Dhiraj Shrikant Datar

**Name of the Vulnerable Software and Affected Versions** VMware vRealize Operations Tenant App versions prior to 8.6 **Description** The issue is related to an Information Disclosure Vulnerability in the monitoring tool for virtual infrastructure. It is associated with the disclosure of information in an error data area. Exploitation of this issue may allow a remote attacker to disclose protected information. **Recommendations** For versions prior to 8.6, update to version 8.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 versions prior to 8.7.30 TYPO3 versions 9.x prior to 9.5.12 TYPO3 versions 10.x prior to 10.2.2 **Description** The issue is related to the mishandling of escaping of user-submitted content, making the class QueryGenerator vulnerable to SQL injection. Exploitation of this issue requires the system extension ext:lowlevel to be installed and a valid backend user with administrator privileges. **Recommendations** For versions prior to 8.7.30, update to version 8.7.30 or later. For versions 9.x prior to 9.5.12, update to version 9.5.12 or later. For versions 10.x prior to 10.2.2, update to version 10.2.2 or later.