Hostnames |
ec2-54-211-116-25.compute-1.amazonaws.com xlr8demo01.sandbox.nuix.com |
Domains | amazonaws.com nuix.com |
Cloud Provider | Amazon |
Cloud Region | us-east-1 |
Cloud Service | EC2 |
Country | United States |
City | Ashburn |
Organization | Amazon.com, Inc. |
ISP | Amazon.com, Inc. |
ASN | AS14618 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | 7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
-1786409949 | 2024-04-17T03:09:00.23845280 / tcp
HTTP/1.1 200 OK Access-Control-Allow-Origin: * Cache-control: no-cache="set-cookie" Content-Security-Policy: default-src 'self';script-src 'self';frame-ancestors 'none';img-src 'self';style-src 'none' Content-Type: application/json; charset=utf-8 Date: Wed, 17 Apr 2024 03:09:00 GMT ETag: W/"4-Ut1MdMgT2zeQF5xPI2zq2so0Z6g" RateLimit-Limit: 100 RateLimit-Remaining: 99 RateLimit-Reset: 60 Server: nginx/1.20.0 Set-Cookie: AWSELB=8377CD1B02CB31B1992B8AD1F06E797F0D3B365CC83D5563F6823BDCB934D7221E0BA17B1CC0C85D70B6C1F9D4A36D73C8F4A259C02DCB3BEDDC21DF64759A57409405F81C;PATH=/ Strict-Transport-Security: max-age=15552000; includeSubDomains X-Content-Type-Options: nosniff X-DNS-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-RateLimit-Limit: 100 X-RateLimit-Remaining: 99 X-RateLimit-Reset: 1713323401 X-XSS-Protection: 1; mode=block Content-Length: 4 Connection: keep-alive
579842604 | 2024-04-03T22:33:43.975948443 / tcp
HTTP/1.1 200 OK Date: Wed, 03 Apr 2024 22:33:43 GMT Content-Type: text/html;charset=utf-8 Content-Length: 913 Connection: keep-alive X-Frame-Options: DENY Referrer-Policy: no-referrer-when-downgrade Strict-Transport-Security: max-age=31536000; includeSubDomains Cache-Control: no-cache X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' neo-sales-demo-01.sandbox.nuix.com; img-src 'self' blob: data:; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-ancestors 'self' X-XSS-Protection: 1; mode=block Last-Modified: Thu, 25 Jan 2024 10:44:22 GMT ETag: "a1734ffb" Vary: Accept-Encoding
Certificate: Data: Version: 3 (0x2) Serial Number: 08:f9:d9:cd:3f:43:d3:22:7e:5f:bf:89:81:7c:3b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02 Validity Not Before: Dec 6 00:00:00 2023 GMT Not After : Jan 4 23:59:59 2025 GMT Subject: CN=*.sandbox.nuix.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a1:69:91:66:29:e8:d6:1e:01:bf:07:b2:2d:fb: 65:6d:12:05:91:2d:6a:14:e2:54:bc:7a:66:7f:3f: fc:01:f2:00:3b:4e:75:cb:fa:16:a4:0c:ea:f3:f9: dc:5c:9b:d6:09:9e:a1:f8:a3:ac:d8:05:b1:55:75: 2f:a1:33:e2:a5:b2:94:03:f4:b6:04:65:c0:10:d8: 17:92:8c:37:fe:aa:d3:f8:fe:85:e6:69:1b:41:ad: fa:69:af:b5:4c:8e:1b:7a:1a:18:af:be:3f:87:31: 96:ba:89:9c:bb:c1:38:51:92:82:9f:7f:e1:39:9b: 33:f2:d1:be:f9:0c:79:d5:43:1a:1d:f9:e1:5f:b3: cb:e6:9a:8b:d4:63:6e:8e:a1:8c:dd:63:f5:9e:23: 7d:f2:2f:2d:53:05:b4:17:af:0f:c7:50:e3:a0:80: 9f:3b:a1:ce:6c:ee:c3:51:d2:8b:b5:50:fd:66:38: 5c:25:e6:76:2a:6f:07:04:2b:f5:53:9f:65:82:a1: bf:c7:3b:71:b2:12:1e:b1:d8:0c:e7:27:b8:de:39: 1e:e9:a6:de:fc:4a:80:0b:7f:15:d8:ef:af:9d:43: 1a:11:9b:ea:eb:41:65:2b:c6:3f:dd:1d:72:49:eb: ee:c4:1b:a2:6c:61:9f:ab:b2:3e:82:8b:e3:d8:82: 65:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2 X509v3 Subject Key Identifier: AC:A9:8C:C0:20:36:BA:04:B0:F5:41:46:7C:5C:BA:63:6C:F6:E7:A5 X509v3 Subject Alternative Name: DNS:*.sandbox.nuix.com, DNS:xlr8demo01.sandbox.nuix.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 CRL Distribution Points: Full Name: URI:http://crl.r2m02.amazontrust.com/r2m02.crl Authority Information Access: OCSP - URI:http://ocsp.r2m02.amazontrust.com CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer X509v3 Basic Constraints: critical CA:FALSE CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Dec 6 04:38:50.669 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:11:6D:F8:82:C2:B7:A3:83:E9:48:E1:AC: 3B:32:01:40:47:84:CB:73:FF:EB:CC:31:37:98:88:4F: 7D:BB:9D:58:02:20:5E:08:6F:6C:67:3E:93:9B:AA:AD: 46:80:B4:98:68:86:18:CC:0C:C9:17:FC:C4:A6:44:CA: E5:C2:D8:AB:B6:9E Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Dec 6 04:38:50.717 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:58:53:A4:C4:8E:08:F4:53:4D:10:A7:46: 6D:8E:51:92:FC:68:CD:56:4B:E5:BE:70:EA:76:45:83: 3F:D5:51:7D:02:21:00:D9:3C:25:B6:53:F6:5B:8F:E2: DA:A2:3E:16:C9:31:E8:F8:68:69:C1:97:72:BF:27:2E: 3B:9A:22:33:3E:81:70 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0: 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8 Timestamp : Dec 6 04:38:50.690 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:BA:1F:66:06:1A:9F:9E:E2:37:2C:A0: BC:3D:5D:67:EB:63:0B:44:3F:1F:6E:41:78:AB:07:EC: 60:1D:CE:15:A3:02:21:00:C9:40:3B:3C:13:5E:68:64: 36:0E:04:98:D4:5F:70:BC:4E:8A:C4:1A:5F:7A:D6:65: 12:3B:1D:5B:3F:01:3A:E4 Signature Algorithm: sha256WithRSAEncryption Signature Value: 0b:8f:15:dc:2b:ab:ba:b6:7e:83:24:1e:e7:c2:75:2c:cc:24: d0:1f:8f:19:d2:be:35:ed:18:5a:23:2a:66:b9:df:16:d5:9b: 3c:ad:40:cd:bb:f7:f1:5a:37:47:b4:82:55:8a:6d:e0:b6:83: ee:3a:bd:08:a7:20:b8:6d:da:33:69:11:5c:18:c0:d1:19:71: 28:c7:d6:28:17:04:38:35:7a:18:6f:5d:7f:aa:a2:35:20:79: 64:b5:4b:47:b3:b3:3b:df:ea:64:b0:be:6b:c5:a1:1c:85:fc: 42:d6:26:fe:b5:f7:44:95:a4:7f:a0:c1:e8:9c:36:0c:f5:fe: f2:e4:6c:91:35:58:07:1a:53:5f:3d:bf:f1:e7:a4:9d:a8:48: af:21:13:3a:c0:00:3e:3f:77:a5:79:fe:a6:70:55:79:5b:2a: 6a:22:8b:09:05:b3:a6:72:7f:ab:a6:23:4b:42:7d:31:34:85: 0c:94:67:d4:49:f1:0b:b7:f5:8c:e0:7e:ee:79:e7:96:48:37: 45:8a:a9:33:21:0d:c2:86:47:75:c9:63:a7:98:99:1f:4c:8f: b6:89:d8:10:b5:89:db:d0:22:a6:e6:6c:d0:5b:9d:fa:dd:3f: ac:8c:c5:90:7c:3e:ce:94:56:a5:fb:58:58:cd:00:7a:03:d6: 00:6b:8c:36
-528027776 | 2024-04-04T17:42:45.4189778443 / tcp
HTTP/1.1 200 OK Date: Thu, 04 Apr 2024 17:42:45 GMT Content-Type: text/html;charset=utf-8 Content-Length: 3871 Connection: keep-alive Referrer-Policy: no-referrer X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains X-Robots-Tag: none Cache-Control: no-cache, must-revalidate, no-transform, no-store X-Content-Type-Options: nosniff Content-Security-Policy: frame-src 'self'; frame-ancestors 'self'; object-src 'none'; X-XSS-Protection: 1; mode=block
Certificate: Data: Version: 3 (0x2) Serial Number: 08:f9:d9:cd:3f:43:d3:22:7e:5f:bf:89:81:7c:3b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02 Validity Not Before: Dec 6 00:00:00 2023 GMT Not After : Jan 4 23:59:59 2025 GMT Subject: CN=*.sandbox.nuix.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a1:69:91:66:29:e8:d6:1e:01:bf:07:b2:2d:fb: 65:6d:12:05:91:2d:6a:14:e2:54:bc:7a:66:7f:3f: fc:01:f2:00:3b:4e:75:cb:fa:16:a4:0c:ea:f3:f9: dc:5c:9b:d6:09:9e:a1:f8:a3:ac:d8:05:b1:55:75: 2f:a1:33:e2:a5:b2:94:03:f4:b6:04:65:c0:10:d8: 17:92:8c:37:fe:aa:d3:f8:fe:85:e6:69:1b:41:ad: fa:69:af:b5:4c:8e:1b:7a:1a:18:af:be:3f:87:31: 96:ba:89:9c:bb:c1:38:51:92:82:9f:7f:e1:39:9b: 33:f2:d1:be:f9:0c:79:d5:43:1a:1d:f9:e1:5f:b3: cb:e6:9a:8b:d4:63:6e:8e:a1:8c:dd:63:f5:9e:23: 7d:f2:2f:2d:53:05:b4:17:af:0f:c7:50:e3:a0:80: 9f:3b:a1:ce:6c:ee:c3:51:d2:8b:b5:50:fd:66:38: 5c:25:e6:76:2a:6f:07:04:2b:f5:53:9f:65:82:a1: bf:c7:3b:71:b2:12:1e:b1:d8:0c:e7:27:b8:de:39: 1e:e9:a6:de:fc:4a:80:0b:7f:15:d8:ef:af:9d:43: 1a:11:9b:ea:eb:41:65:2b:c6:3f:dd:1d:72:49:eb: ee:c4:1b:a2:6c:61:9f:ab:b2:3e:82:8b:e3:d8:82: 65:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2 X509v3 Subject Key Identifier: AC:A9:8C:C0:20:36:BA:04:B0:F5:41:46:7C:5C:BA:63:6C:F6:E7:A5 X509v3 Subject Alternative Name: DNS:*.sandbox.nuix.com, DNS:xlr8demo01.sandbox.nuix.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 CRL Distribution Points: Full Name: URI:http://crl.r2m02.amazontrust.com/r2m02.crl Authority Information Access: OCSP - URI:http://ocsp.r2m02.amazontrust.com CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer X509v3 Basic Constraints: critical CA:FALSE CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Dec 6 04:38:50.669 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:11:6D:F8:82:C2:B7:A3:83:E9:48:E1:AC: 3B:32:01:40:47:84:CB:73:FF:EB:CC:31:37:98:88:4F: 7D:BB:9D:58:02:20:5E:08:6F:6C:67:3E:93:9B:AA:AD: 46:80:B4:98:68:86:18:CC:0C:C9:17:FC:C4:A6:44:CA: E5:C2:D8:AB:B6:9E Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Dec 6 04:38:50.717 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:58:53:A4:C4:8E:08:F4:53:4D:10:A7:46: 6D:8E:51:92:FC:68:CD:56:4B:E5:BE:70:EA:76:45:83: 3F:D5:51:7D:02:21:00:D9:3C:25:B6:53:F6:5B:8F:E2: DA:A2:3E:16:C9:31:E8:F8:68:69:C1:97:72:BF:27:2E: 3B:9A:22:33:3E:81:70 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0: 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8 Timestamp : Dec 6 04:38:50.690 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:BA:1F:66:06:1A:9F:9E:E2:37:2C:A0: BC:3D:5D:67:EB:63:0B:44:3F:1F:6E:41:78:AB:07:EC: 60:1D:CE:15:A3:02:21:00:C9:40:3B:3C:13:5E:68:64: 36:0E:04:98:D4:5F:70:BC:4E:8A:C4:1A:5F:7A:D6:65: 12:3B:1D:5B:3F:01:3A:E4 Signature Algorithm: sha256WithRSAEncryption Signature Value: 0b:8f:15:dc:2b:ab:ba:b6:7e:83:24:1e:e7:c2:75:2c:cc:24: d0:1f:8f:19:d2:be:35:ed:18:5a:23:2a:66:b9:df:16:d5:9b: 3c:ad:40:cd:bb:f7:f1:5a:37:47:b4:82:55:8a:6d:e0:b6:83: ee:3a:bd:08:a7:20:b8:6d:da:33:69:11:5c:18:c0:d1:19:71: 28:c7:d6:28:17:04:38:35:7a:18:6f:5d:7f:aa:a2:35:20:79: 64:b5:4b:47:b3:b3:3b:df:ea:64:b0:be:6b:c5:a1:1c:85:fc: 42:d6:26:fe:b5:f7:44:95:a4:7f:a0:c1:e8:9c:36:0c:f5:fe: f2:e4:6c:91:35:58:07:1a:53:5f:3d:bf:f1:e7:a4:9d:a8:48: af:21:13:3a:c0:00:3e:3f:77:a5:79:fe:a6:70:55:79:5b:2a: 6a:22:8b:09:05:b3:a6:72:7f:ab:a6:23:4b:42:7d:31:34:85: 0c:94:67:d4:49:f1:0b:b7:f5:8c:e0:7e:ee:79:e7:96:48:37: 45:8a:a9:33:21:0d:c2:86:47:75:c9:63:a7:98:99:1f:4c:8f: b6:89:d8:10:b5:89:db:d0:22:a6:e6:6c:d0:5b:9d:fa:dd:3f: ac:8c:c5:90:7c:3e:ce:94:56:a5:fb:58:58:cd:00:7a:03:d6: 00:6b:8c:36