GeneralInformation

Hostnames	ec2-50-19-99-139.compute-1.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Data Services NoVa
ISP	Amazon.com, Inc.
ASN	AS14618

WebTechnologies

JavaScript libraries

jQuery

Select2

UI frameworks

Bootstrap3

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(6)

CVE-2024-41937

6.1Apache Airflow, versions before 2.10.0, have a vulnerability that allows the developer of a malicious provider to execute a cross-site scripting attack when clicking on a provider documentation link. This would require the provider to be installed on the web server and the user to click the provider link. Users should upgrade to 2.10.0 or later, which fixes this vulnerability.

CVE-2024-39877

8.8Apache Airflow 2.4.0, and versions before 2.9.3, has a vulnerability that allows authenticated DAG authors to craft a doc_md parameter in a way that could execute arbitrary code in the scheduler context, which should be forbidden according to the Airflow Security model. Users should upgrade to version 2.9.3 or later which has removed the vulnerability.

CVE-2024-39863

5.4Apache Airflow versions before 2.9.3 have a vulnerability that allows an authenticated attacker to inject a malicious link when installing a provider. Users are recommended to upgrade to version 2.9.3, which fixes this issue.

CVE-2024-31869

4.3Airflow versions 2.7.0 through 2.8.4 have a vulnerability that allows an authenticated user to see sensitive provider configuration via the "configuration" UI page when "non-sensitive-only" was set as "webserver.expose_config" configuration (The celery provider is the only community provider currently that has sensitive configurations). You should migrate to Airflow 2.9 or change your "expose_config" configuration to False as a workaround. This is similar, but different to CVE-2023-46288 https://github.com/advisories/GHSA-9qqg-mh7c-chfq which concerned API, not UI configuration page.

CVE-2024-28746

8.1Apache Airflow, versions 2.8.0 through 2.8.2, has a vulnerability that allows an authenticated user with limited permissions to access resources such as variables, connections, etc from the UI which they do not have permission to access. Users of Apache Airflow are recommended to upgrade to version 2.8.3 or newer to mitigate the risk associated with this vulnerability

CVE-2024-25142

5.5Use of Web Browser Cache Containing Sensitive Information vulnerability in Apache Airflow. Airflow did not return "Cache-Control" header for dynamic content, which in case of some browsers could result in potentially storing sensitive data in local cache of the browser. This issue affects Apache Airflow: before 2.9.2. Users are recommended to upgrade to version 2.9.2, which fixes the issue.

OpenPorts

443

443 / tcp

1644835737 | 2025-03-10T17:12:40.662353

Hashes

hash

-933254269

http.dom_hash

170726056

http.favicon.hash

-1625254865

http.html_hash

1644835737

http.robots_hash

-1022729730

http.server_hash

-984292577

http.title_hash

671880692

Airflow - Login - Airflow

HTTP/1.1 200 OK
Server: gunicorn
Date: Mon, 10 Mar 2025 17:12:40 GMT
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 17224
X-Frame-Options: DENY
X-Robots-Tag: noindex, nofollow
Set-Cookie: session=6a498a3d-7c3a-411b-be12-0c9d7b8dcfcb.smbCIf97hPmwmV_DIdLgwNRDBHM; Expires=Wed, 09 Apr 2025 17:12:40 GMT; Secure; HttpOnly; Path=/; SameSite=Lax

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:79:54:37:bd:36:ec:c5:e7:34:a6:8b:4d:1b:fa:73
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Dec 18 00:00:00 2024 GMT
            Not After : Jan 17 23:59:59 2026 GMT
        Subject: CN=*.c74.us-east-1.airflow.amazonaws.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:af:95:4f:68:be:f9:b3:91:98:4a:88:75:ab:1e:
                    e7:0e:1c:f5:cb:62:c1:8c:c2:09:66:9e:e6:5c:d1:
                    16:d6:9a:b6:70:db:9d:dc:68:c0:12:33:ca:57:ab:
                    58:66:86:79:1c:13:43:20:5f:26:30:3d:e7:73:b9:
                    9f:fa:8b:05:26:8c:e6:2d:9f:30:e4:e4:96:ae:a8:
                    65:59:d0:86:5c:a8:c6:a8:92:ae:97:2e:b5:f9:9c:
                    ef:d0:24:5d:21:f2:51:05:b7:ec:98:d2:fe:fa:ef:
                    b3:6c:2f:7b:c7:9e:6e:ff:3b:f3:dc:26:36:42:31:
                    33:27:f8:ad:11:a4:92:60:64:2d:00:2f:7c:8c:ba:
                    85:63:93:99:b5:69:34:65:65:2b:c1:a8:73:d5:71:
                    72:8d:b6:2a:fd:25:8c:b1:8f:8f:ae:9e:8c:be:16:
                    5a:6f:79:cf:8d:b6:63:ec:0b:9f:8b:83:d0:39:39:
                    d2:16:73:7c:8a:b9:7a:bb:cc:72:5f:e3:6f:12:70:
                    f8:aa:e9:4c:9c:ef:ff:62:9d:cc:24:45:6a:d5:22:
                    e0:b6:21:65:ae:43:76:c6:6a:b8:d4:3f:37:73:84:
                    d6:fc:79:06:92:7f:3a:74:6b:2f:92:cd:e2:05:cd:
                    d3:22:8f:05:da:c2:a4:6c:d7:b4:b8:fb:e8:c7:40:
                    92:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                20:6E:6C:C3:2D:AA:4B:7C:95:59:D3:DB:F7:67:03:95:0D:4B:B6:05
            X509v3 Subject Alternative Name: 
                DNS:*.c74.us-east-1.airflow.amazonaws.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 96:97:64:BF:55:58:97:AD:F7:43:87:68:37:08:42:77:
                                E9:F0:3A:D5:F6:A4:F3:36:6E:46:A4:3F:0F:CA:A9:C6
                    Timestamp : Dec 18 01:41:43.153 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D8:58:3B:36:8E:AB:5F:74:20:94:FC:
                                6D:C3:31:82:9B:C3:13:C8:76:0D:6A:60:AF:37:FD:0B:
                                DC:27:00:F3:56:02:21:00:DD:75:5E:1B:58:63:54:FC:
                                3A:FE:86:6C:E2:6E:F7:FA:9F:CC:79:48:AC:A4:E1:A5:
                                C7:5B:B1:D2:37:81:C3:55
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
                                4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
                    Timestamp : Dec 18 01:41:43.125 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B0:9A:05:62:A7:2C:32:46:47:DC:36:
                                79:2E:F0:25:FC:61:2C:77:DF:59:77:3B:43:3F:BA:47:
                                4B:4E:B7:60:A0:02:21:00:9F:E5:2C:3A:2D:9F:59:F2:
                                15:20:ED:50:26:29:AF:07:41:E1:EC:6B:67:0B:9A:92:
                                93:64:BD:CF:13:D7:88:94
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
                                5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
                    Timestamp : Dec 18 01:41:43.137 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A2:10:70:C5:59:47:E9:99:02:71:14:
                                B3:D2:50:A1:11:E2:BC:FD:FB:7D:BF:D7:AA:D5:BE:AC:
                                D2:25:37:E6:BF:02:21:00:E4:C2:E5:64:84:31:BE:A1:
                                C5:D2:A0:25:CF:F4:09:BF:31:8B:1A:B8:74:EA:00:A6:
                                C1:61:64:FE:A7:A9:05:4C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        43:fa:46:bd:d7:00:3e:a9:45:6f:3d:6b:7e:8a:da:17:0b:1a:
        d6:ea:71:9f:28:73:d9:74:3a:13:94:7d:fe:2e:8c:27:79:26:
        ec:42:3f:91:21:3e:8c:5b:da:8a:a2:da:7a:83:f2:6c:4d:0c:
        8c:96:f7:1c:e4:77:d7:26:31:0f:08:f6:4b:4b:41:dd:5c:9d:
        40:f1:15:8a:cc:6d:f4:dd:10:11:54:e1:7e:08:a3:60:c9:d0:
        56:65:b8:16:9d:0b:07:e4:a1:d2:d9:7c:0b:4a:f8:ff:89:c7:
        be:af:aa:15:46:72:e8:5b:19:7f:ac:14:ec:75:58:a8:10:a4:
        af:33:0c:cd:a1:d9:d9:63:97:96:e9:b6:20:6c:dd:81:bc:2f:
        5d:d7:14:1f:8c:aa:f6:52:2c:eb:67:2c:2b:18:04:dc:3c:21:
        bf:13:87:ac:70:bd:bc:29:17:ea:6b:25:76:a3:82:20:e1:7b:
        dc:c4:10:ea:54:4c:02:9d:2a:6c:ab:81:34:fb:a4:55:98:0c:
        ac:6a:91:3e:a4:6b:d2:6d:02:b8:5f:19:7e:46:a0:a5:de:8c:
        f6:76:40:87:15:74:c5:7d:eb:c9:05:5e:66:9c:74:2d:22:80:
        8c:ee:1a:ce:f0:f5:59:20:88:b2:18:f6:8c:2a:55:7e:5e:13:
        01:1a:84:f8

Vulnerabilities

2 4

50.19.99.139

Last Seen: 2025-03-10

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

443 / tcp

1644835737 | 2025-03-10T17:12:40.662353

Hashes

Apache Airflow2.8.1

Products

Pricing

Contact Us

50.19.99.139

Last Seen: 2025-03-10

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

443 / tcp 1644835737 | 2025-03-10T17:12:40.662353

Hashes

Apache Airflow2.8.1

Products

Pricing

Contact Us

Vulnerabilities

443 / tcp

1644835737 | 2025-03-10T17:12:40.662353