HTTPS Not Detected

high Web App Scanning Plugin ID 112543

Synopsis

HTTPS Not Detected

Description

HTTPS is a protocol that protects the integrity and confidentiality of data between client and server. HTTPS is highly recommended to protect connections to website regardless of its content.

Solution

Enable HTTPS following best practices.

See Also

https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet

Plugin Details

Severity: High

ID: 112543

Type: remote

Family: SSL/TLS

Published: 2/5/2019

Updated: 3/13/2024

Scan Template: api, basic, config_audit, full, overview, pci, quick, scan, ssl_tls

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.1

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:N

CVSS Score Source: Tenable

CVSS v3

Risk Factor: High

Base Score: 7.4

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS Score Source: Tenable

CVSS v4

Risk Factor: High

Base Score: 7.6

Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

CVSS Score Source: Tenable

Reference Information