topic Re: SSL certificate vulnerabilities on wireless controller C5210 in ExtremeWireless (Identifi) https://community.extremenetworks.com/t5/extremewireless-identifi/ssl-certificate-vulnerabilities-on-wireless-controller-c5210/m-p/70684#M6868 <P>very easy…&nbsp;replace the selfsigned cert with a public cert or a company pki cert</P> Sun, 19 Apr 2020 18:26:14 GMT PeterK 2020-04-19T18:26:14Z SSL certificate vulnerabilities on wireless controller C5210 https://community.extremenetworks.com/t5/extremewireless-identifi/ssl-certificate-vulnerabilities-on-wireless-controller-c5210/m-p/70683#M6867 <P>We were reported about a list of SSL certificate issues on the wireless controller C5210 :</P> <P><BR /> 1) SSL Certificate - Self-Signed Certificate Port 443<BR /> 2) SSL Certificate - Subject Common Name Does Not Match Server FQDN Port 443<BR /> 3) SSL Certificate - Signature Verification Failed Vulnerability Port 443<BR /> 4) SSL Certificate - Invalid Maximum Validity Date Detected Port 443</P> <P>&nbsp;</P> <P>Some ideas for to mitigate these vulnerabilities ?</P> <P>Thanks and best regards!</P> Sun, 19 Apr 2020 01:07:43 GMT https://community.extremenetworks.com/t5/extremewireless-identifi/ssl-certificate-vulnerabilities-on-wireless-controller-c5210/m-p/70683#M6867 aguerrero 2020-04-19T01:07:43Z Re: SSL certificate vulnerabilities on wireless controller C5210 https://community.extremenetworks.com/t5/extremewireless-identifi/ssl-certificate-vulnerabilities-on-wireless-controller-c5210/m-p/70684#M6868 <P>very easy…&nbsp;replace the selfsigned cert with a public cert or a company pki cert</P> Sun, 19 Apr 2020 18:26:14 GMT https://community.extremenetworks.com/t5/extremewireless-identifi/ssl-certificate-vulnerabilities-on-wireless-controller-c5210/m-p/70684#M6868 PeterK 2020-04-19T18:26:14Z