The vulnerability is rated 9.4 out of 10 in severity by the industry-standard Common Vulnerability Scoring System (CVSS) It could be exploited to bypass authentication and take control of vulnerable systems. The flaw affects Carbon Black App Control (AppC) versions 8.0.x, 8.1.x. Earlier this April, the company fixed an incorrect URL handling vulnerability in the Carbon Black Cloud Workload appliance (CVE-2021-21982) The company also patched a local privilege escalation bug affecting Windows Tools for Windows and Remote Console for Windows.
Source: https://thehackernews.com/2021/06/critical-auth-bypass-bug-affects-vmware.html