CWE-295
OWASP 2017-A3
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Expired SSL Certificate

Severity:
Medium
Summary

Invicti detected an expired SSL certificate.

Impact

It can impact both website and the users:

  • Warning error messages displayed by browsers when visiting the site
  • Personal information at risk from man-in-the-middle attacks
  • Reduction in trust as the site becomes insecure
  • Ability for an attacker to create identical phishing website
Remediation

The process of renewing the expired certificate varies depending on the host or the certificate authority used. Please refer to the corresponding documentation.

Required Skills for Successful Exploitation
Actions To Take
Classifications
CWE-295
OWASP 2017-A3
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Index

You can search and find all vulnerabilities

Select Category
Critical
High
Medium
Low
Best Practice
Information
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Related Vulnerabilities

Featured resources

No items found.
No items found.
View all resources

Build your resistance to threats. And save hundreds of hours each month.

Get a Demo