GeneralInformation

Hostnames	ec2-54-219-150-45.us-west-1.compute.amazonaws.com xhash.com
Domains	amazonaws.com xhash.com
Cloud Provider	Amazon
Cloud Region	us-west-1
Cloud Service	EC2
Country	United States
City	San Jose
Organization	Amazon.com, Inc.
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 8010

1949896279 | 2024-04-28T12:16:58.758963

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Sun, 28 Apr 2024 12:16:57 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://54.219.150.45:443/

1319021592 | 2024-05-06T23:11:08.916790

443 / tcp

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 23:11:08 GMT
Content-Type: text/html
Content-Length: 6211
Connection: keep-alive
Server: nginx/1.18.0 (Ubuntu)
Last-Modified: Sun, 28 Apr 2024 09:56:44 GMT
ETag: "662e1d5c-1843"
X-Frame-Options: DENY
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:c6:96:07:ce:2d:eb:aa:a3:23:53:b1:09:8f:21:50:18:f8
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 12 08:08:53 2024 GMT
            Not After : Jul 11 08:08:52 2024 GMT
        Subject: CN=xhash.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cd:5c:2f:e4:7a:75:ff:9e:5a:81:92:2d:8c:84:
                    d4:a5:b4:14:31:8f:d9:34:41:28:f1:10:a2:02:1a:
                    25:04:37:0e:75:8a:d5:f7:cb:7c:bd:d0:cb:88:9f:
                    42:10:b5:67:d9:fa:39:3b:ee:a2:59:94:7c:b0:21:
                    e7:d6:1d:ea:9e:42:24:ea:00:64:30:c7:8d:2f:68:
                    99:9f:a9:45:39:8b:40:ce:9e:0d:c5:3c:4f:25:77:
                    82:80:b9:96:33:f3:23:29:9b:d6:b7:0e:5c:6b:c7:
                    1d:68:d9:b0:e8:06:93:a0:95:09:75:40:52:c6:82:
                    e5:c6:22:7b:8c:4c:3f:21:57:75:70:19:05:52:36:
                    8e:2e:3b:72:ba:51:55:03:a1:4d:ae:f0:90:d8:84:
                    07:2e:83:03:2a:19:cd:20:9a:2f:12:49:e8:34:eb:
                    d5:96:3a:2c:31:45:f1:3f:73:23:81:4e:15:3b:79:
                    f5:a3:90:c9:d7:97:5f:43:e6:fe:ef:04:36:12:d0:
                    c0:3a:3c:d5:9f:8d:10:7b:3c:7a:58:8d:40:cc:29:
                    e6:55:d7:3d:f0:ce:03:8e:e8:55:57:9d:d1:46:b6:
                    3d:2c:71:89:a8:d3:ea:ca:bd:68:7b:a7:74:90:c5:
                    92:ae:c4:f2:8d:ef:64:e2:ce:23:71:5f:22:5b:d8:
                    7c:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                03:81:8F:CA:BB:DE:A3:03:E5:7F:4F:32:D0:85:02:3C:E3:82:1F:ED
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.xhash.com, DNS:xhash.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 12 09:08:53.717 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FD:21:4A:FD:F4:2B:32:96:44:D0:32:
                                77:92:CF:1B:92:00:21:D4:32:8B:3D:DD:FF:5D:CD:27:
                                BD:58:91:75:5E:02:21:00:DE:C5:C8:07:0B:52:33:1C:
                                31:70:A6:70:A6:0A:B8:4D:ED:ED:99:BF:93:4F:57:1F:
                                9D:52:78:97:83:32:AB:66
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 12 09:08:53.737 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9B:44:38:2B:11:AA:90:E4:EA:FF:B3:
                                74:64:7B:ED:FF:B8:5F:16:9E:01:B4:46:53:59:B1:FD:
                                F2:05:41:39:75:02:21:00:DD:A2:AA:B8:F5:60:F9:72:
                                71:93:BC:C6:4B:72:76:06:32:6C:97:28:2E:7B:5D:33:
                                C1:FF:6D:25:CC:95:DA:D1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        03:43:94:74:a9:96:42:2f:6a:3c:0d:33:78:1b:0d:24:2a:8f:
        32:f7:39:26:7d:5e:0f:c9:97:bc:cc:5e:76:9b:e2:8f:38:53:
        f7:f4:fa:3b:1b:5b:cd:b6:c3:17:2a:79:bb:e9:04:06:41:15:
        a2:71:f1:fc:bc:05:f5:5b:17:c2:1d:d4:2e:b9:9d:81:6f:a5:
        7e:df:92:ca:32:ad:80:37:93:a2:dc:0b:82:a1:b8:83:57:21:
        36:ae:54:4f:f5:a1:cb:b7:07:c2:29:b6:54:99:bf:79:f4:7a:
        db:8f:3f:6e:af:fd:96:c6:23:61:fc:0a:0c:ac:5f:b2:34:d2:
        b9:60:1d:a4:d4:ab:51:01:1c:96:4a:80:15:1e:d3:1c:8c:4a:
        f3:cd:99:9d:6d:06:c6:5b:3c:0b:f7:a5:1f:b9:24:48:2f:5c:
        85:5e:47:c9:17:f0:a2:0f:f1:b0:56:0e:40:61:78:27:00:cb:
        3f:10:8a:86:f1:25:5a:31:4b:e6:cb:ee:45:20:20:33:1e:76:
        40:0b:aa:91:dd:9b:dc:bb:e7:2a:10:ab:e7:15:59:5d:84:4a:
        21:03:1a:7c:3a:f5:02:c2:94:21:41:be:9f:e9:c1:12:9c:97:
        59:1c:60:ca:81:93:bf:66:6b:9e:7f:1d:06:44:08:e3:11:36:
        70:86:9d:c9

1102849523 | 2024-05-03T09:58:16.507633

8010 / tcp

HTTP/1.1 400 Bad Request
Server: awselb/2.0
Date: Fri, 03 May 2024 09:58:16 GMT
Content-Type: text/html
Content-Length: 622
Connection: close

54.219.150.45

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1949896279 | 2024-04-28T12:16:58.758963
80 / tcp

AWS ELB2.0

1319021592 | 2024-05-06T23:11:08.916790
443 / tcp

nginx1.18.0

1102849523 | 2024-05-03T09:58:16.507633
8010 / tcp

AWS ELB2.0

Products

Pricing

Contact Us

54.219.150.45

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1949896279 | 2024-04-28T12:16:58.758963 80 / tcp

AWS ELB2.0

1319021592 | 2024-05-06T23:11:08.916790 443 / tcp

nginx1.18.0

1102849523 | 2024-05-03T09:58:16.507633 8010 / tcp

AWS ELB2.0

Products

Pricing

Contact Us

1949896279 | 2024-04-28T12:16:58.758963
80 / tcp

1319021592 | 2024-05-06T23:11:08.916790
443 / tcp

1102849523 | 2024-05-03T09:58:16.507633
8010 / tcp