SSL/TLS Self-Signed Certificate
Medium Web Application Scanning Plugin ID 112495
SynopsisSSL/TLS Self-Signed Certificate
DescriptionThe remote server presents a self-signed SSL/TLS certificate not signed by a recognized certificate authority. If the remote host is a public host in production, this nullifies the use of SSL/TLS as anyone could establish a man-in-the-middle attack against the remote host.
SolutionPurchase or generate a new SSL/TLS certificate to replace the existing one.