CAPEC-459

,

ISO27001-A.10

,

OWASP 2013-A6

,

OWASP 2017-A3

,

WASC-4

,

Intermediate Certificate is Signed Using a Weak Signature Algorithm

Severity:

Information

Summary

Invicti detected that an intermediate certificate in the certificate chain is signed using a weak signature algorithm.

The weak signature algorithm is known to be cryptographically weak and vulnerable to collision attacks.

Impact

Remediation

Required Skills for Successful Exploitation

Actions To Take

Classifications

,

,

,

,

,

Vulnerability Index

You can search and find all vulnerabilities

Select Category

Select Vulnerability

Related Vulnerabilities

Cross-site Referrer Leakage through usage of strict-origin-when-cross-origin in Referrer-Policy

Intermediate Certificate is Signed Using a Weak Signature Algorithm

Active Mixed Content over HTTPS

Sensitive Data Exposure - Gitlab Personal Access Token

Weak Basic Authentication Credentials

Featured resources

Strengthening enterprise application security: Invicti acquires Kondukto

Read this article

Modern AppSec KPIs: Moving from scan counts to real risk reduction

Read this article

Friends don’t let friends shift left: Shift smarter with DAST-first AppSec

Read this article

Vibe talking: Dan Murphy on the promises, pitfalls, and insecurities of vibe coding

Read this article

Strengthening enterprise application security: Invicti acquires Kondukto

Read this article

Modern AppSec KPIs: Moving from scan counts to real risk reduction

Read this article

Friends don’t let friends shift left: Shift smarter with DAST-first AppSec

Read this article

Vibe talking: Dan Murphy on the promises, pitfalls, and insecurities of vibe coding

Read this article

View all resources

Build your resistance to threats. And save hundreds of hours each month.