GeneralInformation

Hostnames	ec2-52-68-149-75.ap-northeast-1.compute.amazonaws.com d-skylab.com
Domains	amazonaws.com d-skylab.com
Cloud Provider	Amazon
Cloud Region	ap-northeast-1
Cloud Service	EC2
Country	Japan
City	Tokyo
Organization	Amazon Data Services Japan
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

Authentication

Okta2.13.0

UI frameworks

Bootstrap3.3.7

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(1)

CVE-2024-6484

6.4A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks. The issue is present in the carousel component, where the data-slide and data-slide-to attributes can be exploited through the href attribute of an <a> tag due to inadequate sanitization. This vulnerability could potentially enable attackers to execute arbitrary JavaScript within the victim's browser.

2019(1)

CVE-2019-8331

6.1In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.

2018(4)

CVE-2018-20677

6.1In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.

CVE-2018-20676

6.1In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.

CVE-2018-14042

6.1In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.

CVE-2018-14040

6.1In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.

2016(1)

CVE-2016-10735

6.1In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.

OpenPorts

80 443

80 / tcp

586257981 | 2025-03-16T11:09:01.590149

Hashes

hash

-1250247429

http.dom_hash

-2006505642

http.html_hash

586257981

HTTP/1.1 403 Forbidden
Date: Sun, 16 Mar 2025 11:09:01 GMT
Content-Type: application/json
Content-Length: 136
Connection: keep-alive
x-amzn-requestid: 033399ca-0b3c-4fa4-a02f-d43edf111bf6
access-control-allow-origin: *

443 / tcp

1348151680 | 2025-03-09T10:03:22.003625

Hashes

hash

-347302727

http.dom_hash

1645930380

http.html_hash

1348151680

http.server_hash

-1484149211

http.title_hash

-1306455457

Okta Hosted Login in Flask

HTTP/1.1 200 OK
Date: Sun, 09 Mar 2025 10:03:21 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5321
Connection: keep-alive
Server: Werkzeug/2.3.7 Python/3.9.18
X-Frame-Options: DENY
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            30:b9:ae:57:a3:75:8b:c3:01:da:a6:2e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign RSA OV SSL CA 2018
        Validity
            Not Before: Feb  4 02:39:05 2025 GMT
            Not After : Mar  8 02:39:04 2026 GMT
        Subject: C=JP, ST=Tokyo, L=Chiyoda-ku, O=NTT DOCOMO, INC., CN=*.d-skylab.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c4:05:3e:83:91:68:81:05:98:71:29:23:88:c0:
                    b2:24:cc:bc:87:ef:9e:e7:5d:47:ce:f8:9c:bf:7c:
                    4b:31:8d:d1:92:df:98:e9:48:68:08:4a:2e:66:df:
                    8f:08:60:67:7e:62:01:fe:82:d8:4c:37:35:89:ea:
                    95:0a:86:30:de:23:1c:3e:9e:3f:f3:2f:65:7f:99:
                    a1:76:5d:f2:32:3e:dc:04:04:a0:d3:5d:1d:5e:59:
                    7c:67:a4:49:63:19:d1:b6:85:a9:c0:5c:50:58:ec:
                    d4:7e:18:21:b3:fe:a1:f0:2a:fc:42:63:51:fc:77:
                    f5:b5:d1:5a:6a:bf:d7:e6:e8:26:17:ee:ae:f9:3d:
                    58:7e:d7:10:96:c4:f6:52:71:9a:eb:05:5c:f4:78:
                    66:97:80:7e:24:be:fa:21:29:96:e8:cc:75:68:84:
                    32:5b:1c:77:b1:b1:a9:98:3e:36:ed:e1:90:c2:3e:
                    5a:9c:8c:93:57:7a:43:0f:93:75:d3:82:1c:89:42:
                    a3:8f:fa:e3:dd:60:47:3d:97:df:a3:62:12:77:19:
                    23:01:30:fb:1f:c7:57:bc:d5:f3:38:c4:69:8a:c3:
                    66:31:29:f7:a8:e6:20:fc:36:f7:28:15:d4:e8:27:
                    02:c6:87:d4:9e:e2:69:65:00:d2:13:b9:4f:26:d2:
                    63:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
                OCSP - URI:http://ocsp.globalsign.com/gsrsaovsslca2018
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsrsaovsslca2018.crl
            X509v3 Subject Alternative Name: 
                DNS:*.d-skylab.com, DNS:d-skylab.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                F8:EF:7F:F2:CD:78:67:A8:DE:6F:8F:24:8D:88:F1:87:03:02:B3:EB
            X509v3 Subject Key Identifier: 
                DD:6B:AD:F5:16:D8:73:E7:D7:8C:A4:76:A9:D3:C1:74:F4:C0:9A:A7
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:86:D4:C7:28:AA:6F:FE:BA:03:6F:78:2A:4D:01:91:
                                AA:CE:2D:72:31:0F:AE:CE:5D:70:41:2D:25:4C:C7:D4
                    Timestamp : Feb  4 02:39:09.020 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AE:59:8E:F0:66:95:A1:39:E7:42:50:
                                88:44:B0:99:38:9A:ED:F8:91:AA:D0:32:14:52:2A:7F:
                                9F:94:E1:2E:62:02:20:2F:98:2A:DD:46:44:B1:F3:2C:
                                96:23:C2:24:29:A2:1E:54:F7:17:88:40:4F:32:36:B1:
                                54:A9:50:F8:1E:32:48
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
                                4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
                    Timestamp : Feb  4 02:39:08.874 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:69:81:DB:A6:71:46:D3:97:9D:CE:38:2F:
                                53:A9:41:92:D3:13:FD:EA:9B:E7:A4:E3:A0:85:31:72:
                                77:83:53:3D:02:20:22:E9:79:60:91:04:B4:E2:ED:FE:
                                75:27:3C:09:4A:8D:C9:5D:0D:41:F2:59:AA:DE:4B:7D:
                                4F:52:26:3B:A7:A1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0E:57:94:BC:F3:AE:A9:3E:33:1B:2C:99:07:B3:F7:90:
                                DF:9B:C2:3D:71:32:25:DD:21:A9:25:AC:61:C5:4E:21
                    Timestamp : Feb  4 02:39:09.225 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:38:5A:9B:D4:94:94:71:92:2A:05:68:F9:
                                8E:01:44:6F:4B:3A:A3:34:AA:76:D5:ED:AD:E5:16:20:
                                51:46:93:9D:02:20:4C:AE:48:25:E4:9B:5C:69:40:6D:
                                5A:1E:D7:C6:2E:EA:AD:57:53:1F:32:D8:57:9A:D4:34:
                                81:C1:B9:BB:0B:65
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        90:7c:78:6b:61:4e:c3:2b:35:4c:1d:61:10:41:c7:66:0a:17:
        d8:b3:b1:08:ee:ea:86:c1:15:ae:e0:45:29:fe:a0:40:c7:6b:
        d1:cc:cf:a7:8c:3c:cf:5e:00:e1:08:93:a7:29:ca:f6:08:e3:
        bc:07:f3:80:8f:6c:34:0f:34:b1:03:a1:28:3b:5d:18:1f:20:
        73:34:a8:cb:bd:66:31:70:d1:d1:df:19:a4:91:e4:e3:3e:24:
        32:f3:7a:cb:52:fd:c9:b6:2e:be:8d:7a:84:94:f9:bd:4c:3b:
        a0:be:13:83:55:9d:af:88:14:38:ec:7c:92:0f:e0:1e:ac:3d:
        bc:a5:44:a7:76:42:f1:5a:5d:a1:84:7e:e0:c6:65:41:38:16:
        0e:e8:4d:f9:8e:24:17:e2:d9:0e:ee:d7:a3:37:bc:68:f7:f5:
        85:ea:52:45:6b:b2:b5:3b:10:7e:f5:d1:7e:c7:bf:2f:5f:5e:
        49:e2:69:95:a4:c5:f0:0d:31:7c:0e:24:9d:e4:b7:f1:1e:80:
        82:18:8c:10:59:a8:1e:5c:01:7c:78:1a:cf:68:28:28:f5:54:
        25:54:1a:30:37:93:6a:e2:25:8e:06:3e:96:b8:64:7f:38:8c:
        d6:e0:d1:21:9e:59:1f:45:8e:1a:e3:5c:29:7c:8e:31:c6:32:
        61:ee:91:84

Vulnerabilities

52.68.149.75

Last Seen: 2025-03-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

586257981 | 2025-03-16T11:09:01.590149

Hashes

443 / tcp

1348151680 | 2025-03-09T10:03:22.003625

Hashes

Products

Pricing

Contact Us

52.68.149.75

Last Seen: 2025-03-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp 586257981 | 2025-03-16T11:09:01.590149

Hashes

443 / tcp 1348151680 | 2025-03-09T10:03:22.003625

Hashes

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

586257981 | 2025-03-16T11:09:01.590149

443 / tcp

1348151680 | 2025-03-09T10:03:22.003625