OpenClaw: Google Chat and Zalouser group sender allowlist bypass via policy downgrade

Summary When only a route-level group allowlist was configured, sender policy resolution silently downgraded from allowlist to open instead of preserving the configured group policy. Impact Any member of an allowlisted Google Chat space or Zalouser group could interact with the bot even when the...

PT-2026-24190

Name of the Vulnerable Software and Affected Versions OneUptime versions prior to 10.0.21 Description OneUptime Synthetic Monitors allow a low-privileged authenticated project user to execute arbitrary commands on the oneuptime-probe server/container. The root cause is that untrusted Synthetic...

EUVD-2006-3996

Malware in sbrugna...

EUVD-2024-41628

Malicious code in bioql PyPI...

CVE-2024-50274 idpf: avoid vport access in idpf_get_link_ksettings

In the Linux kernel, the following vulnerability has been resolved: idpf: avoid vport access in idpfgetlinkksettings When the device control plane is removed or the platform running device control plane is rebooted, a reset is detected on the driver. On driver reset, it releases the resources and...

How to Configure HTML5 storefront ica to disable microphone and multi-monitor access prompts

+ Getting prompt while logging on to HTML 5 enabled storefront page, as their end users do not use multimonitor, camera, microphoneThe users are HTML5 Users: ++ ++ ++ Changed configuration.js file in storefront server under the location:C:\Program files\Citrix\Receiver storefront\HTML5 Client...

Security Bulletin: IBM InfoSphere Information Server has a network layer security vulnerability

Summary A network layer security vulnerability in InfoSphere Information Server can lead to privilege escalation or unauthorized access. An unauthorized user could intercept and view communication between client and server. They could also modify or replay certain DataStage commands to get...