Database Security(DBS)-Use of a Broken or Risky Cryptographic Algorithm

CVE-2020-7339

6.3MEDIUM

Key Information

Vendor: Mcafee
Status: Database Security
Vendor: CVE Published:; 10 December 2020

Summary

Use of a Broken or Risky Cryptographic Algorithm vulnerability in McAfee Database Security Server and Sensor prior to 4.8.0 in the form of a SHA1 signed certificate that would allow an attacker on the same local network to potentially intercept communication between the Server and Sensors.

Affected Version(s)

Database Security < 4.8.0

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_MISC

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 10, 2020
Vulnerability Reserved
Jan 21, 2020

Collectors

NVD DatabaseMitre Database