@blamejs/exceptd-skills 0.13.102 → 0.13.104
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +8 -0
- package/data/_indexes/_meta.json +9 -9
- package/data/_indexes/activity-feed.json +2 -2
- package/data/_indexes/catalog-summaries.json +2 -2
- package/data/_indexes/chains.json +2921 -1344
- package/data/atlas-ttps.json +7 -0
- package/data/attack-techniques.json +14 -1
- package/data/cve-catalog.json +438 -98
- package/data/cwe-catalog.json +4 -0
- package/data/framework-control-gaps.json +43 -6
- package/data/zeroday-lessons.json +200 -32
- package/manifest.json +44 -44
- package/package.json +2 -2
- package/sbom.cdx.json +25 -25
package/data/atlas-ttps.json
CHANGED
|
@@ -148,6 +148,8 @@
|
|
|
148
148
|
"CVE-2024-11392",
|
|
149
149
|
"CVE-2024-11393",
|
|
150
150
|
"CVE-2024-11394",
|
|
151
|
+
"CVE-2024-24590",
|
|
152
|
+
"CVE-2024-24591",
|
|
151
153
|
"CVE-2024-37032",
|
|
152
154
|
"CVE-2025-1550",
|
|
153
155
|
"CVE-2025-32434",
|
|
@@ -1283,6 +1285,7 @@
|
|
|
1283
1285
|
"CVE-2024-11393",
|
|
1284
1286
|
"CVE-2024-11394",
|
|
1285
1287
|
"CVE-2024-21513",
|
|
1288
|
+
"CVE-2024-24590",
|
|
1286
1289
|
"CVE-2025-1550",
|
|
1287
1290
|
"CVE-2025-32434",
|
|
1288
1291
|
"CVE-2025-33236",
|
|
@@ -1736,6 +1739,7 @@
|
|
|
1736
1739
|
"CVE-2024-1561",
|
|
1737
1740
|
"CVE-2024-21575",
|
|
1738
1741
|
"CVE-2024-21576",
|
|
1742
|
+
"CVE-2024-24591",
|
|
1739
1743
|
"CVE-2024-27132",
|
|
1740
1744
|
"CVE-2024-37032",
|
|
1741
1745
|
"CVE-2024-39722",
|
|
@@ -1745,6 +1749,7 @@
|
|
|
1745
1749
|
"CVE-2024-6587",
|
|
1746
1750
|
"CVE-2025-30202",
|
|
1747
1751
|
"CVE-2025-32444",
|
|
1752
|
+
"CVE-2025-3248",
|
|
1748
1753
|
"CVE-2025-64496",
|
|
1749
1754
|
"CVE-2025-64513",
|
|
1750
1755
|
"CVE-2025-67818",
|
|
@@ -1753,6 +1758,7 @@
|
|
|
1753
1758
|
"CVE-2026-24214",
|
|
1754
1759
|
"CVE-2026-24215",
|
|
1755
1760
|
"CVE-2026-26190",
|
|
1761
|
+
"CVE-2026-33017",
|
|
1756
1762
|
"CVE-2026-34159",
|
|
1757
1763
|
"CVE-2026-45829"
|
|
1758
1764
|
]
|
|
@@ -2846,6 +2852,7 @@
|
|
|
2846
2852
|
"CVE-2024-11392",
|
|
2847
2853
|
"CVE-2024-11393",
|
|
2848
2854
|
"CVE-2024-11394",
|
|
2855
|
+
"CVE-2024-24590",
|
|
2849
2856
|
"CVE-2025-1550",
|
|
2850
2857
|
"CVE-2025-32434",
|
|
2851
2858
|
"CVE-2025-33236",
|
|
@@ -286,6 +286,7 @@
|
|
|
286
286
|
"CVE-2024-21513",
|
|
287
287
|
"CVE-2024-21575",
|
|
288
288
|
"CVE-2024-21576",
|
|
289
|
+
"CVE-2024-24590",
|
|
289
290
|
"CVE-2024-37032",
|
|
290
291
|
"CVE-2024-42479",
|
|
291
292
|
"CVE-2024-4889",
|
|
@@ -299,6 +300,7 @@
|
|
|
299
300
|
"CVE-2025-30165",
|
|
300
301
|
"CVE-2025-32434",
|
|
301
302
|
"CVE-2025-32444",
|
|
303
|
+
"CVE-2025-3248",
|
|
302
304
|
"CVE-2025-33236",
|
|
303
305
|
"CVE-2025-34291",
|
|
304
306
|
"CVE-2025-49596",
|
|
@@ -325,6 +327,7 @@
|
|
|
325
327
|
"CVE-2026-30624",
|
|
326
328
|
"CVE-2026-30625",
|
|
327
329
|
"CVE-2026-32202",
|
|
330
|
+
"CVE-2026-33017",
|
|
328
331
|
"CVE-2026-34159",
|
|
329
332
|
"CVE-2026-39884",
|
|
330
333
|
"CVE-2026-39987",
|
|
@@ -378,7 +381,9 @@
|
|
|
378
381
|
"CVE-2024-12366",
|
|
379
382
|
"CVE-2024-21513",
|
|
380
383
|
"CVE-2024-5565",
|
|
384
|
+
"CVE-2025-3248",
|
|
381
385
|
"CVE-2025-49844",
|
|
386
|
+
"CVE-2026-33017",
|
|
382
387
|
"MAL-2026-3083"
|
|
383
388
|
],
|
|
384
389
|
"description_full": "Adversaries may abuse Python commands and scripts for execution. Python is a very popular scripting/programming language, with capabilities to perform many functions. Python can be executed interactively from the command-line (via the <code>python.exe</code> interpreter) or via scripts (.py) that can be written and distributed to different systems. Python code can also be compiled into binary executables.(Citation: Zscaler APT31 Covid-19 October 2020) Python comes with many built-in packages to interact with the underlying system, such as file operations and device I/O. Adversaries can use these libraries to download and execute commands or other scripts as well as perform various malicious behaviors.",
|
|
@@ -926,6 +931,7 @@
|
|
|
926
931
|
"CVE-2025-32433",
|
|
927
932
|
"CVE-2025-32444",
|
|
928
933
|
"CVE-2025-32463",
|
|
934
|
+
"CVE-2025-3248",
|
|
929
935
|
"CVE-2025-32706",
|
|
930
936
|
"CVE-2025-32756",
|
|
931
937
|
"CVE-2025-33053",
|
|
@@ -1134,6 +1140,7 @@
|
|
|
1134
1140
|
"CVE-2024-11392",
|
|
1135
1141
|
"CVE-2024-11393",
|
|
1136
1142
|
"CVE-2024-11394",
|
|
1143
|
+
"CVE-2024-24590",
|
|
1137
1144
|
"CVE-2024-3094",
|
|
1138
1145
|
"CVE-2025-1550",
|
|
1139
1146
|
"CVE-2025-32434",
|
|
@@ -3575,6 +3582,7 @@
|
|
|
3575
3582
|
"CVE-2023-51449",
|
|
3576
3583
|
"CVE-2023-6021",
|
|
3577
3584
|
"CVE-2024-1561",
|
|
3585
|
+
"CVE-2024-24591",
|
|
3578
3586
|
"CVE-2024-39722",
|
|
3579
3587
|
"CVE-2026-34926"
|
|
3580
3588
|
]
|
|
@@ -4320,6 +4328,8 @@
|
|
|
4320
4328
|
"CVE-2024-11392",
|
|
4321
4329
|
"CVE-2024-11393",
|
|
4322
4330
|
"CVE-2024-11394",
|
|
4331
|
+
"CVE-2024-24590",
|
|
4332
|
+
"CVE-2024-24591",
|
|
4323
4333
|
"CVE-2025-1550",
|
|
4324
4334
|
"CVE-2025-32434",
|
|
4325
4335
|
"CVE-2025-33236",
|
|
@@ -14870,7 +14880,10 @@
|
|
|
14870
14880
|
"stix_id": "attack-pattern--1cfcb312-b8d7-47a4-b560-4b16cc677292",
|
|
14871
14881
|
"last_verified": "2026-05-19",
|
|
14872
14882
|
"_auto_imported": true,
|
|
14873
|
-
"_intake_method": "mitre-attack-stix"
|
|
14883
|
+
"_intake_method": "mitre-attack-stix",
|
|
14884
|
+
"cve_refs": [
|
|
14885
|
+
"CVE-2024-24591"
|
|
14886
|
+
]
|
|
14874
14887
|
},
|
|
14875
14888
|
"T1565.002": {
|
|
14876
14889
|
"id": "T1565.002",
|