Invicti detected that a certificate is signed using a weak signature algorithm.
The weak signature algorithm is known to be cryptographically weak and vulnerable to collision attacks.
Attackers can observe the encrypted traffic between your website and its visitors by leveraging the use of this vulnerability.
You'll need to generate a new certificate request, and get your CA to issue you a new certificate using SHA-2.
You can search and find all vulnerabilities