Microsoft SharePoint Server 2013, in certain configurations involving legacy My Sites, does not properly establish default access controls for a SharePoint list, which allows remote authenticated. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. Epss exploitation probability 13.3% and no vendor patch available.
The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.