PDF(3.2 KB) View with Adobe Reader on a variety of devices
ePub(44.9 KB) View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
Mobi (Kindle)(61.8 KB) View on Kindle device or Kindle app on multiple devices
Updated:December 10, 2018
SR-680374472 SG500: Vulnerability issues with SSL
Nessus scan found vulnerabilities in cypher suites supported.
May 18, 2016
February 17, 2017
Nessus scan shows a weak hash algorithm, an SSL vulnerability. The remote service uses an SSL certificate chain that has been signed using a cryptographically weak hashing algorithm (e.g. MD2, MD4, MD5, or SHA1). These signature algorithms are known to be vulnerable to collision attacks. An attacker can exploit this to generate another certificate with the same digital signature, allowing an attacker to masquerade as the affected service.
Issue should be fixed when you upgrade to the latest firmware version 1.4.7.06.