CVE-2020-7339

Name of the Vulnerable Software and Affected Versions McAfee Database Security Server and Sensor versions prior to 4.8.0

Description The issue is related to the use of a broken or risky cryptographic algorithm in the form of a SHA1 signed certificate. This could allow an attacker on the same local network to potentially intercept communication between the Server and Sensors.

Recommendations For versions prior to 4.8.0, update to version 4.8.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the local network to minimize the risk of exploitation.