GeneralInformation

Hostnames	ec2-54-69-219-111.us-west-2.compute.amazonaws.com consult.dev.smdinfra.net consult-internal.dev.smdinfra.net consult-sidecar.dev.smdinfra.net medops.dev.smdinfra.net partner.dev.smdinfra.net
Domains	amazonaws.com smdinfra.net
Cloud Provider	Amazon
Cloud Region	us-west-2
Cloud Service	EC2
Country	United States
City	Boardman
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

JavaScript libraries

jQuery

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

1949896279 | 2024-04-28T08:46:47.394739

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Sun, 28 Apr 2024 08:46:47 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://54.69.219.111:443/

-1071118094 | 2024-05-01T22:34:45.270814

443 / tcp

HTTP/1.1 200 OK
Date: Wed, 01 May 2024 22:34:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 7456
Connection: keep-alive
Server: nginx/1.20.2
Expires: Wed, 01 May 2024 22:34:45 GMT
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, private
X-Frame-Options: DENY
Feature-Policy: sync-xhr 'none';
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self' https://*.steadymd.com; img-src 'self' https://*.steadymd.com https://*.amazonaws.com; style-src 'self' https://*.steadymd.com https://fonts.googleapis.com 'unsafe-inline'; font-src 'self' https://*.steadymd.com https://fonts.gstatic.com; script-src 'self' 'unsafe-inline'; frame-src 'self'; frame-ancestors 'none'; form-action 'self'; base-uri 'self';
Vary: Cookie

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:26:20:aa:c3:ce:f0:1b:8c:fa:c8:97:b7:6f:b1:58
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Jun 27 00:00:00 2023 GMT
            Not After : Jul 25 23:59:59 2024 GMT
        Subject: CN=consult.dev.smdinfra.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a1:07:6e:79:d2:f5:1c:c3:82:ff:e0:30:ff:16:
                    88:06:e6:a1:94:a0:35:9b:5d:df:69:44:9c:92:f2:
                    36:3e:22:8e:c7:90:83:f1:ec:6f:00:58:66:0f:99:
                    cd:4c:e0:81:af:93:3f:77:a4:74:43:3d:30:8b:3a:
                    e6:c6:e9:cd:ff:a3:c7:35:6d:e0:2a:4b:dc:6b:e7:
                    d1:94:c4:f9:d9:c9:33:04:05:9c:ef:60:63:6f:0c:
                    f5:67:38:32:7c:86:b4:a0:c9:04:0a:bb:73:30:9f:
                    3d:69:2b:69:ca:cb:fc:d1:32:20:85:8c:4b:2b:1a:
                    94:56:d6:18:a0:53:01:a8:6d:b4:19:7e:25:6b:ec:
                    97:de:2b:aa:ef:6f:76:e6:f9:85:79:41:cd:bb:a1:
                    00:93:c1:34:80:3d:72:be:ff:0f:28:ca:c5:5f:ba:
                    c1:5c:15:eb:2a:34:a3:15:7b:7b:32:40:a1:99:46:
                    8e:61:5b:5d:8c:09:87:6a:15:18:cd:9c:fb:8e:32:
                    3d:11:81:e1:0b:df:85:1f:af:d7:34:e4:9d:ae:48:
                    da:62:6a:30:ec:b9:93:4e:ec:76:e3:fd:30:15:1e:
                    2b:ea:52:56:1d:35:4b:2b:e8:b6:58:11:43:b6:96:
                    73:c6:5c:66:45:9b:1e:41:c6:4d:e2:55:8e:bc:c7:
                    47:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                C5:55:AA:17:CC:A3:2A:1D:9B:06:BF:90:43:DD:18:46:6C:17:B2:73
            X509v3 Subject Alternative Name: 
                DNS:consult.dev.smdinfra.net, DNS:consult-sidecar.dev.smdinfra.net, DNS:consult-internal.dev.smdinfra.net, DNS:partner.dev.smdinfra.net, DNS:medops.dev.smdinfra.net
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Jun 27 14:14:47.740 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:84:45:97:B7:D4:F1:7B:83:1D:EE:0F:
                                CE:4A:3A:23:07:55:5A:C0:4B:90:A4:8A:68:AB:FE:8E:
                                4A:D4:5A:3D:01:02:21:00:E6:70:1A:C7:28:45:C5:F8:
                                B1:C8:71:B0:F4:33:8D:84:9C:EC:19:A3:72:A0:EF:77:
                                9B:2D:75:2C:4C:D4:3D:A3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Jun 27 14:14:47.783 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B3:AE:57:8C:18:62:A0:1A:24:9F:6D:
                                E9:B7:CE:76:9B:FC:4E:9C:85:F1:56:E1:0E:C6:B1:8A:
                                54:9F:69:26:D9:02:20:7C:FA:03:D0:C3:1E:68:FE:BB:
                                D2:7A:D6:CB:AB:82:5C:A3:5A:BA:11:17:AE:47:8A:5B:
                                A4:77:C3:12:4F:57:9B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Jun 27 14:14:47.806 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:55:C5:F3:4E:9F:83:76:51:53:E7:46:1A:
                                3E:5D:48:80:D5:BD:07:C0:40:17:16:9D:79:D4:88:4F:
                                85:AC:A3:B4:02:20:40:30:86:48:9B:0E:90:1B:BD:D3:
                                21:C1:27:4A:64:F1:97:3E:CF:DC:EE:4F:7E:4E:F5:F4:
                                83:EF:92:87:B8:DA
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7f:6e:61:0f:d1:e2:23:dc:74:e7:ae:7e:76:c2:14:3e:ec:26:
        ef:bf:fe:05:c9:f2:55:9f:0d:c9:5f:a3:be:3f:b0:42:77:85:
        c6:f9:1d:64:bc:0f:ab:af:15:f0:d8:5e:2f:3c:51:ec:be:54:
        41:6b:ca:b5:00:d5:d8:ce:c6:34:41:88:be:a0:17:e1:3e:3e:
        21:fa:51:e0:8f:5f:b6:d7:34:da:44:75:db:78:16:8b:6a:09:
        6b:3d:39:ac:4c:6e:2f:ff:88:60:a4:7e:69:d9:d3:cc:35:b9:
        a4:cd:19:b1:e4:bb:45:75:ad:90:22:c7:d0:1d:c9:55:e0:a4:
        b5:75:19:0d:1b:8c:29:36:40:0c:fc:47:8c:26:e4:69:6b:7e:
        95:69:07:96:f9:3f:31:52:f3:9b:fb:e6:e5:1e:dd:9d:32:6c:
        fc:ef:11:22:73:4b:bd:4e:89:1e:24:a3:15:0b:cf:12:38:80:
        12:53:37:2a:34:55:58:44:b1:62:05:90:18:c7:42:bb:6c:3b:
        24:8e:e6:d6:aa:b0:66:1c:63:20:0d:ab:e7:79:5a:2e:4b:1a:
        73:f3:8e:e2:7e:6d:65:66:28:5a:8c:57:7c:7e:0f:e2:b7:3c:
        05:47:da:b3:ef:d1:34:50:43:32:48:c4:bf:b3:98:09:6c:08:
        92:3b:bc:1b

54.69.219.111

Last Seen: 2024-05-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1949896279 | 2024-04-28T08:46:47.394739
80 / tcp

AWS ELB2.0

-1071118094 | 2024-05-01T22:34:45.270814
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

54.69.219.111

Last Seen: 2024-05-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1949896279 | 2024-04-28T08:46:47.394739 80 / tcp

AWS ELB2.0

-1071118094 | 2024-05-01T22:34:45.270814 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

1949896279 | 2024-04-28T08:46:47.394739
80 / tcp

-1071118094 | 2024-05-01T22:34:45.270814
443 / tcp