Cross-site scripting (XSS) vulnerability in the web interface in Pattern Insight 2.3 allows remote authenticated administrators to inject arbitrary web script or HTML via the banner message. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.
XSS
Pattern Insight
NVD
CVSS 2.0
3.5
EPSS
1.3%
GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity. No vendor patch available.
Red Hat
Privilege Escalation
Glusterfs
NVD
CVSS 2.0
3.6
EPSS
0.1%