While reviewing your beSECURE scan results report, you may see "SSL Certificate with Wrong Hostname" in the list of Possible Vulnerabilities. This appears when beSECURE performs a scan and cannot verify the SSL certificate issued for a hostname or fully qualified domain name (FQDN).

 

Cause

If you enter an IP address in the Hostname / IP Address Range parameter (Scan Details > Settings > Main) instead of the hostname or FQDN the SSL certificate was issued for, beSECURE will report the vulnerability in your scan results report.

For example, www.domain.com resolves in 209.188.46.115. If 209.188.46.115 is entered in the Hostname / IP Address Range parameter instead of www.domain.com, then beSECURE will detect that the SSL certificate is for www.domain.com and not 209.188.46.115 during the scan.

 

Resolution

Replace the IP address in the Hostname / IP Address Range parameter with the correct hostname/FQDN, and then run the scan again.