GeneralInformation

Hostnames	ec2-63-33-109-49.eu-west-1.compute.amazonaws.com fkra2.prod.atelesaws.net
Domains	amazonaws.com atelesaws.net
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443

897585984 | 2024-10-20T13:52:18.400615

80 / tcp

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Date: Sun, 20 Oct 2024 13:52:17 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Server: nginx/1.20.2
Location: https://63.33.109.49/

CVE-2021-3618 CVE-2023-44487

1256101490 | 2024-10-20T14:38:13.285896

443 / tcp

HTTP/1.1 302 Found
Date: Sun, 20 Oct 2024 14:38:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.20.2
Set-Cookie: PHPSESSID=721a5f3ce573ca5652215fbc9518517f; expires=Sun, 01-Dec-2024 06:38:12 GMT; Max-Age=3600000; path=/; domain=63.33.109.49; secure; HttpOnly; SameSite=Lax
Location: https://bondekompaniet.no/
Content-Security-Policy-Report-Only: font-src *.klarnacdn.net static.lipscore.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.facebook.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com https://www.google.com/recaptcha/ www.googletagmanager.com *.klarna.com *.socialboards.com *.cookiebot.com *.youtube.com *.facebook.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com www.paypalobjects.com t.paypal.com www.paypal.com fpdbs.paypal.com fpdbs.sandbox.paypal.com validator.swagger.io *.klarna.com *.klarnaevt.com *.klarnacdn.net static.lipscore.com blob: img.youtube.com *.ateles.se *.atelesaws.net *.bondekompaniet.no cdn.klarna.com 'self' data: 'unsafe-inline' data: *.cookiebot.com *.facebook.net *.facebook.com *.google.com bat.bing.com googleads.g.doubleclick.net data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com secure.authorize.net test.authorize.net www.googleadservices.com www.google-analytics.com www.paypalobjects.com js.braintreegateway.com www.paypal.com www.sandbox.paypal.com t.paypal.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ www.googletagmanager.com polyfill.io *.klarna.com *.klarnacdn.net *.klarnaservices.com static.lipscore.com *.socialboards.com *.newrelic.com *.nr-data.net *.cookiebot.com *.facebook.net bat.bing.com *.google.com *.google.se 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com *.klarnacdn.net static.lipscore.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com *.ateles.se *.atelesaws.net *.bondekompaniet.no 'self' data: 'unsafe-inline' data: *.cookiebot.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.google-analytics.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.algolia.net *.algolia.com *.algolianet.com *.insights.algolia.io *.klarnaevt.com *.klarnacdn.net *.klarna.com *.klarnaservices.com wapi.lipscore.com users.lipscore.com *.ateles.se *.atelesaws.net *.socialboards.com *.bondekompaniet.no *.google-analytics.com *.google.com *.nr-data.net *.cookiebot.com *.g.doubleclick.net bat.bing.com *.facebook.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src *.atelesaws.net *.socialboards.com *.bondekompaniet.no *.klarna.com *.cookiebot.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Vary: Accept-Encoding
Pragma: no-cache
Expires: -1
Cache-Control: no-store, no-cache, must-revalidate, max-age=0

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0e:0f:82:0b:d1:74:d6:3b:a4:2f:f5:92:5b:87:25:a7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Oct  8 00:00:00 2024 GMT
            Not After : Nov  6 23:59:59 2025 GMT
        Subject: CN=fkra2.prod.atelesaws.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:8b:dd:06:5a:19:36:02:76:bf:e3:64:f3:16:94:
                    f3:4f:c6:a4:e8:f4:3a:26:5d:a2:6d:36:29:fa:b2:
                    de:a1:ca:5e:f5:b4:89:7a:9f:67:6b:ae:85:ff:f4:
                    44:05:24:4e:26:8d:48:fc:a7:fc:5e:e0:06:35:7f:
                    09:3d:13:86:3b:7c:b4:eb:36:c0:07:30:a0:fe:51:
                    5c:59:53:00:8d:0b:77:eb:17:4e:8b:97:fb:6a:6e:
                    b7:5a:06:49:0f:b2:57:3f:39:00:5f:b8:65:56:66:
                    d7:10:c9:e5:9c:36:a3:7b:8e:1b:7c:7e:b3:5f:3f:
                    d5:97:ee:f5:e0:90:fe:ca:56:47:dd:43:66:6e:01:
                    e2:71:07:2b:c8:69:93:22:c6:ac:8e:39:0c:0e:97:
                    83:70:63:58:4f:66:66:46:45:30:ff:a4:ab:a8:37:
                    62:82:dc:6a:2c:e4:20:6c:f6:4a:41:7e:58:4f:4f:
                    00:7f:2a:dd:d2:d3:02:60:d7:92:cb:4f:39:27:33:
                    5b:f9:ad:00:e4:40:c4:4d:16:9f:25:c1:12:d2:15:
                    44:00:d4:15:07:ea:69:93:9d:cb:4b:bc:68:29:02:
                    04:58:13:b1:d9:88:4f:bb:02:57:ca:98:05:b4:21:
                    d9:fb:13:14:fc:df:8c:a8:db:9b:2f:53:68:96:d5:
                    37:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                18:29:58:76:B9:65:AC:79:1E:3A:1E:27:2F:45:DC:14:1F:7A:A0:8E
            X509v3 Subject Alternative Name: 
                DNS:fkra2.prod.atelesaws.net, DNS:*.fkra2.prod.atelesaws.net, DNS:*.magento.fkra2.prod.atelesaws.net, DNS:*.pimcore.fkra2.prod.atelesaws.net
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
                                3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
                    Timestamp : Oct  8 02:18:25.649 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:85:FE:2D:3D:C7:F4:23:1F:02:98:91:
                                A7:71:DB:76:5F:00:22:F6:6B:F6:EA:A7:2C:29:A0:49:
                                C6:8B:E6:AE:7B:02:21:00:EE:A4:1E:56:D5:6C:65:08:
                                15:BB:4E:FE:30:62:7D:6E:B9:20:46:39:6B:32:1F:14:
                                54:FE:54:E4:4D:10:7D:7F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Oct  8 02:18:25.712 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C7:C3:43:B7:52:7E:82:23:A9:C9:7F:
                                B9:22:C0:81:20:47:46:56:E5:C4:1E:53:39:7C:3A:B4:
                                10:E5:C3:80:E8:02:20:2F:5F:DC:7A:FF:6C:68:80:A7:
                                8B:6A:2C:C5:6C:67:72:03:FA:D1:9A:18:24:3E:DE:EB:
                                73:24:05:EF:F5:9E:95
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Oct  8 02:18:25.618 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E8:1D:BE:E7:23:8A:A6:FF:83:60:82:
                                34:13:DB:00:12:2D:C7:F1:BC:B7:38:D6:FF:B8:03:9C:
                                D8:F5:C6:69:C4:02:21:00:A5:4C:32:B1:5D:9A:BE:AE:
                                95:B2:83:03:6B:01:B0:ED:68:AF:7A:4C:43:F7:C5:E1:
                                EF:CB:8A:E4:E3:2E:F2:8E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        ad:2e:b1:8c:4d:5d:8e:a9:ac:3b:b4:32:6a:3d:6c:0a:c9:d8:
        a6:99:fa:8d:89:9b:e1:61:3d:29:ee:d0:68:81:ec:66:c2:e6:
        11:61:67:3a:0e:49:5c:15:ea:4c:e2:73:7a:41:3b:18:a2:9a:
        2a:ba:aa:c9:af:3a:c6:39:83:36:6f:52:f7:0e:32:d6:8c:2f:
        fb:98:e9:30:c5:24:79:df:e2:bc:25:95:46:bf:a5:ff:57:63:
        c2:0e:13:c4:3a:57:6f:a2:6e:a8:96:1f:c0:cc:a3:82:90:ec:
        d0:2a:b5:2b:af:ec:f3:1a:20:bd:5d:1b:90:66:0b:41:b5:24:
        79:87:a5:78:03:4c:cc:b4:54:3b:ef:b6:b6:d4:3f:9a:0f:08:
        d3:71:a7:13:01:3a:c1:ed:2a:2f:2e:60:b5:27:4c:6f:1d:e0:
        1a:41:84:12:57:ec:c2:74:0f:56:46:34:71:3a:a7:33:70:d0:
        b3:f1:68:75:67:03:01:b5:af:41:92:9a:8a:56:35:c7:38:05:
        a7:5c:fc:8b:29:45:1d:b6:ea:5e:dc:85:86:76:95:2e:25:be:
        a6:58:a5:ad:87:d8:25:41:be:2e:d8:e2:d6:49:e9:07:74:93:
        96:05:a4:ad:e4:13:14:df:bd:f1:8a:95:44:b6:b9:ce:66:a2:
        59:c2:74:b3

CVE-2021-3618 CVE-2023-44487

63.33.109.49

Last Seen: 2024-10-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

897585984 | 2024-10-20T13:52:18.400615
80 / tcp

nginx1.20.2

1256101490 | 2024-10-20T14:38:13.285896
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

63.33.109.49

Last Seen: 2024-10-20

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

897585984 | 2024-10-20T13:52:18.400615 80 / tcp

nginx1.20.2

1256101490 | 2024-10-20T14:38:13.285896 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

Vulnerabilities

897585984 | 2024-10-20T13:52:18.400615
80 / tcp

1256101490 | 2024-10-20T14:38:13.285896
443 / tcp