c6:ec:4e:6d:a8:54:b1:c2:d5:
        ad:41:b1:9a:62:f1:c1:da:db:5d:6a:58:e5:9d:3a:2b:58:72:
        da:fe:b2:09:d7:10:ef:bc:51:ff:0f:3e:77:e0:7f:30:e5:b9:
        5a:5e:26:85:18:eb:da:38:f6:97:34:b9:30:9b:db:a5:60:ea:
        4d:8f:d9:c0:48:00:6b:59:19:84:de:f8:76:37:d5:18:ca:1d:
        34:df:38:aa:0f:38:b5:8d:e3:a4:a0:61:e3:9e:6e:13:f5:c6:
        4b:26:14:66

52.72.166.72

Last Seen: 2024-05-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1293820708 | 2024-05-20T00:45:47.387734
80 / tcp

64797515 | 2024-05-05T05:45:03.202427
443 / tcp

nginx1.19.6

Products

Pricing

Contact Us

52.72.166.72

Last Seen: 2024-05-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1293820708 | 2024-05-20T00:45:47.387734 80 / tcp

64797515 | 2024-05-05T05:45:03.202427 443 / tcp

nginx1.19.6

Products

Pricing

Contact Us

-1293820708 | 2024-05-20T00:45:47.387734
80 / tcp

64797515 | 2024-05-05T05:45:03.202427
443 / tcp