GeneralInformation

Hostnames	ec2-54-93-140-127.eu-central-1.compute.amazonaws.com sonobeacon.com
Domains	amazonaws.com sonobeacon.com
Cloud Provider	Amazon
Cloud Region	eu-central-1
Cloud Service	EC2
Country	Germany
City	Frankfurt am Main
Organization	A100 ROW GmbH
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

UI frameworks

Bootstrap4.1.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2018-14042	4.3In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.
CVE-2018-14041	4.3In Bootstrap before 4.1.2, XSS is possible in the data-target property of scrollspy.
CVE-2018-14040	4.3In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.

OpenPorts

80 443

1166640714 | 2024-05-12T04:05:51.772744

80 / tcp

HTTP/1.1 200 OK
Date: Sun, 12 May 2024 04:05:51 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 2752
Connection: keep-alive
Server: nginx/1.20.0
X-Powered-By: Express
Accept-Ranges: bytes
ETag: W/"ac0-4RuyAyeZMWaR2atwrB3SDnyFtDw"
Vary: Accept-Encoding

1166640714 | 2024-05-12T17:23:13.531134

443 / tcp

HTTP/1.1 200 OK
Date: Sun, 12 May 2024 17:23:13 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 2752
Connection: keep-alive
Server: nginx/1.20.0
X-Powered-By: Express
Accept-Ranges: bytes
ETag: W/"ac0-4RuyAyeZMWaR2atwrB3SDnyFtDw"
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            08:6a:10:a6:db:7f:fe:e8:43:b9:9c:f0:97:ee:78:5b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: May 10 00:00:00 2024 GMT
            Not After : Jun  8 23:59:59 2025 GMT
        Subject: CN=sonobeacon.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a4:e1:e4:38:f1:01:92:4c:a7:06:7b:4d:1b:fd:
                    d0:5e:8d:41:7e:97:d9:c5:ad:64:e4:91:45:8f:37:
                    1c:ca:06:9a:4d:ab:d6:76:12:20:49:d1:b7:13:ee:
                    3c:9d:f4:32:3e:89:17:77:2f:79:db:28:25:54:10:
                    84:0e:bf:8e:90:e0:81:08:a4:f5:10:cc:4c:25:cd:
                    45:7c:5d:39:a9:cc:93:23:74:d4:b2:d5:c9:ec:ba:
                    fb:78:07:6f:e4:e1:aa:b6:39:28:dc:a1:63:55:43:
                    d1:7f:37:0c:51:94:5d:f6:2a:46:b0:06:e1:00:7d:
                    99:04:ae:19:72:73:dd:7d:1e:ef:78:05:3e:d5:02:
                    04:c9:9c:34:60:21:dc:71:d4:ae:b0:21:86:93:55:
                    b2:52:ab:48:7f:64:93:62:5e:35:3f:89:87:dd:79:
                    5b:c2:34:16:4e:97:f0:12:ba:b1:8b:67:9c:f1:af:
                    23:b6:cf:e3:92:0e:df:9e:75:07:92:4c:d9:a9:f3:
                    63:87:30:97:65:a0:81:17:85:eb:99:17:36:10:14:
                    3f:fd:7c:41:69:98:4f:89:5f:a7:ad:9d:b1:df:75:
                    97:6a:39:81:1e:11:aa:42:cf:02:d3:e0:e1:a1:c3:
                    87:d6:99:47:35:37:96:ac:16:39:7a:26:bb:84:90:
                    61:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                E9:32:7B:40:F6:E6:F2:56:D9:FC:8D:34:73:FA:17:33:04:8A:E7:3D
            X509v3 Subject Alternative Name: 
                DNS:sonobeacon.com, DNS:*.sonobeacon.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : May 10 00:20:58.747 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B8:60:88:8E:B0:5D:91:00:67:FE:A6:
                                4D:3B:96:30:E7:7C:E9:2C:69:1B:FB:3B:05:FC:DC:C2:
                                79:E8:2B:23:5E:02:20:65:CE:D9:40:30:C2:DD:3E:C3:
                                42:48:A2:37:CF:C6:07:8D:BC:85:2A:44:E8:E2:82:49:
                                A2:1B:43:83:3E:16:D1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : May 10 00:20:58.693 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E5:E7:C0:69:D3:3E:9C:DA:28:D5:1D:
                                50:F5:DB:3D:C8:75:49:BE:F6:A5:A3:3C:CF:6A:18:AA:
                                B9:A0:27:BE:F1:02:20:68:5F:60:1B:26:9F:62:B2:5B:
                                93:08:6A:4B:10:E2:4D:4B:A2:38:AF:F0:E8:EF:9E:D2:
                                EB:55:3F:E1:26:12:83
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : May 10 00:20:58.718 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:73:31:73:85:76:B0:14:48:CF:0D:77:C3:
                                6E:D2:77:BB:2D:F8:C4:EC:03:63:36:BA:70:E9:8C:93:
                                7D:DC:9A:C9:02:20:23:97:4F:67:9E:D9:12:A2:F6:7B:
                                B9:9E:64:90:12:9B:74:90:EB:BA:18:76:4A:8D:A1:24:
                                2D:7C:9D:8A:BF:00
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        00:b3:95:d3:25:31:0c:dc:2c:18:97:1a:91:97:f8:f7:cb:76:
        31:bc:0d:4f:c5:91:51:f6:86:54:a0:42:9d:47:33:58:34:e3:
        1f:91:63:9a:18:f1:9a:36:9c:44:1a:6e:19:af:3f:05:88:ae:
        37:e2:6e:6d:17:22:1b:78:de:5d:7e:53:59:49:91:5e:ee:c7:
        e5:fd:93:ca:89:f5:71:dd:d6:3c:14:65:ad:84:12:70:ce:7a:
        71:cf:d3:52:ca:bb:48:cf:ad:fe:fa:14:83:d9:aa:f2:76:e8:
        d3:d0:bc:a3:6a:93:1f:1c:13:26:75:3a:1b:9d:06:37:b1:39:
        2e:3a:fc:df:55:1e:03:eb:48:f9:d7:35:6e:d4:29:72:84:42:
        b2:20:05:1a:68:44:84:60:6a:7b:e0:02:61:21:12:44:0d:31:
        fd:db:b2:e4:60:4f:0c:3f:47:83:c4:4d:af:25:0b:6c:4c:39:
        47:7e:17:ce:09:8a:9d:66:b7:e7:cd:bb:bc:32:e6:a7:c3:37:
        a9:b1:e4:a8:23:83:90:35:f7:93:e3:85:31:3d:c7:b1:93:a6:
        ac:ed:05:5b:c7:16:3d:2e:b3:bd:b9:32:50:b6:df:7f:4f:39:
        c8:66:9a:04:49:1b:17:fb:29:31:b0:6b:49:d6:38:a1:07:58:
        45:a1:5d:b4

54.93.140.127

Last Seen: 2024-05-12

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1166640714 | 2024-05-12T04:05:51.772744
80 / tcp

nginx1.20.0

1166640714 | 2024-05-12T17:23:13.531134
443 / tcp

nginx1.20.0

Products

Pricing

Contact Us

54.93.140.127

Last Seen: 2024-05-12

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1166640714 | 2024-05-12T04:05:51.772744 80 / tcp

nginx1.20.0

1166640714 | 2024-05-12T17:23:13.531134 443 / tcp

nginx1.20.0

Products

Pricing

Contact Us

1166640714 | 2024-05-12T04:05:51.772744
80 / tcp

1166640714 | 2024-05-12T17:23:13.531134
443 / tcp