GeneralInformation

Hostnames	ec2-54-227-130-121.compute-1.amazonaws.com app.ushopaid.com
Domains	amazonaws.com ushopaid.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

960953468 | 2024-05-30T00:41:43.592040

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBDlIg5qiOnx+TGq/av/4cK5+
K4eOrW25FwXIwhO4EymgTnoJnmaY+T4azCbcfYL7F1ob06JcjhG08DKW0yiRAV8=
Fingerprint: 4e:ff:17:78:18:09:27:1c:9a:a5:1d:42:ea:5d:af:fa

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-06-03T04:06:02.114221

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 03 Jun 2024 04:06:02 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Fri, 02 Sep 2022 03:22:38 GMT
Connection: keep-alive
ETag: "631176fe-264"
Accept-Ranges: bytes

-1979966628 | 2024-06-02T16:48:01.190071

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 02 Jun 2024 16:48:01 GMT
Content-Type: text/html
Content-Length: 905
Last-Modified: Mon, 13 May 2024 08:01:48 GMT
Connection: keep-alive
ETag: "6641c8ec-389"
Cache-Control: no-cache
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0e:99:a3:1f:67:b1:33:32:40:ec:ec:7b:04:5f:66:9b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G2
        Validity
            Not Before: Sep  4 00:00:00 2023 GMT
            Not After : Sep  4 23:59:59 2024 GMT
        Subject: CN=app.ushopaid.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cb:d4:8b:91:0f:02:63:fc:a2:6d:b6:75:4b:46:
                    8c:e0:26:b0:43:b6:1e:d4:4f:51:cf:2a:71:8f:84:
                    28:8e:7d:b4:d2:41:0c:13:de:27:69:05:0e:de:4d:
                    0f:ed:fa:f4:59:b5:bd:df:7b:f8:5e:e3:e9:ca:10:
                    ad:eb:53:b7:a3:f3:61:ae:03:a5:01:0e:b3:cf:b8:
                    c5:1f:ad:8c:87:e5:68:d7:74:84:1f:93:fd:c6:dd:
                    0d:9b:51:e9:0d:8d:fc:a8:13:3a:05:1a:21:ce:e4:
                    ec:90:7e:16:15:8f:68:de:69:6f:f9:39:1d:d4:82:
                    5b:79:b8:3e:a7:6d:39:0f:f8:f1:63:e8:13:7a:7b:
                    7a:a1:93:f5:39:26:56:48:6c:be:68:62:13:15:f6:
                    cd:11:3f:f4:cc:b8:94:e4:1b:c4:4b:42:2b:6e:50:
                    f9:41:61:6c:d5:19:e5:07:ea:9e:31:a4:4d:b7:3f:
                    0f:f5:c7:fd:e4:0e:ba:11:17:f0:44:7e:02:9f:57:
                    e6:88:9d:2e:58:3b:47:89:8c:e1:1c:53:97:b2:23:
                    13:d0:9c:46:37:a1:cd:9f:a3:16:fd:ad:60:a5:b9:
                    0a:d4:0d:97:92:b6:7f:2a:0c:92:57:7e:84:57:2e:
                    bc:23:db:95:74:0e:2b:bb:b0:5b:89:1b:b9:d9:24:
                    1e:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                78:DF:91:90:5F:EE:DE:AC:F6:C5:75:EB:D5:4C:55:53:EF:24:4A:B6
            X509v3 Subject Key Identifier: 
                60:9F:E6:79:E7:A4:AE:FE:32:E2:86:97:E0:84:EC:AB:CE:B9:8F:56
            X509v3 Subject Alternative Name: 
                DNS:app.ushopaid.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
            X509v3 Basic Constraints: 
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep  4 01:24:02.842 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:41:EB:94:8F:55:0E:DA:B0:D2:C9:83:ED:
                                A8:63:94:2B:FD:D8:4F:0F:A0:52:78:DB:B7:77:DB:3F:
                                38:D5:B9:EB:02:20:3C:B8:6B:81:B0:1F:87:7D:39:B5:
                                A6:95:BF:CD:D3:3E:B8:C5:57:7D:6F:F0:A8:9E:E5:FD:
                                77:EF:67:5C:D6:37
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Sep  4 01:24:02.430 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:91:E3:8D:1D:88:E8:7E:6E:38:43:41:
                                18:6D:C8:E1:B6:A0:41:BC:F1:9C:38:A6:F6:B0:A2:E1:
                                DE:DA:A2:DE:3C:02:21:00:C3:7C:CF:4F:33:F0:8B:4E:
                                5F:2F:4C:61:1B:3A:E5:A6:93:1A:13:89:74:2A:CB:DF:
                                5A:BB:E5:47:D6:8D:9D:59
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep  4 01:24:02.387 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:56:6D:A0:B7:B5:CA:3C:72:B3:C3:87:B6:
                                1B:12:20:7B:F6:90:57:A7:D4:98:76:4A:6C:B9:9C:A7:
                                E6:2B:1A:1B:02:21:00:B8:3B:98:6C:F6:33:68:5C:D6:
                                BD:9B:BE:1B:8C:25:38:C5:53:82:69:1E:C5:A9:2E:0D:
                                19:20:C5:DE:0C:66:35
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b7:42:94:c8:21:8c:31:29:a9:98:2c:72:29:a5:be:1c:31:8f:
        9b:ac:26:d6:b5:4f:28:f2:ad:21:58:68:58:80:72:e3:b6:06:
        85:f5:19:f4:ef:bb:4e:74:65:56:b6:b2:06:f5:a5:9c:ae:8a:
        80:be:c0:05:0a:46:47:9e:36:1f:8b:e3:a4:f8:f5:c8:55:89:
        4e:d6:1f:b1:20:36:96:9a:67:d1:90:89:5b:cc:71:ac:ee:34:
        79:9d:51:6a:29:e4:5b:8a:d3:2e:68:81:a9:d7:43:f1:c9:29:
        9a:20:06:cc:86:6c:e2:e2:a2:d8:0a:4e:17:54:61:62:17:27:
        4e:63:14:74:35:c2:14:78:89:5a:59:71:22:ae:3d:3a:b7:2f:
        32:7f:c1:6f:fe:94:cb:a6:48:b0:33:58:f7:f8:fd:d5:bc:e9:
        93:95:47:df:f0:86:26:e3:27:44:23:64:6f:e3:f9:bf:64:db:
        5c:dd:3f:dd:ba:14:3a:e9:f5:bc:6c:ec:2d:b9:c4:38:73:26:
        3a:ec:aa:5d:ed:cc:4c:e7:23:a6:cb:e9:48:34:4d:7a:a4:93:
        8e:34:b1:21:f6:5e:b0:0f:20:ec:19:ba:1f:39:f2:1b:5a:fc:
        4c:91:c7:24:60:eb:11:bd:1c:00:05:d1:66:71:de:86:25:a7:
        30:b3:26:e6

54.227.130.121

Last Seen: 2024-06-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

960953468 | 2024-05-30T00:41:43.592040
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-06-03T04:06:02.114221
80 / tcp

nginx1.18.0

-1979966628 | 2024-06-02T16:48:01.190071
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

54.227.130.121

Last Seen: 2024-06-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

960953468 | 2024-05-30T00:41:43.592040 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-06-03T04:06:02.114221 80 / tcp

nginx1.18.0

-1979966628 | 2024-06-02T16:48:01.190071 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

960953468 | 2024-05-30T00:41:43.592040
22 / tcp

1651973090 | 2024-06-03T04:06:02.114221
80 / tcp

-1979966628 | 2024-06-02T16:48:01.190071
443 / tcp