Intermediate Certificate is Signed Using a Weak Signature Algorithm

Severity: Information

Summary#

Invicti detected that an intermediate certificate in the certificate chain is signed using a weak signature algorithm.

The weak signature algorithm is known to be cryptographically weak and vulnerable to collision attacks.

Classifications#

OWASP 2017-A3, CAPEC-459, ISO27001-A.10, OWASP 2013-A6, WASC-4