H3-2022-0063¶

Private Keys Exposed on Web Server

Description¶

A private key was found exposed on a web server. Private keys are essential for encryption, authentication, and digital signatures on systems. An attacker can exploit this misconfiguration by scanning the web server for private key files, looking for common file names and extensions such as .pem, .key, or .p12.

Impact¶

Exploiting this misconfiguration allows an attacker to potentially access and decrypt sensitive information, authenticate to remote services over SSH, and impersonate servers.

References¶

• Private key disclosed
• MITRE ATT&CK Technique: T1552.004: Unsecured Credentials: Private Keys