GeneralInformation

Hostnames	ec2-52-86-70-149.compute-1.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 3000 3001 8080

205474638 | 2024-04-23T09:07:22.276112

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCQCJWVWEuChKtCz2AiuEAMk
0IC+wYi7mEu4hyjnLusWDHRDaoGDctA5S9YNaPCb7MT+bBbrTVPWfwU/E4l0qa0=
Fingerprint: 57:1a:9a:8f:93:b7:d3:58:f3:bf:cd:85:27:f9:bd:18

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

490235634 | 2024-04-20T01:34:45.681038

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 20 Apr 2024 01:34:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 3998
Connection: keep-alive
X-Powered-By: Next.js
ETag: "tduhum6o5o331"
Vary: Accept-Encoding

490235634 | 2024-04-21T23:19:25.692154

3000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Next.js
ETag: "tduhum6o5o331"
Content-Type: text/html; charset=utf-8
Content-Length: 3998
Vary: Accept-Encoding
Date: Sun, 21 Apr 2024 23:19:25 GMT
Connection: keep-alive
Keep-Alive: timeout=5

1238605046 | 2024-04-20T10:05:23.535632

3001 / tcp

HTTP/1.1 200 OK
X-Powered-By: Next.js
ETag: "69yb25qbm02ld"
Content-Type: text/html; charset=utf-8
Content-Length: 3362
Vary: Accept-Encoding
Date: Sat, 20 Apr 2024 10:05:23 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html><html lang="en"><head><meta charSet="utf-8"/><title>claimsync.ai | Testing Tool</title><meta name="description" content="claimsync.ai"/><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"/><meta property="og:image" content="/favicon/favicon-32x32.png"/><meta property="og:image:type" content="image/png"/><meta property="og:image:width" content="50"/><meta property="og:image:height" content="50"/><meta property="og:locale" content="en_IN"/><link rel="apple-touch-icon" sizes="180x180" href="/favicon/apple-touch-icon.png"/><link rel="icon" type="image/png" sizes="32x32" href="/favicon/favicon-32x32.png"/><link rel="icon" type="image/png" sizes="16x16" href="/favicon/favicon-16x16.png"/><link rel="manifest" href="/favicon/site.webmanifest"/><link rel="preload" as="image" href="/favicon/favicon-32x32.png"/><meta name="next-head-count" content="14"/><link rel="preload" href="/_next/static/css/acfe71d6d5e8e7b1.css" as="style"/><link rel="stylesheet" href="/_next/static/css/acfe71d6d5e8e7b1.css" data-n-g=""/><noscript data-n-css=""></noscript><script defer="" nomodule="" src="/_next/static/chunks/polyfills-c67a75d1b6f99dc8.js"></script><script defer="" src="/_next/static/chunks/8.d457b280dc5c662a.js"></script><script defer="" src="/_next/static/chunks/230.ef07eab83a5c8440.js"></script><script defer="" src="/_next/static/chunks/461.170ec2d3f3d5c9a1.js"></script><script src="/_next/static/chunks/webpack-55953f7d2c571e14.js" defer=""></script><script src="/_next/static/chunks/framework-4556c45dd113b893.js" defer=""></script><script src="/_next/static/chunks/main-9aae6518dda96e80.js" defer=""></script><script src="/_next/static/chunks/pages/_app-64b6bb43bf114f1b.js" defer=""></script><script src="/_next/static/chunks/pages/index-2ac43b9c27c98adc.js" defer=""></script><script src="/_next/static/JZMuCne0ZfOJ7TDlzB44V/_buildManifest.js" defer=""></script><script src="/_next/static/JZMuCne0ZfOJ7TDlzB44V/_ssgManifest.js" defer=""></script></head><body><div id="__next"><div class="bodyContainer"><header class="mt-5 flex justify-between items-center"><div><span class="text-lg font-bold text-customPrimary">claimsync</span></div></header></div><div class="min-h-screen flex items-center justify-center"><div class="border-solid border-y border-x border-black h-auto p-10 rounded-xl shadow-xl"><div class="text-center font-bold text-customPrimary text-xl">Login</div><div class="grid grid-cols-3 gap-x-2 mt-8"><div class="col-span-1 flex items-center">User ID</div><input class="w-full col-span-2" type="text" placeholder="Enter user id here" id="userId"/></div><div class="grid grid-cols-3 gap-x-2 mt-4"><div class="col-span-1 flex items-center">Password</div><input class="w-full col-span-2" type="password" placeholder="Enter password here" id="password"/></div><div class="bg-customPrimary p-2 text-center text-white mt-8 rounded-xl cursor-pointer">Submit</div><div class="text-red-500 text-center mt-4"></div></div></div><div class="bg-customPrimary text-white px-2"><div class="bodyContainer py-4">©claimsync.ai 2024</div></div></div><script id="__NEXT_DATA__" type="application/json">{"props":{"pageProps":{}},"page":"/","query":{},"buildId":"JZMuCne0ZfOJ7TDlzB44V","nextExport":true,"autoExport":true,"isFallback":false,"dynamicIds":[9008,230,6461],"scriptLoader":[]}</script></body></html>

335330650 | 2024-04-14T19:37:52.159863

8080 / tcp

HTTP/1.1 404 NOT FOUND
Server: Werkzeug/3.0.2 Python/3.10.12
Date: Sun, 14 Apr 2024 19:37:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 207
Access-Control-Allow-Origin: *
Connection: close

52.86.70.149

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

205474638 | 2024-04-23T09:07:22.276112
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

490235634 | 2024-04-20T01:34:45.681038
80 / tcp

nginx1.18.0

490235634 | 2024-04-21T23:19:25.692154
3000 / tcp

1238605046 | 2024-04-20T10:05:23.535632
3001 / tcp

335330650 | 2024-04-14T19:37:52.159863
8080 / tcp

Products

Pricing

Contact Us

52.86.70.149

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

205474638 | 2024-04-23T09:07:22.276112 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

490235634 | 2024-04-20T01:34:45.681038 80 / tcp

nginx1.18.0

490235634 | 2024-04-21T23:19:25.692154 3000 / tcp

1238605046 | 2024-04-20T10:05:23.535632 3001 / tcp

335330650 | 2024-04-14T19:37:52.159863 8080 / tcp

Products

Pricing

Contact Us

205474638 | 2024-04-23T09:07:22.276112
22 / tcp

490235634 | 2024-04-20T01:34:45.681038
80 / tcp

490235634 | 2024-04-21T23:19:25.692154
3000 / tcp

1238605046 | 2024-04-20T10:05:23.535632
3001 / tcp

335330650 | 2024-04-14T19:37:52.159863
8080 / tcp