Hardcoded SSL Certificate Detection

Info Nessus Network Monitor Plugin ID 7280


A hardcoded, non-unique X.509 certificate has been detected.


The remote host is using a hardcoded, non-unique X.509 certificate. This may allow a remote, unauthenticated attacker to carry out impersonation, man-in-the-middle, or passive decryption attacks, resulting in sensitive information exposure.


Where possible, users of affected devices should manually replace X.509 certificates so that they are unique to the device.

Plugin Details

Severity: Info

ID: 7280

Version: 1.0

Family: Generic

Published: 2017/08/20

Updated: 2018/08/16

Risk Information

Risk Factor: Info