An attacker with network-level access between the SUSE Virtualization and Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it to bypass TLS as a security control.
https://github.com/harvester/harvester/security/advisories/GHSA-pgh9-mpwc-8jjf