GeneralInformation

Hostnames	ec2-99-80-112-84.eu-west-1.compute.amazonaws.com api.preorders-staging.divinea.com api.preorders.divinea.com
Domains	amazonaws.com divinea.com
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

1410193794 | 2024-05-13T01:42:32.856087

80 / tcp

HTTP/1.1 404 
Date: Mon, 13 May 2024 01:42:32 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 431
Connection: keep-alive
Server: nginx/1.20.0
Content-Language: en

1410193794 | 2024-05-16T17:21:24.867096

443 / tcp

HTTP/1.1 404 
Date: Thu, 16 May 2024 17:21:24 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 431
Connection: keep-alive
Server: nginx/1.20.0
Content-Language: en

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:8a:8b:c5:1b:c2:be:04:2d:73:00:cc:fd:33:77:2e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M01
        Validity
            Not Before: Aug 16 00:00:00 2023 GMT
            Not After : Sep 13 23:59:59 2024 GMT
        Subject: CN=api.preorders-staging.divinea.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:60:00:a5:ae:30:5d:f1:29:b0:46:cf:c3:25:
                    d5:cb:c2:8e:fd:2e:8e:58:df:54:5c:3d:d9:9d:1f:
                    21:5b:a7:ef:3f:83:bb:a8:21:46:85:21:cd:15:04:
                    2a:fc:b3:aa:b0:27:37:c1:50:9d:42:05:42:d5:90:
                    5f:fc:a8:34:33:03:52:e7:ac:ff:e4:cb:fc:8f:a3:
                    33:87:e6:06:9b:19:05:46:02:fb:48:3b:05:bf:99:
                    38:5a:fa:5e:c7:73:5c:45:55:4e:3d:70:59:21:dc:
                    93:36:47:95:19:fe:cb:34:d3:91:79:68:e9:7d:c7:
                    bc:23:79:0f:f9:68:0c:1d:8e:d5:35:e8:ed:01:28:
                    d2:c9:82:e8:b5:f9:fe:c9:b7:2e:8c:1a:6d:4b:5b:
                    b9:67:f1:d9:f4:3f:d3:42:47:1b:88:51:3b:1e:e7:
                    90:5e:eb:e3:79:f4:9d:4f:3c:5a:2f:3c:a0:dd:fe:
                    1d:33:5f:1d:aa:9c:cf:01:a5:74:fe:33:61:63:08:
                    79:b9:46:7c:37:25:58:39:df:dc:ec:e9:19:97:68:
                    5b:db:b8:a9:1d:4f:65:4a:9e:2c:e3:8d:48:8c:20:
                    46:80:8e:20:03:61:19:cc:1d:de:1c:a6:3a:e2:bc:
                    e0:3b:36:8d:e6:ce:f7:8e:51:f8:0e:50:9b:4b:87:
                    d1:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                81:B8:0E:63:8A:89:12:18:E5:FA:3B:3B:50:95:9F:E6:E5:90:13:85
            X509v3 Subject Key Identifier: 
                B2:EC:0C:1B:E3:D8:9D:3E:87:9A:04:71:7F:E7:A9:72:D4:88:DC:A8
            X509v3 Subject Alternative Name: 
                DNS:api.preorders-staging.divinea.com, DNS:api.preorders.divinea.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m01.amazontrust.com/r2m01.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m01.amazontrust.com
                CA Issuers - URI:http://crt.r2m01.amazontrust.com/r2m01.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Aug 16 00:31:47.812 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:97:7F:AC:86:A2:92:60:07:D1:B4:30:
                                70:B3:BA:E9:9E:CA:9D:6D:54:34:14:B9:C2:79:B3:5F:
                                8D:AF:0D:40:01:02:21:00:81:33:92:F7:39:C4:6C:15:
                                FD:A6:13:C2:52:4F:B9:22:DF:74:CF:26:7D:2B:86:89:
                                05:AD:1B:B4:FB:47:43:9B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Aug 16 00:31:47.759 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:BF:68:0F:F8:29:5B:B5:77:5B:18:23:
                                CA:68:91:FD:A4:8F:CD:12:F0:8D:C4:59:BD:66:D0:A0:
                                73:F4:22:76:43:02:20:6B:61:6E:99:82:2D:18:7F:E7:
                                EE:C8:6F:0E:F9:57:EA:5C:03:BE:E9:2D:D4:9E:FB:3A:
                                03:EB:AB:DB:4E:FA:9A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Aug 16 00:31:47.716 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:27:CF:B3:3A:36:E9:EC:6F:FE:33:82:52:
                                B8:BF:70:DC:4F:E8:92:D6:AF:E4:69:06:F5:83:E2:8C:
                                30:F2:79:FF:02:21:00:AA:82:72:05:B7:07:AD:ED:D6:
                                77:F8:D7:2E:6F:F5:EE:E3:B6:1B:B2:A3:50:13:79:D0:
                                D9:3F:2E:CD:6E:C8:51
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b1:b6:83:2b:8c:03:e4:58:6f:8e:48:64:cb:2c:5c:99:52:5b:
        f4:17:8f:c7:71:5c:c7:4e:37:eb:ad:82:b3:20:cb:f6:2a:98:
        5e:2a:81:fa:30:d4:8b:19:31:bb:3b:62:f3:79:70:ae:0e:91:
        c4:45:29:9f:b9:3d:33:35:98:16:44:e5:14:91:d2:f9:f0:e9:
        5b:f7:70:35:f7:8b:c8:a4:b9:76:8e:b2:e6:94:5c:ea:10:99:
        37:d7:da:71:f7:ff:f7:b3:3c:05:e5:a6:b0:62:21:f9:39:9d:
        e4:33:f6:77:49:d0:6d:41:d0:46:c4:40:5c:b0:03:8d:bf:3d:
        7e:b9:95:f1:cd:a2:36:71:1b:1c:31:6e:92:f3:21:fa:e7:f4:
        66:66:87:d2:67:31:e2:aa:1f:0f:37:d3:3d:e2:16:63:05:cd:
        71:89:df:47:f6:73:64:32:04:ce:7e:83:44:90:eb:b0:95:96:
        b6:43:0f:04:26:91:7c:57:4f:27:cd:87:42:d0:c6:2f:bc:6c:
        fa:70:fc:10:ba:aa:6a:3d:43:8f:6a:65:6d:f8:ad:1c:69:1e:
        46:ce:90:f7:aa:01:73:3e:a1:2a:c9:ed:7d:3f:02:ae:69:60:
        bf:a3:d2:20:ce:98:8a:35:c8:23:88:5a:fe:dd:c5:87:01:84:
        aa:b6:f0:6b

99.80.112.84

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1410193794 | 2024-05-13T01:42:32.856087
80 / tcp

nginx1.20.0

1410193794 | 2024-05-16T17:21:24.867096
443 / tcp

nginx1.20.0

Products

Pricing

Contact Us

99.80.112.84

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1410193794 | 2024-05-13T01:42:32.856087 80 / tcp

nginx1.20.0

1410193794 | 2024-05-16T17:21:24.867096 443 / tcp

nginx1.20.0

Products

Pricing

Contact Us

1410193794 | 2024-05-13T01:42:32.856087
80 / tcp

1410193794 | 2024-05-16T17:21:24.867096
443 / tcp