1. Critical Input Validation Flaw in yuzu Gateway Management Service Enables Memory Exhaustion via Unbounded Agent ID Fan-Out
A critical input validation vulnerability in yuzu gateway management service allows an operator—or a compromised operator account—to trigger severe resource exhaustion by submitting an unbounded list of agent IDs with no length cap, format validation, or deduplication. The flaw, present in the `send_command` function o...