Single Sign-On for Vmware Tanzu all versions prior to 1.11.3 ,1.12.x versions prior to 1.12.4 and 1.13.x prior to 1.13.1 are vulnerable to user impersonation attack.If two users are logged in to the. Rated high severity (CVSS 7.9), this vulnerability is remotely exploitable. No vendor patch available.
Authentication Bypass
VMware
Single Sign On For Tanzu
NVD
CVSS 3.1
7.9
EPSS
0.7%
There is no input validation on the Locale property in an apt transaction. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available.
Path Traversal
Aptdaemon
NVD
CVSS 3.1
3.3
EPSS
0.5%