Summary #

Invicti detected an expired SSL certificate.

Impact #

It can impact both website and the users:

  • Warning error messages displayed by browsers when visiting the site
  • Personal information at risk from man-in-the-middle attacks
  • Reduction in trust as the site becomes insecure
  • Ability for an attacker to create identical phishing website
Remediation #

The process of renewing the expired certificate varies depending on the host or the certificate authority used. Please refer to the corresponding documentation.

Classifications #
CWE-295; OWASP 2017-A3 , CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

Get a demo