Any external EOA} will steal the entire refund balance belonging to the legitimate cross-chain user (when the stored walletAddress is not 20 bytes long).

Malicious supplier will over-credit collateral and underfund reserves, harming the protocol and honest lenders.

CoreRouter will under-pay and silently confiscate a portion of the underlying tokens from redeeming users.