Unrated severityNVD Advisory· Published Sep 18, 2014· Updated May 6, 2026
CVE-2014-5413
CVE-2014-5413
Description
Schneider Electric StruxureWare SCADA Expert ClearSCADA 2010 R3 through 2014 R1 uses the MD5 algorithm for an X.509 certificate, which makes it easier for remote attackers to spoof servers via a cryptographic attack against this algorithm.
Affected products
11cpe:2.3:a:aveva:clearscada:2010:r3:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:aveva:clearscada:2010:r3:*:*:*:*:*:*
- cpe:2.3:a:aveva:clearscada:2010:r3.1:*:*:*:*:*:*
- cpe:2.3:a:aveva:clearscada:2013:r1:*:*:*:*:*:*
- cpe:2.3:a:aveva:clearscada:2013:r1.1:*:*:*:*:*:*
- cpe:2.3:a:aveva:clearscada:2013:r1.1a:*:*:*:*:*:*
- cpe:2.3:a:aveva:clearscada:2013:r1.2:*:*:*:*:*:*
- cpe:2.3:a:aveva:clearscada:2013:r2:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:scada_expert_clearscada:2013:r2.1:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:schneider-electric:scada_expert_clearscada:2013:r2.1:*:*:*:*:*:*
- cpe:2.3:a:schneider-electric:scada_expert_clearscada:2014:r1:*:*:*:*:*:*
- Schneider Electric/ClearSCADAv5Range: 2010 R3 (build 72.4560)
- Schneider Electric/SCADA Expert ClearSCADAv5Range: 2013 R1 (build 73.4729)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- ics-cert.us-cert.gov/advisories/ICSA-14-259-01nvdThird Party AdvisoryUS Government Resource
- github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2014/icsa-14-259-01a.jsonnvd
- www.cisa.gov/news-events/ics-advisories/icsa-14-259-01anvd
News mentions
0No linked articles in our index yet.