CVE-2026-34506

CVE-2026-34506 concerns the OpenClaw Microsoft Teams plugin. In versions prior to 2026.3.8, a sender allowlist bypass exists when a team/channel route allowlist is configured with an empty groupAllowFrom parameter. The message handler synthesizes wildcard sender authorization, allowing any sender...

Squid has issues in ICP message handling

...

Multiple vulnerabilities in Defense Platform Home Edition

Overview Defense Platform Home Edition provided by Humming Heads Inc. contains multiple vulnerabilities listed below. Improper handling of message in specific process CWE-422 - CVE-2025-20094 Execution with unnecessary privileges CWE-250 - CVE-2025-22890 Improper handling of message in specific...

Malicious code in Be.Vlaаnderen.Basisregіsters.MessageHandling.Kafka.Simple (NuGet)

--- -= Per source details. Do not edit below this line.=-...

SUSE CVE-2010-0160

The Web Worker functionality in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and SeaMonkey before 2.0.3, does not properly handle array data types for posted messages, which allows remote attackers to cause a denial of service heap memory corruption and application crash or possibl...

Cisco ASR 1000 Series Router SIP Message Handling Denial of Service Vulnerability

The Cisco ASR1000 Series Aggregation Services Routers provide a WAN edge solution that integrates information, communication, collaboration, and commerce. The Cisco ASR 1000 Series Router has a security vulnerability in the processing of SIP messages that allows a remote attacker to exploit the...