H300E Firmware

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-18	CVE-2021-45868	Use After Free vulnerability in multiple products In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). local low complexity linux netapp CWE-416	5.5
2022-03-16	CVE-2022-27223	Improper Validation of Array Index vulnerability in multiple products In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access. network low complexity linux netapp debian CWE-129	8.8
2022-03-12	CVE-2022-26966	An issue was discovered in the Linux kernel before 5.16.12. local low complexity linux netapp debian	5.5
2022-03-10	CVE-2022-0516	A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. local low complexity linux fedoraproject debian redhat netapp	7.8
2022-03-10	CVE-2022-0847	Improper Initialization vulnerability in multiple products A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. local low complexity linux fedoraproject redhat ovirt netapp siemens sonicwall CWE-665	7.8
2022-03-10	CVE-2021-3739	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the btrfs_rm_device function in fs/btrfs/volumes.c in the Linux Kernel, where triggering the bug requires ‘CAP_SYS_ADMIN’. local low complexity linux fedoraproject netapp CWE-476	7.1
2022-03-06	CVE-2022-26490	Classic Buffer Overflow vulnerability in multiple products st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters. local low complexity linux fedoraproject netapp debian CWE-120	7.8
2022-03-04	CVE-2021-3743	Out-of-bounds Read vulnerability in multiple products An out-of-bounds (OOB) memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. local low complexity linux fedoraproject netapp oracle CWE-125	7.1
2022-03-03	CVE-2021-3640	Race Condition vulnerability in multiple products A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. local high complexity linux debian fedoraproject canonical netapp CWE-362	7.0
2022-03-03	CVE-2021-3609	Race Condition vulnerability in multiple products .A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. local high complexity linux redhat netapp CWE-362	7.0