SAMSUNG Notes 安全漏洞

SAMSUNG Notes is a software application from Samsung South Korea. It is used to provide a record function. SAMSUNG Notes has a security vulnerability that can be exploited by attackers to obtain sensitive information...

PT-2025-20062 · Samsung · Samsung Notes

Name of the Vulnerable Software and Affected Versions: Samsung Notes versions prior to 4.4.29.23 Description: The issue concerns the use of implicit intent for sensitive communication in translation, allowing local attackers to obtain sensitive information. User interaction is required to trigger...

SAMSUNG Notes 安全漏洞

SAMSUNG Notes is a South Korean company Samsung SAMSUNG used to provide a record function application software. SAMSUNG Notes suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to read out-of-bounds memory...

PT-2025-20061 · Samsung · Samsung Notes

Name of the Vulnerable Software and Affected Versions: Samsung Notes versions prior to 4.4.29.23 Description: The issue is an out-of-bounds read in applying binary of text content. This allows attackers to read out-of-bounds memory. Recommendations: For versions prior to 4.4.29.23, update to...

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.8 container updates

Red Hat Advanced Cluster Management for Kubernetes 2.10.8 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

Fedora: Security Advisory (FEDORA-2025-66b73d6c72)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ReCIT: Reconstructing Full Private Data from Gradient in Parameter-Efficient Fine-Tuning of Large Language Models

Parameter-efficient fine-tuning PEFT has emerged as a practical solution for adapting large language models LLMs to custom datasets with significantly reduced computational cost. When carrying out PEFT under collaborative learning scenarios e.g., federated learning, it is often required to exchan...

Important: Red Hat Security Advisory: Red Hat Ceph Storage 6.1 bug fix update

An update is now available for Red Hat Ceph Storage 6.1. Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. These new packages...

Important: Red Hat Security Advisory: Updated 6.1 container image is now available in the Red Hat Ecosystem Catalog.

A new container image for Red Hat Ceph Storage 6.1 is now available in the Red Hat Ecosystem Catalog. Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities,...

CVE-2025-3687

A vulnerability, which was classified as problematic, has been found in misstt123 oasys 1.0. Affected by this issue is some unknown functionality of the component Sticky Notes Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been...

Security Science (SecSci), Basic Concepts and Mathematical Foundations

This textbook compiles the lecture notes from security courses taught at Oxford in the 2000s, at Royal Holloway in the 2010s, and currently in Hawaii. The early chapters are suitable for a first course in security. The middle chapters have been used in advanced courses. Towards the end there are...

CVE-2025-29456

An issue in personal-management-system Personal Management System 1.4.65 allows a remote attacker to obtain sensitive information via the create Notes function...

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.3 container image updates

Red Hat Advanced Cluster Management for Kubernetes 2.12.3 General Availability release, with updates to container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

CVE-2025-29456

An issue in personal-management-system Personal Management System 1.4.65 allows a remote attacker to obtain sensitive information via the create Notes function...

CVE-2025-29456

CVE-2025-29456 affects Personal Management System 1.4.65. The issue is described as an information-disclosure vulnerability via the Create Notes function that could allow a remote attacker to obtain sensitive data. The available sources consistently identify the affected component as the Create N...

java-1.8.0-openjdk security update

1:1.8.0.452.b09-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.452.b09-1 - Update to 8u452-b09 GA - Update release notes for 8u452-b09. - Remove long option documentation from JDK-8335912/JDK-8337499 as not present in 8u - Require tzdata 2025a due to upstream inclusion of JDK-8347965 ...

Oracle Linux 8 / 9 : java-21-openjdk (ELSA-2025-3855)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-3855 advisory. 1:21.0.7.0.6-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.7.0.6-1 - Update to jdk-21.0.7+6 GA - Update release notes to 21.0.7+6 -...

CVE-2025-3687

A vulnerability, which was classified as problematic, has been found in misstt123 oasys 1.0. Affected by this issue is some unknown functionality of the component Sticky Notes Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been...

CVE-2025-3687

A vulnerability, which was classified as problematic, has been found in misstt123 oasys 1.0. Affected by this issue is some unknown functionality of the component Sticky Notes Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been...

CVE-2025-3687

The CVE-2025-3687 entry describes a CSRF vulnerability in misstt123 oasys 1.0, affecting the Sticky Notes Handler component. The attack is remotely possible, with exploitation disclosed publicly. The product uses a rolling delivery model, and none of the provided documents specify affected versio...