GeneralInformation

Hostnames	ec2-99-80-132-51.eu-west-1.compute.amazonaws.com preventiva.com anubis21.preventiva.com backoffice-app.preventiva.com fidelity.preventiva.com formacion.preventiva.com portal-app.preventiva.com sisifo.preventiva.com vpn.preventiva.com www.preventiva.com
Domains	amazonaws.com preventiva.com
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

80 / tcp

1949896279 | 2025-03-29T03:29:38.566105

Hashes

hash

-1604903071

http.dom_hash

-2060582466

http.html_hash

1949896279

http.server_hash

-982608622

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Sat, 29 Mar 2025 03:29:38 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://99.80.132.51:443/

443 / tcp

18302101 | 2025-03-29T21:38:07.464112

Hashes

hash

1448829609

http.dom_hash

-2006505642

http.favicon.hash

-1778537472

http.html_hash

18302101

http.server_hash

-1786963686

HTTP/1.1 400 Bad Request
Date: Sat, 29 Mar 2025 21:38:07 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 11
Connection: keep-alive
Set-Cookie: AWSALB=ohZS5SIaYXHta8A4AFu6xhLrh6qHd09ODXGLh67hSCSPI00M5a6BfgZHa1s7Qg8HFdN/zIJZ+rkh1i0bbDupsqE/j+ZJVyUGfze/AKVFLJVIeJJoD/BracbP3PkS; Expires=Sat, 05 Apr 2025 21:38:07 GMT; Path=/
Set-Cookie: AWSALBCORS=ohZS5SIaYXHta8A4AFu6xhLrh6qHd09ODXGLh67hSCSPI00M5a6BfgZHa1s7Qg8HFdN/zIJZ+rkh1i0bbDupsqE/j+ZJVyUGfze/AKVFLJVIeJJoD/BracbP3PkS; Expires=Sat, 05 Apr 2025 21:38:07 GMT; Path=/; SameSite=None; Secure
Server: nginx/1.18.0
Content-Security-Policy: default-src 'self' https://maps.googleapis.com https://portal-app.preventiva.com https://*.preventiva.com;script-src 'self' 'unsafe-inline' https://maps.googleapis.com https://portal-app.preventiva.com/* https://*.preventiva.com;object-src 'none';img-src 'self' https://portal-app.preventiva.com/* https://maps.gstatic.com/mapfiles/api-3/images https://*.preventiva.com;frame-ancestors 'self' https://*.preventiva.com;base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
X-DNS-Prefetch-Control: off
Expect-CT: max-age=0
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Download-Options: noopen
X-Content-Type-Options: nosniff
Origin-Agent-Cluster: ?1
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-XSS-Protection: 0
ETag: W/"b-EFiDB1U+dmqzx9Mo2UjcZ1SJPO8"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5f:f4:ff:24:93:23:8d:2c:18:53:da:78:f5:83:70:e9
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Extended Validation Secure Server CA
        Validity
            Not Before: Mar  6 00:00:00 2023 GMT
            Not After : Apr  5 23:59:59 2024 GMT
        Subject: serialNumber=A28027332/jurisdictionC=ES/businessCategory=Private Organization, C=ES, ST=Madrid, O=Preventiva Compa\xC3\xB1ia de Seguros Y Reaseguros SA, CN=sisifo.preventiva.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dd:87:75:6d:2e:c5:d5:c3:96:f4:d5:02:4f:19:
                    ba:62:f3:44:3d:9d:7b:5e:a0:22:11:4b:18:fe:b0:
                    ba:4b:5e:86:64:26:16:15:a1:c7:50:98:31:49:76:
                    08:e1:13:0e:05:32:79:0f:2a:75:d1:5e:75:c9:54:
                    a6:5e:ca:d8:56:65:0c:05:42:88:77:f7:0a:17:8b:
                    2b:fe:c7:40:93:70:26:ae:7b:b5:8f:56:10:68:88:
                    85:3c:43:c9:f3:e0:b1:85:05:10:6b:36:66:6d:0c:
                    44:cd:bd:76:ec:c5:f0:3b:59:aa:36:0e:1c:c0:76:
                    1f:27:cb:0c:e6:ad:3c:14:a3:03:08:a7:88:ee:dd:
                    f6:d7:73:66:5f:aa:dd:a2:e9:f6:cd:18:19:28:be:
                    6a:e0:7e:b5:58:fd:d7:72:11:f3:e5:98:d2:59:0c:
                    62:c7:80:a0:60:26:7a:89:2f:24:71:cc:1a:7f:4c:
                    40:bf:2d:e3:47:f1:3a:0c:15:fd:39:30:71:02:b6:
                    b0:1f:c4:cd:07:ac:98:47:70:55:3b:7e:80:3d:b5:
                    ed:04:98:61:25:19:cd:67:02:c6:72:00:cf:60:b8:
                    e4:63:65:8d:eb:cb:47:80:a3:f3:f7:e1:3f:8a:9f:
                    41:06:4b:ef:19:e9:7b:ad:f8:d1:8e:3a:0a:ae:f9:
                    9e:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                2C:69:FF:80:C9:87:90:AE:34:E1:B4:E7:4C:93:85:99:40:E9:A7:B2
            X509v3 Subject Key Identifier: 
                A6:6E:A0:A1:A0:0D:C2:56:34:CE:4C:11:C6:D4:17:82:03:E8:44:B2
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.1.5.1
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar  6 10:58:00.604 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D9:45:B9:D5:0A:99:74:D6:9A:7B:78:
                                3D:41:DD:C6:AA:44:30:BF:81:B7:A7:01:60:06:E8:52:
                                6C:13:10:30:44:02:20:6A:52:9C:D7:0E:50:44:76:ED:
                                7E:66:94:23:B4:FF:68:60:83:E5:1B:05:E0:D6:53:F6:
                                A9:33:F8:22:E7:FD:90
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Mar  6 10:58:00.694 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E2:83:DE:1A:F7:07:05:AF:EC:6A:71:
                                80:E2:1C:DE:0F:7F:5C:00:54:31:33:05:DE:67:C1:23:
                                41:59:9B:74:CF:02:21:00:8A:B2:F4:CB:96:D8:6A:5A:
                                85:8F:75:5F:25:6C:1A:F6:DB:F5:29:B9:20:8F:28:05:
                                65:07:9D:CB:7A:06:23:28
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar  6 10:58:00.691 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:15:51:4D:77:C0:AF:85:49:21:0F:A5:B3:
                                B3:F8:2B:E6:56:1C:ED:39:07:A1:98:C6:03:F1:27:01:
                                E3:19:5A:7D:02:21:00:A2:2F:E1:9F:48:32:59:C1:60:
                                D1:29:78:93:DD:19:D4:47:E8:3A:3B:4B:7B:82:C8:6A:
                                3D:99:0F:DF:77:5F:D4
            X509v3 Subject Alternative Name: 
                DNS:sisifo.preventiva.com, DNS:anubis21.preventiva.com, DNS:backoffice-app.preventiva.com, DNS:fidelity.preventiva.com, DNS:formacion.preventiva.com, DNS:portal-app.preventiva.com, DNS:preventiva.com, DNS:vpn.preventiva.com, DNS:www.preventiva.com
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        92:dc:49:5f:c1:11:91:ce:eb:c0:5b:5e:fe:8e:d6:ca:c9:e2:
        a8:6f:14:79:b4:e0:31:e2:af:a5:3d:6b:c2:d9:23:09:d1:34:
        4e:fe:44:e5:eb:70:7c:cb:c6:d1:f2:a9:a9:15:84:de:44:42:
        48:d3:ef:ee:b6:14:31:54:da:af:e3:5d:b7:c7:e8:0f:3a:be:
        23:72:46:7f:2a:bc:f6:9f:77:4d:cf:61:a9:53:f3:61:3b:a7:
        d4:d7:70:c5:19:29:98:56:53:95:b1:5e:f2:ca:c8:6d:88:d6:
        34:ac:e4:c9:49:59:02:10:b1:d9:4f:4c:1c:91:63:2a:b7:92:
        49:91:df:ca:63:61:ce:70:7e:d5:35:13:8b:57:de:32:4e:cf:
        b1:21:41:6a:0d:7c:3b:df:49:81:db:88:dc:0d:e2:2f:91:6b:
        3e:bb:3a:f8:c8:7c:57:3a:46:95:3d:47:72:5f:31:df:8e:13:
        cf:9f:bf:9c:37:54:5c:3d:9a:a6:5a:15:39:5d:10:43:2a:da:
        2b:e3:bb:f9:b8:a1:96:fb:f0:15:51:1b:0b:0a:0f:99:3b:fd:
        8d:1c:82:2a:fe:af:cd:22:ed:2d:c5:51:4f:09:42:73:3b:14:
        b5:cf:d3:71:83:e0:21:cc:85:a9:ae:df:78:7a:02:f8:1f:5f:
        55:cf:a7:b3

Vulnerabilities

99.80.132.51

Last Seen: 2025-03-29

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

80 / tcp

1949896279 | 2025-03-29T03:29:38.566105

Hashes

AWS ELB2.0

443 / tcp

18302101 | 2025-03-29T21:38:07.464112

Hashes

nginx1.18.0

Products

Pricing

Contact Us

99.80.132.51

Last Seen: 2025-03-29

Tags:

GeneralInformation

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp 1949896279 | 2025-03-29T03:29:38.566105

Hashes

AWS ELB2.0

443 / tcp 18302101 | 2025-03-29T21:38:07.464112

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

1949896279 | 2025-03-29T03:29:38.566105

443 / tcp

18302101 | 2025-03-29T21:38:07.464112