CVE-2014-5413

Name of the Vulnerable Software and Affected Versions Schneider Electric StruxureWare SCADA Expert ClearSCADA versions 2010 R3 through 2014 R1

Description The issue concerns the use of the MD5 algorithm for an X.509 certificate, which can be exploited by remote attackers to spoof servers via a cryptographic attack against this algorithm.

Recommendations For versions 2010 R3 through 2014 R1, consider updating the cryptographic algorithm used for X.509 certificates to a more secure alternative, as the MD5 algorithm is considered insecure.