@blamejs/exceptd-skills 0.13.103 → 0.13.104

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +806 -0
  6. package/data/atlas-ttps.json +5 -0
  7. package/data/attack-techniques.json +9 -1
  8. package/data/cve-catalog.json +215 -0
  9. package/data/cwe-catalog.json +2 -0
  10. package/data/framework-control-gaps.json +18 -0
  11. package/data/zeroday-lessons.json +100 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -40198,6 +40198,764 @@
40198
40198
  ]
40199
40199
  }
40200
40200
  },
40201
+ "CVE-2024-24590": {
40202
+ "name": "ClearML Client SDK Artifact Deserialization Remote Code Execution",
40203
+ "rwep": 42,
40204
+ "cvss": 8.8,
40205
+ "cisa_kev": false,
40206
+ "epss_score": null,
40207
+ "referencing_skills": [
40208
+ "ai-attack-surface",
40209
+ "mcp-agent-trust",
40210
+ "compliance-theater",
40211
+ "rag-pipeline-security",
40212
+ "threat-modeling-methodology",
40213
+ "webapp-security",
40214
+ "api-security",
40215
+ "cloud-security",
40216
+ "container-runtime-security"
40217
+ ],
40218
+ "chain": {
40219
+ "cwes": [
40220
+ {
40221
+ "id": "CWE-1039",
40222
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
40223
+ "category": "AI/ML"
40224
+ },
40225
+ {
40226
+ "id": "CWE-1188",
40227
+ "name": "Initialization of a Resource with an Insecure Default",
40228
+ "category": "Configuration"
40229
+ },
40230
+ {
40231
+ "id": "CWE-1395",
40232
+ "name": "Dependency on Vulnerable Third-Party Component",
40233
+ "category": "Supply Chain"
40234
+ },
40235
+ {
40236
+ "id": "CWE-1426",
40237
+ "name": "Improper Validation of Generative AI Output",
40238
+ "category": "AI/ML"
40239
+ },
40240
+ {
40241
+ "id": "CWE-200",
40242
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
40243
+ "category": "Information Exposure"
40244
+ },
40245
+ {
40246
+ "id": "CWE-22",
40247
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
40248
+ "category": "Path/Resource"
40249
+ },
40250
+ {
40251
+ "id": "CWE-269",
40252
+ "name": "Improper Privilege Management",
40253
+ "category": "Authorization"
40254
+ },
40255
+ {
40256
+ "id": "CWE-287",
40257
+ "name": "Improper Authentication",
40258
+ "category": "Authentication"
40259
+ },
40260
+ {
40261
+ "id": "CWE-345",
40262
+ "name": "Insufficient Verification of Data Authenticity",
40263
+ "category": "Authenticity / Supply Chain"
40264
+ },
40265
+ {
40266
+ "id": "CWE-352",
40267
+ "name": "Cross-Site Request Forgery (CSRF)",
40268
+ "category": "Session"
40269
+ },
40270
+ {
40271
+ "id": "CWE-434",
40272
+ "name": "Unrestricted Upload of File with Dangerous Type",
40273
+ "category": "File Handling"
40274
+ },
40275
+ {
40276
+ "id": "CWE-494",
40277
+ "name": "Download of Code Without Integrity Check",
40278
+ "category": "Supply Chain"
40279
+ },
40280
+ {
40281
+ "id": "CWE-502",
40282
+ "name": "Deserialization of Untrusted Data",
40283
+ "category": "Serialization"
40284
+ },
40285
+ {
40286
+ "id": "CWE-732",
40287
+ "name": "Incorrect Permission Assignment for Critical Resource",
40288
+ "category": "Authorization"
40289
+ },
40290
+ {
40291
+ "id": "CWE-77",
40292
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
40293
+ "category": "Injection"
40294
+ },
40295
+ {
40296
+ "id": "CWE-78",
40297
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
40298
+ "category": "Injection"
40299
+ },
40300
+ {
40301
+ "id": "CWE-787",
40302
+ "name": "Out-of-bounds Write",
40303
+ "category": "Memory Safety"
40304
+ },
40305
+ {
40306
+ "id": "CWE-79",
40307
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
40308
+ "category": "Injection"
40309
+ },
40310
+ {
40311
+ "id": "CWE-798",
40312
+ "name": "Use of Hard-coded Credentials",
40313
+ "category": "Credentials"
40314
+ },
40315
+ {
40316
+ "id": "CWE-862",
40317
+ "name": "Missing Authorization",
40318
+ "category": "Authorization"
40319
+ },
40320
+ {
40321
+ "id": "CWE-863",
40322
+ "name": "Incorrect Authorization",
40323
+ "category": "Authorization"
40324
+ },
40325
+ {
40326
+ "id": "CWE-89",
40327
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
40328
+ "category": "Injection"
40329
+ },
40330
+ {
40331
+ "id": "CWE-918",
40332
+ "name": "Server-Side Request Forgery (SSRF)",
40333
+ "category": "Network"
40334
+ },
40335
+ {
40336
+ "id": "CWE-94",
40337
+ "name": "Improper Control of Generation of Code (Code Injection)",
40338
+ "category": "Injection"
40339
+ }
40340
+ ],
40341
+ "atlas": [
40342
+ {
40343
+ "id": "AML.T0010",
40344
+ "name": "ML Supply Chain Compromise",
40345
+ "tactic": "Initial Access"
40346
+ },
40347
+ {
40348
+ "id": "AML.T0016",
40349
+ "name": "Obtain Capabilities: Develop Capabilities",
40350
+ "tactic": "Resource Development"
40351
+ },
40352
+ {
40353
+ "id": "AML.T0017",
40354
+ "name": "Discover ML Model Ontology",
40355
+ "tactic": "Discovery"
40356
+ },
40357
+ {
40358
+ "id": "AML.T0018",
40359
+ "name": "Backdoor ML Model",
40360
+ "tactic": "Persistence"
40361
+ },
40362
+ {
40363
+ "id": "AML.T0020",
40364
+ "name": "Poison Training Data",
40365
+ "tactic": "ML Attack Staging"
40366
+ },
40367
+ {
40368
+ "id": "AML.T0043",
40369
+ "name": "Craft Adversarial Data",
40370
+ "tactic": "ML Attack Staging"
40371
+ },
40372
+ {
40373
+ "id": "AML.T0051",
40374
+ "name": "LLM Prompt Injection",
40375
+ "tactic": "Execution"
40376
+ },
40377
+ {
40378
+ "id": "AML.T0054",
40379
+ "name": "LLM Jailbreak",
40380
+ "tactic": "Defense Evasion"
40381
+ },
40382
+ {
40383
+ "id": "AML.T0096",
40384
+ "name": "AI API as Covert C2 Channel",
40385
+ "tactic": "Command and Control"
40386
+ }
40387
+ ],
40388
+ "d3fend": [
40389
+ {
40390
+ "id": "D3-CBAN",
40391
+ "name": "Certificate-based Authentication",
40392
+ "tactic": "Harden"
40393
+ },
40394
+ {
40395
+ "id": "D3-CSPP",
40396
+ "name": "Client-server Payload Profiling",
40397
+ "tactic": "Detect"
40398
+ },
40399
+ {
40400
+ "id": "D3-EAL",
40401
+ "name": "Executable Allowlisting",
40402
+ "tactic": "Harden"
40403
+ },
40404
+ {
40405
+ "id": "D3-EHB",
40406
+ "name": "Executable Hashbased Allowlist",
40407
+ "tactic": "Harden"
40408
+ },
40409
+ {
40410
+ "id": "D3-IOPR",
40411
+ "name": "Input/Output Profiling Resource",
40412
+ "tactic": "Detect"
40413
+ },
40414
+ {
40415
+ "id": "D3-MFA",
40416
+ "name": "Multi-factor Authentication",
40417
+ "tactic": "Harden"
40418
+ },
40419
+ {
40420
+ "id": "D3-NTA",
40421
+ "name": "Network Traffic Analysis",
40422
+ "tactic": "Detect"
40423
+ }
40424
+ ],
40425
+ "framework_gaps": [
40426
+ {
40427
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
40428
+ "framework": "ALL",
40429
+ "control_name": "AI Pipeline Integrity"
40430
+ },
40431
+ {
40432
+ "id": "ALL-MCP-TOOL-TRUST",
40433
+ "framework": "ALL",
40434
+ "control_name": "MCP/Agent Tool Trust Boundaries"
40435
+ },
40436
+ {
40437
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
40438
+ "framework": "ALL",
40439
+ "control_name": "Prompt Injection as Access Control Failure"
40440
+ },
40441
+ {
40442
+ "id": "CMMC-2.0-Level-2",
40443
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
40444
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
40445
+ },
40446
+ {
40447
+ "id": "FedRAMP-Rev5-Moderate",
40448
+ "framework": "FedRAMP Rev 5 Moderate",
40449
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
40450
+ },
40451
+ {
40452
+ "id": "ISO-27001-2022-A.8.28",
40453
+ "framework": "ISO/IEC 27001:2022",
40454
+ "control_name": "Secure coding"
40455
+ },
40456
+ {
40457
+ "id": "ISO-27001-2022-A.8.30",
40458
+ "framework": "ISO/IEC 27001:2022",
40459
+ "control_name": "Outsourced development"
40460
+ },
40461
+ {
40462
+ "id": "ISO-IEC-23894-2023-clause-7",
40463
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
40464
+ "control_name": "AI risk management process"
40465
+ },
40466
+ {
40467
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
40468
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
40469
+ "control_name": "AI risk assessment"
40470
+ },
40471
+ {
40472
+ "id": "NIST-800-218-SSDF",
40473
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
40474
+ "control_name": "Secure Software Development Framework"
40475
+ },
40476
+ {
40477
+ "id": "NIST-800-53-AC-2",
40478
+ "framework": "NIST SP 800-53 Rev 5",
40479
+ "control_name": "Account Management"
40480
+ },
40481
+ {
40482
+ "id": "NIST-800-53-CM-7",
40483
+ "framework": "NIST SP 800-53 Rev 5",
40484
+ "control_name": "Least Functionality"
40485
+ },
40486
+ {
40487
+ "id": "NIST-800-53-SA-12",
40488
+ "framework": "NIST SP 800-53 Rev 5",
40489
+ "control_name": "Supply Chain Protection"
40490
+ },
40491
+ {
40492
+ "id": "NIST-800-53-SI-12",
40493
+ "framework": "NIST SP 800-53 Rev 5",
40494
+ "control_name": "Information Management and Retention"
40495
+ },
40496
+ {
40497
+ "id": "NIST-800-53-SI-3",
40498
+ "framework": "NIST SP 800-53 Rev 5",
40499
+ "control_name": "Malicious Code Protection"
40500
+ },
40501
+ {
40502
+ "id": "NIST-AI-RMF-MEASURE-2.5",
40503
+ "framework": "NIST AI RMF 1.0",
40504
+ "control_name": "AI system to human interaction evaluation"
40505
+ },
40506
+ {
40507
+ "id": "OWASP-ASVS-v5.0-V14",
40508
+ "framework": "OWASP ASVS v5.0",
40509
+ "control_name": "Configuration verification"
40510
+ },
40511
+ {
40512
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
40513
+ "framework": "OWASP Top 10 for LLM Applications 2025",
40514
+ "control_name": "Prompt Injection"
40515
+ },
40516
+ {
40517
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
40518
+ "framework": "OWASP Top 10 for LLM Applications 2025",
40519
+ "control_name": "Sensitive Information Disclosure"
40520
+ },
40521
+ {
40522
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
40523
+ "framework": "OWASP Top 10 for LLM Applications 2025",
40524
+ "control_name": "Excessive Agency"
40525
+ },
40526
+ {
40527
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
40528
+ "framework": "OWASP Top 10 for LLM Applications 2025",
40529
+ "control_name": "Vector and Embedding Weaknesses"
40530
+ },
40531
+ {
40532
+ "id": "SLSA-v1.0-Build-L3",
40533
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
40534
+ "control_name": "Hardened build platform with non-falsifiable provenance"
40535
+ },
40536
+ {
40537
+ "id": "SOC2-CC6-logical-access",
40538
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
40539
+ "control_name": "Logical and Physical Access Controls"
40540
+ },
40541
+ {
40542
+ "id": "SOC2-CC9-vendor-management",
40543
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
40544
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
40545
+ },
40546
+ {
40547
+ "id": "SWIFT-CSCF-v2026-1.1",
40548
+ "framework": "SWIFT Customer Security Controls Framework v2026",
40549
+ "control_name": "SWIFT Environment Protection"
40550
+ }
40551
+ ],
40552
+ "attack_refs": [
40553
+ "T1059",
40554
+ "T1068",
40555
+ "T1078",
40556
+ "T1190",
40557
+ "T1195.001",
40558
+ "T1505",
40559
+ "T1530",
40560
+ "T1552",
40561
+ "T1565",
40562
+ "T1566",
40563
+ "T1567",
40564
+ "T1610",
40565
+ "T1611"
40566
+ ],
40567
+ "rfc_refs": [
40568
+ "RFC-6749",
40569
+ "RFC-7519",
40570
+ "RFC-8032",
40571
+ "RFC-8446",
40572
+ "RFC-8725",
40573
+ "RFC-9114",
40574
+ "RFC-9180",
40575
+ "RFC-9421",
40576
+ "RFC-9700"
40577
+ ]
40578
+ }
40579
+ },
40580
+ "CVE-2024-24591": {
40581
+ "name": "ClearML Client SDK Dataset Path Traversal Arbitrary File Write",
40582
+ "rwep": 38,
40583
+ "cvss": 8.8,
40584
+ "cisa_kev": false,
40585
+ "epss_score": null,
40586
+ "referencing_skills": [
40587
+ "ai-attack-surface",
40588
+ "mcp-agent-trust",
40589
+ "compliance-theater",
40590
+ "rag-pipeline-security",
40591
+ "threat-modeling-methodology",
40592
+ "webapp-security",
40593
+ "api-security",
40594
+ "cloud-security",
40595
+ "container-runtime-security"
40596
+ ],
40597
+ "chain": {
40598
+ "cwes": [
40599
+ {
40600
+ "id": "CWE-1039",
40601
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
40602
+ "category": "AI/ML"
40603
+ },
40604
+ {
40605
+ "id": "CWE-1188",
40606
+ "name": "Initialization of a Resource with an Insecure Default",
40607
+ "category": "Configuration"
40608
+ },
40609
+ {
40610
+ "id": "CWE-1395",
40611
+ "name": "Dependency on Vulnerable Third-Party Component",
40612
+ "category": "Supply Chain"
40613
+ },
40614
+ {
40615
+ "id": "CWE-1426",
40616
+ "name": "Improper Validation of Generative AI Output",
40617
+ "category": "AI/ML"
40618
+ },
40619
+ {
40620
+ "id": "CWE-200",
40621
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
40622
+ "category": "Information Exposure"
40623
+ },
40624
+ {
40625
+ "id": "CWE-22",
40626
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
40627
+ "category": "Path/Resource"
40628
+ },
40629
+ {
40630
+ "id": "CWE-269",
40631
+ "name": "Improper Privilege Management",
40632
+ "category": "Authorization"
40633
+ },
40634
+ {
40635
+ "id": "CWE-287",
40636
+ "name": "Improper Authentication",
40637
+ "category": "Authentication"
40638
+ },
40639
+ {
40640
+ "id": "CWE-345",
40641
+ "name": "Insufficient Verification of Data Authenticity",
40642
+ "category": "Authenticity / Supply Chain"
40643
+ },
40644
+ {
40645
+ "id": "CWE-352",
40646
+ "name": "Cross-Site Request Forgery (CSRF)",
40647
+ "category": "Session"
40648
+ },
40649
+ {
40650
+ "id": "CWE-434",
40651
+ "name": "Unrestricted Upload of File with Dangerous Type",
40652
+ "category": "File Handling"
40653
+ },
40654
+ {
40655
+ "id": "CWE-494",
40656
+ "name": "Download of Code Without Integrity Check",
40657
+ "category": "Supply Chain"
40658
+ },
40659
+ {
40660
+ "id": "CWE-502",
40661
+ "name": "Deserialization of Untrusted Data",
40662
+ "category": "Serialization"
40663
+ },
40664
+ {
40665
+ "id": "CWE-732",
40666
+ "name": "Incorrect Permission Assignment for Critical Resource",
40667
+ "category": "Authorization"
40668
+ },
40669
+ {
40670
+ "id": "CWE-77",
40671
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
40672
+ "category": "Injection"
40673
+ },
40674
+ {
40675
+ "id": "CWE-78",
40676
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
40677
+ "category": "Injection"
40678
+ },
40679
+ {
40680
+ "id": "CWE-787",
40681
+ "name": "Out-of-bounds Write",
40682
+ "category": "Memory Safety"
40683
+ },
40684
+ {
40685
+ "id": "CWE-79",
40686
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
40687
+ "category": "Injection"
40688
+ },
40689
+ {
40690
+ "id": "CWE-798",
40691
+ "name": "Use of Hard-coded Credentials",
40692
+ "category": "Credentials"
40693
+ },
40694
+ {
40695
+ "id": "CWE-862",
40696
+ "name": "Missing Authorization",
40697
+ "category": "Authorization"
40698
+ },
40699
+ {
40700
+ "id": "CWE-863",
40701
+ "name": "Incorrect Authorization",
40702
+ "category": "Authorization"
40703
+ },
40704
+ {
40705
+ "id": "CWE-89",
40706
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
40707
+ "category": "Injection"
40708
+ },
40709
+ {
40710
+ "id": "CWE-918",
40711
+ "name": "Server-Side Request Forgery (SSRF)",
40712
+ "category": "Network"
40713
+ },
40714
+ {
40715
+ "id": "CWE-94",
40716
+ "name": "Improper Control of Generation of Code (Code Injection)",
40717
+ "category": "Injection"
40718
+ }
40719
+ ],
40720
+ "atlas": [
40721
+ {
40722
+ "id": "AML.T0010",
40723
+ "name": "ML Supply Chain Compromise",
40724
+ "tactic": "Initial Access"
40725
+ },
40726
+ {
40727
+ "id": "AML.T0016",
40728
+ "name": "Obtain Capabilities: Develop Capabilities",
40729
+ "tactic": "Resource Development"
40730
+ },
40731
+ {
40732
+ "id": "AML.T0017",
40733
+ "name": "Discover ML Model Ontology",
40734
+ "tactic": "Discovery"
40735
+ },
40736
+ {
40737
+ "id": "AML.T0018",
40738
+ "name": "Backdoor ML Model",
40739
+ "tactic": "Persistence"
40740
+ },
40741
+ {
40742
+ "id": "AML.T0020",
40743
+ "name": "Poison Training Data",
40744
+ "tactic": "ML Attack Staging"
40745
+ },
40746
+ {
40747
+ "id": "AML.T0043",
40748
+ "name": "Craft Adversarial Data",
40749
+ "tactic": "ML Attack Staging"
40750
+ },
40751
+ {
40752
+ "id": "AML.T0051",
40753
+ "name": "LLM Prompt Injection",
40754
+ "tactic": "Execution"
40755
+ },
40756
+ {
40757
+ "id": "AML.T0054",
40758
+ "name": "LLM Jailbreak",
40759
+ "tactic": "Defense Evasion"
40760
+ },
40761
+ {
40762
+ "id": "AML.T0096",
40763
+ "name": "AI API as Covert C2 Channel",
40764
+ "tactic": "Command and Control"
40765
+ }
40766
+ ],
40767
+ "d3fend": [
40768
+ {
40769
+ "id": "D3-CBAN",
40770
+ "name": "Certificate-based Authentication",
40771
+ "tactic": "Harden"
40772
+ },
40773
+ {
40774
+ "id": "D3-CSPP",
40775
+ "name": "Client-server Payload Profiling",
40776
+ "tactic": "Detect"
40777
+ },
40778
+ {
40779
+ "id": "D3-EAL",
40780
+ "name": "Executable Allowlisting",
40781
+ "tactic": "Harden"
40782
+ },
40783
+ {
40784
+ "id": "D3-EHB",
40785
+ "name": "Executable Hashbased Allowlist",
40786
+ "tactic": "Harden"
40787
+ },
40788
+ {
40789
+ "id": "D3-IOPR",
40790
+ "name": "Input/Output Profiling Resource",
40791
+ "tactic": "Detect"
40792
+ },
40793
+ {
40794
+ "id": "D3-MFA",
40795
+ "name": "Multi-factor Authentication",
40796
+ "tactic": "Harden"
40797
+ },
40798
+ {
40799
+ "id": "D3-NTA",
40800
+ "name": "Network Traffic Analysis",
40801
+ "tactic": "Detect"
40802
+ }
40803
+ ],
40804
+ "framework_gaps": [
40805
+ {
40806
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
40807
+ "framework": "ALL",
40808
+ "control_name": "AI Pipeline Integrity"
40809
+ },
40810
+ {
40811
+ "id": "ALL-MCP-TOOL-TRUST",
40812
+ "framework": "ALL",
40813
+ "control_name": "MCP/Agent Tool Trust Boundaries"
40814
+ },
40815
+ {
40816
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
40817
+ "framework": "ALL",
40818
+ "control_name": "Prompt Injection as Access Control Failure"
40819
+ },
40820
+ {
40821
+ "id": "CMMC-2.0-Level-2",
40822
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
40823
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
40824
+ },
40825
+ {
40826
+ "id": "FedRAMP-Rev5-Moderate",
40827
+ "framework": "FedRAMP Rev 5 Moderate",
40828
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
40829
+ },
40830
+ {
40831
+ "id": "ISO-27001-2022-A.8.28",
40832
+ "framework": "ISO/IEC 27001:2022",
40833
+ "control_name": "Secure coding"
40834
+ },
40835
+ {
40836
+ "id": "ISO-27001-2022-A.8.30",
40837
+ "framework": "ISO/IEC 27001:2022",
40838
+ "control_name": "Outsourced development"
40839
+ },
40840
+ {
40841
+ "id": "ISO-IEC-23894-2023-clause-7",
40842
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
40843
+ "control_name": "AI risk management process"
40844
+ },
40845
+ {
40846
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
40847
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
40848
+ "control_name": "AI risk assessment"
40849
+ },
40850
+ {
40851
+ "id": "NIST-800-218-SSDF",
40852
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
40853
+ "control_name": "Secure Software Development Framework"
40854
+ },
40855
+ {
40856
+ "id": "NIST-800-53-AC-2",
40857
+ "framework": "NIST SP 800-53 Rev 5",
40858
+ "control_name": "Account Management"
40859
+ },
40860
+ {
40861
+ "id": "NIST-800-53-CM-7",
40862
+ "framework": "NIST SP 800-53 Rev 5",
40863
+ "control_name": "Least Functionality"
40864
+ },
40865
+ {
40866
+ "id": "NIST-800-53-SA-12",
40867
+ "framework": "NIST SP 800-53 Rev 5",
40868
+ "control_name": "Supply Chain Protection"
40869
+ },
40870
+ {
40871
+ "id": "NIST-800-53-SI-12",
40872
+ "framework": "NIST SP 800-53 Rev 5",
40873
+ "control_name": "Information Management and Retention"
40874
+ },
40875
+ {
40876
+ "id": "NIST-800-53-SI-3",
40877
+ "framework": "NIST SP 800-53 Rev 5",
40878
+ "control_name": "Malicious Code Protection"
40879
+ },
40880
+ {
40881
+ "id": "NIST-AI-RMF-MEASURE-2.5",
40882
+ "framework": "NIST AI RMF 1.0",
40883
+ "control_name": "AI system to human interaction evaluation"
40884
+ },
40885
+ {
40886
+ "id": "OWASP-ASVS-v5.0-V14",
40887
+ "framework": "OWASP ASVS v5.0",
40888
+ "control_name": "Configuration verification"
40889
+ },
40890
+ {
40891
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
40892
+ "framework": "OWASP Top 10 for LLM Applications 2025",
40893
+ "control_name": "Prompt Injection"
40894
+ },
40895
+ {
40896
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
40897
+ "framework": "OWASP Top 10 for LLM Applications 2025",
40898
+ "control_name": "Sensitive Information Disclosure"
40899
+ },
40900
+ {
40901
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
40902
+ "framework": "OWASP Top 10 for LLM Applications 2025",
40903
+ "control_name": "Excessive Agency"
40904
+ },
40905
+ {
40906
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
40907
+ "framework": "OWASP Top 10 for LLM Applications 2025",
40908
+ "control_name": "Vector and Embedding Weaknesses"
40909
+ },
40910
+ {
40911
+ "id": "SLSA-v1.0-Build-L3",
40912
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
40913
+ "control_name": "Hardened build platform with non-falsifiable provenance"
40914
+ },
40915
+ {
40916
+ "id": "SOC2-CC6-logical-access",
40917
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
40918
+ "control_name": "Logical and Physical Access Controls"
40919
+ },
40920
+ {
40921
+ "id": "SOC2-CC9-vendor-management",
40922
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
40923
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
40924
+ },
40925
+ {
40926
+ "id": "SWIFT-CSCF-v2026-1.1",
40927
+ "framework": "SWIFT Customer Security Controls Framework v2026",
40928
+ "control_name": "SWIFT Environment Protection"
40929
+ }
40930
+ ],
40931
+ "attack_refs": [
40932
+ "T1059",
40933
+ "T1068",
40934
+ "T1078",
40935
+ "T1190",
40936
+ "T1195.001",
40937
+ "T1505",
40938
+ "T1530",
40939
+ "T1552",
40940
+ "T1565",
40941
+ "T1566",
40942
+ "T1567",
40943
+ "T1610",
40944
+ "T1611"
40945
+ ],
40946
+ "rfc_refs": [
40947
+ "RFC-6749",
40948
+ "RFC-7519",
40949
+ "RFC-8032",
40950
+ "RFC-8446",
40951
+ "RFC-8725",
40952
+ "RFC-9114",
40953
+ "RFC-9180",
40954
+ "RFC-9421",
40955
+ "RFC-9700"
40956
+ ]
40957
+ }
40958
+ },
40201
40959
  "CVE-2026-41091": {
40202
40960
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
40203
40961
  "rwep": 45,
@@ -66592,6 +67350,8 @@
66592
67350
  "CVE-2024-21513",
66593
67351
  "CVE-2024-21575",
66594
67352
  "CVE-2024-21576",
67353
+ "CVE-2024-24590",
67354
+ "CVE-2024-24591",
66595
67355
  "CVE-2024-27132",
66596
67356
  "CVE-2024-3094",
66597
67357
  "CVE-2024-3154",
@@ -66842,6 +67602,8 @@
66842
67602
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
66843
67603
  "CVE-2023-43472",
66844
67604
  "CVE-2024-12366",
67605
+ "CVE-2024-24590",
67606
+ "CVE-2024-24591",
66845
67607
  "CVE-2024-3094",
66846
67608
  "CVE-2024-3154",
66847
67609
  "CVE-2024-5565",
@@ -67008,6 +67770,8 @@
67008
67770
  "CVE-2024-21513",
67009
67771
  "CVE-2024-21575",
67010
67772
  "CVE-2024-21576",
67773
+ "CVE-2024-24590",
67774
+ "CVE-2024-24591",
67011
67775
  "CVE-2024-27132",
67012
67776
  "CVE-2024-37032",
67013
67777
  "CVE-2024-39722",
@@ -67211,6 +67975,8 @@
67211
67975
  "CVE-2024-21513",
67212
67976
  "CVE-2024-21575",
67213
67977
  "CVE-2024-21576",
67978
+ "CVE-2024-24590",
67979
+ "CVE-2024-24591",
67214
67980
  "CVE-2024-27132",
67215
67981
  "CVE-2024-37032",
67216
67982
  "CVE-2024-39722",
@@ -67428,6 +68194,8 @@
67428
68194
  "CVE-2024-21513",
67429
68195
  "CVE-2024-21575",
67430
68196
  "CVE-2024-21576",
68197
+ "CVE-2024-24590",
68198
+ "CVE-2024-24591",
67431
68199
  "CVE-2024-27132",
67432
68200
  "CVE-2024-37032",
67433
68201
  "CVE-2024-39722",
@@ -67749,6 +68517,8 @@
67749
68517
  "CVE-2024-21513",
67750
68518
  "CVE-2024-21575",
67751
68519
  "CVE-2024-21576",
68520
+ "CVE-2024-24590",
68521
+ "CVE-2024-24591",
67752
68522
  "CVE-2024-27132",
67753
68523
  "CVE-2024-3094",
67754
68524
  "CVE-2024-3154",
@@ -68507,6 +69277,8 @@
68507
69277
  "CVE-2024-1561",
68508
69278
  "CVE-2024-21575",
68509
69279
  "CVE-2024-21576",
69280
+ "CVE-2024-24590",
69281
+ "CVE-2024-24591",
68510
69282
  "CVE-2024-3094",
68511
69283
  "CVE-2024-3154",
68512
69284
  "CVE-2024-40635",
@@ -68890,6 +69662,8 @@
68890
69662
  "CVE-2024-21513",
68891
69663
  "CVE-2024-21575",
68892
69664
  "CVE-2024-21576",
69665
+ "CVE-2024-24590",
69666
+ "CVE-2024-24591",
68893
69667
  "CVE-2024-27132",
68894
69668
  "CVE-2024-3094",
68895
69669
  "CVE-2024-3154",
@@ -69532,6 +70306,8 @@
69532
70306
  "CVE-2024-21513",
69533
70307
  "CVE-2024-21575",
69534
70308
  "CVE-2024-21576",
70309
+ "CVE-2024-24590",
70310
+ "CVE-2024-24591",
69535
70311
  "CVE-2024-27132",
69536
70312
  "CVE-2024-3094",
69537
70313
  "CVE-2024-3154",
@@ -70267,6 +71043,8 @@
70267
71043
  "related_cves": [
70268
71044
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
70269
71045
  "CVE-2024-12366",
71046
+ "CVE-2024-24590",
71047
+ "CVE-2024-24591",
70270
71048
  "CVE-2024-3094",
70271
71049
  "CVE-2024-3154",
70272
71050
  "CVE-2024-5565",
@@ -70518,6 +71296,8 @@
70518
71296
  "CVE-2024-21513",
70519
71297
  "CVE-2024-21575",
70520
71298
  "CVE-2024-21576",
71299
+ "CVE-2024-24590",
71300
+ "CVE-2024-24591",
70521
71301
  "CVE-2024-27132",
70522
71302
  "CVE-2024-3094",
70523
71303
  "CVE-2024-3154",
@@ -71749,6 +72529,8 @@
71749
72529
  "CVE-2024-21513",
71750
72530
  "CVE-2024-21575",
71751
72531
  "CVE-2024-21576",
72532
+ "CVE-2024-24590",
72533
+ "CVE-2024-24591",
71752
72534
  "CVE-2024-27132",
71753
72535
  "CVE-2024-3094",
71754
72536
  "CVE-2024-3154",
@@ -72011,6 +72793,8 @@
72011
72793
  "related_cves": [
72012
72794
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
72013
72795
  "CVE-2024-12366",
72796
+ "CVE-2024-24590",
72797
+ "CVE-2024-24591",
72014
72798
  "CVE-2024-3094",
72015
72799
  "CVE-2024-3154",
72016
72800
  "CVE-2024-5565",
@@ -72207,6 +72991,8 @@
72207
72991
  "related_cves": [
72208
72992
  "CVE-2023-43472",
72209
72993
  "CVE-2024-12366",
72994
+ "CVE-2024-24590",
72995
+ "CVE-2024-24591",
72210
72996
  "CVE-2024-3094",
72211
72997
  "CVE-2024-5565",
72212
72998
  "CVE-2025-0133",
@@ -73146,6 +73932,8 @@
73146
73932
  "CVE-2024-21513",
73147
73933
  "CVE-2024-21575",
73148
73934
  "CVE-2024-21576",
73935
+ "CVE-2024-24590",
73936
+ "CVE-2024-24591",
73149
73937
  "CVE-2024-27132",
73150
73938
  "CVE-2024-3094",
73151
73939
  "CVE-2024-3154",
@@ -73513,6 +74301,8 @@
73513
74301
  "CVE-2024-21575",
73514
74302
  "CVE-2024-21576",
73515
74303
  "CVE-2024-21762",
74304
+ "CVE-2024-24590",
74305
+ "CVE-2024-24591",
73516
74306
  "CVE-2024-27132",
73517
74307
  "CVE-2024-27199",
73518
74308
  "CVE-2024-27443",
@@ -74084,6 +74874,8 @@
74084
74874
  "CVE-2024-21513",
74085
74875
  "CVE-2024-21575",
74086
74876
  "CVE-2024-21576",
74877
+ "CVE-2024-24590",
74878
+ "CVE-2024-24591",
74087
74879
  "CVE-2024-27132",
74088
74880
  "CVE-2024-3094",
74089
74881
  "CVE-2024-3154",
@@ -74449,6 +75241,8 @@
74449
75241
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
74450
75242
  "CVE-2023-43472",
74451
75243
  "CVE-2024-12366",
75244
+ "CVE-2024-24590",
75245
+ "CVE-2024-24591",
74452
75246
  "CVE-2024-3094",
74453
75247
  "CVE-2024-3154",
74454
75248
  "CVE-2024-5565",
@@ -74737,6 +75531,8 @@
74737
75531
  "related_cves": [
74738
75532
  "CVE-2023-43472",
74739
75533
  "CVE-2024-12366",
75534
+ "CVE-2024-24590",
75535
+ "CVE-2024-24591",
74740
75536
  "CVE-2024-3094",
74741
75537
  "CVE-2024-5565",
74742
75538
  "CVE-2025-0133",
@@ -75069,6 +75865,8 @@
75069
75865
  "CVE-2024-21513",
75070
75866
  "CVE-2024-21575",
75071
75867
  "CVE-2024-21576",
75868
+ "CVE-2024-24590",
75869
+ "CVE-2024-24591",
75072
75870
  "CVE-2024-27132",
75073
75871
  "CVE-2024-3094",
75074
75872
  "CVE-2024-3154",
@@ -75417,6 +76215,8 @@
75417
76215
  "CVE-2024-21513",
75418
76216
  "CVE-2024-21575",
75419
76217
  "CVE-2024-21576",
76218
+ "CVE-2024-24590",
76219
+ "CVE-2024-24591",
75420
76220
  "CVE-2024-27132",
75421
76221
  "CVE-2024-37032",
75422
76222
  "CVE-2024-39722",
@@ -75628,6 +76428,8 @@
75628
76428
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
75629
76429
  "CVE-2023-43472",
75630
76430
  "CVE-2024-12366",
76431
+ "CVE-2024-24590",
76432
+ "CVE-2024-24591",
75631
76433
  "CVE-2024-3094",
75632
76434
  "CVE-2024-3154",
75633
76435
  "CVE-2024-5565",
@@ -76360,6 +77162,8 @@
76360
77162
  "CVE-2024-21513",
76361
77163
  "CVE-2024-21575",
76362
77164
  "CVE-2024-21576",
77165
+ "CVE-2024-24590",
77166
+ "CVE-2024-24591",
76363
77167
  "CVE-2024-27132",
76364
77168
  "CVE-2024-3094",
76365
77169
  "CVE-2024-3154",
@@ -76694,6 +77498,8 @@
76694
77498
  "CVE-2024-21513",
76695
77499
  "CVE-2024-21575",
76696
77500
  "CVE-2024-21576",
77501
+ "CVE-2024-24590",
77502
+ "CVE-2024-24591",
76697
77503
  "CVE-2024-27132",
76698
77504
  "CVE-2024-3094",
76699
77505
  "CVE-2024-37032",