@blamejs/exceptd-skills 0.13.104 → 0.13.106

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +8 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +1576 -0
  6. package/data/atlas-ttps.json +6 -0
  7. package/data/attack-techniques.json +9 -0
  8. package/data/cve-catalog.json +419 -0
  9. package/data/cwe-catalog.json +4 -0
  10. package/data/framework-control-gaps.json +38 -0
  11. package/data/zeroday-lessons.json +200 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -40956,6 +40956,1506 @@
40956
40956
  ]
40957
40957
  }
40958
40958
  },
40959
+ "CVE-2023-6016": {
40960
+ "name": "H2O-3 POJO Model Import Unauthenticated Remote Code Execution",
40961
+ "rwep": 48,
40962
+ "cvss": 9.8,
40963
+ "cisa_kev": false,
40964
+ "epss_score": null,
40965
+ "referencing_skills": [
40966
+ "ai-attack-surface",
40967
+ "mcp-agent-trust",
40968
+ "compliance-theater",
40969
+ "rag-pipeline-security",
40970
+ "ai-c2-detection",
40971
+ "threat-modeling-methodology",
40972
+ "webapp-security",
40973
+ "api-security",
40974
+ "cloud-security",
40975
+ "container-runtime-security",
40976
+ "email-security-anti-phishing"
40977
+ ],
40978
+ "chain": {
40979
+ "cwes": [
40980
+ {
40981
+ "id": "CWE-1039",
40982
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
40983
+ "category": "AI/ML"
40984
+ },
40985
+ {
40986
+ "id": "CWE-1188",
40987
+ "name": "Initialization of a Resource with an Insecure Default",
40988
+ "category": "Configuration"
40989
+ },
40990
+ {
40991
+ "id": "CWE-1395",
40992
+ "name": "Dependency on Vulnerable Third-Party Component",
40993
+ "category": "Supply Chain"
40994
+ },
40995
+ {
40996
+ "id": "CWE-1426",
40997
+ "name": "Improper Validation of Generative AI Output",
40998
+ "category": "AI/ML"
40999
+ },
41000
+ {
41001
+ "id": "CWE-200",
41002
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
41003
+ "category": "Information Exposure"
41004
+ },
41005
+ {
41006
+ "id": "CWE-22",
41007
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
41008
+ "category": "Path/Resource"
41009
+ },
41010
+ {
41011
+ "id": "CWE-269",
41012
+ "name": "Improper Privilege Management",
41013
+ "category": "Authorization"
41014
+ },
41015
+ {
41016
+ "id": "CWE-287",
41017
+ "name": "Improper Authentication",
41018
+ "category": "Authentication"
41019
+ },
41020
+ {
41021
+ "id": "CWE-345",
41022
+ "name": "Insufficient Verification of Data Authenticity",
41023
+ "category": "Authenticity / Supply Chain"
41024
+ },
41025
+ {
41026
+ "id": "CWE-352",
41027
+ "name": "Cross-Site Request Forgery (CSRF)",
41028
+ "category": "Session"
41029
+ },
41030
+ {
41031
+ "id": "CWE-434",
41032
+ "name": "Unrestricted Upload of File with Dangerous Type",
41033
+ "category": "File Handling"
41034
+ },
41035
+ {
41036
+ "id": "CWE-494",
41037
+ "name": "Download of Code Without Integrity Check",
41038
+ "category": "Supply Chain"
41039
+ },
41040
+ {
41041
+ "id": "CWE-502",
41042
+ "name": "Deserialization of Untrusted Data",
41043
+ "category": "Serialization"
41044
+ },
41045
+ {
41046
+ "id": "CWE-732",
41047
+ "name": "Incorrect Permission Assignment for Critical Resource",
41048
+ "category": "Authorization"
41049
+ },
41050
+ {
41051
+ "id": "CWE-77",
41052
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
41053
+ "category": "Injection"
41054
+ },
41055
+ {
41056
+ "id": "CWE-78",
41057
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
41058
+ "category": "Injection"
41059
+ },
41060
+ {
41061
+ "id": "CWE-787",
41062
+ "name": "Out-of-bounds Write",
41063
+ "category": "Memory Safety"
41064
+ },
41065
+ {
41066
+ "id": "CWE-79",
41067
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
41068
+ "category": "Injection"
41069
+ },
41070
+ {
41071
+ "id": "CWE-798",
41072
+ "name": "Use of Hard-coded Credentials",
41073
+ "category": "Credentials"
41074
+ },
41075
+ {
41076
+ "id": "CWE-862",
41077
+ "name": "Missing Authorization",
41078
+ "category": "Authorization"
41079
+ },
41080
+ {
41081
+ "id": "CWE-863",
41082
+ "name": "Incorrect Authorization",
41083
+ "category": "Authorization"
41084
+ },
41085
+ {
41086
+ "id": "CWE-89",
41087
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
41088
+ "category": "Injection"
41089
+ },
41090
+ {
41091
+ "id": "CWE-918",
41092
+ "name": "Server-Side Request Forgery (SSRF)",
41093
+ "category": "Network"
41094
+ },
41095
+ {
41096
+ "id": "CWE-94",
41097
+ "name": "Improper Control of Generation of Code (Code Injection)",
41098
+ "category": "Injection"
41099
+ }
41100
+ ],
41101
+ "atlas": [
41102
+ {
41103
+ "id": "AML.T0010",
41104
+ "name": "ML Supply Chain Compromise",
41105
+ "tactic": "Initial Access"
41106
+ },
41107
+ {
41108
+ "id": "AML.T0016",
41109
+ "name": "Obtain Capabilities: Develop Capabilities",
41110
+ "tactic": "Resource Development"
41111
+ },
41112
+ {
41113
+ "id": "AML.T0017",
41114
+ "name": "Discover ML Model Ontology",
41115
+ "tactic": "Discovery"
41116
+ },
41117
+ {
41118
+ "id": "AML.T0018",
41119
+ "name": "Backdoor ML Model",
41120
+ "tactic": "Persistence"
41121
+ },
41122
+ {
41123
+ "id": "AML.T0020",
41124
+ "name": "Poison Training Data",
41125
+ "tactic": "ML Attack Staging"
41126
+ },
41127
+ {
41128
+ "id": "AML.T0043",
41129
+ "name": "Craft Adversarial Data",
41130
+ "tactic": "ML Attack Staging"
41131
+ },
41132
+ {
41133
+ "id": "AML.T0051",
41134
+ "name": "LLM Prompt Injection",
41135
+ "tactic": "Execution"
41136
+ },
41137
+ {
41138
+ "id": "AML.T0054",
41139
+ "name": "LLM Jailbreak",
41140
+ "tactic": "Defense Evasion"
41141
+ },
41142
+ {
41143
+ "id": "AML.T0096",
41144
+ "name": "AI API as Covert C2 Channel",
41145
+ "tactic": "Command and Control"
41146
+ }
41147
+ ],
41148
+ "d3fend": [
41149
+ {
41150
+ "id": "D3-CA",
41151
+ "name": "Certificate Analysis",
41152
+ "tactic": "Detect"
41153
+ },
41154
+ {
41155
+ "id": "D3-CBAN",
41156
+ "name": "Certificate-based Authentication",
41157
+ "tactic": "Harden"
41158
+ },
41159
+ {
41160
+ "id": "D3-CSPP",
41161
+ "name": "Client-server Payload Profiling",
41162
+ "tactic": "Detect"
41163
+ },
41164
+ {
41165
+ "id": "D3-DA",
41166
+ "name": "Domain Analysis",
41167
+ "tactic": "Detect"
41168
+ },
41169
+ {
41170
+ "id": "D3-EAL",
41171
+ "name": "Executable Allowlisting",
41172
+ "tactic": "Harden"
41173
+ },
41174
+ {
41175
+ "id": "D3-EHB",
41176
+ "name": "Executable Hashbased Allowlist",
41177
+ "tactic": "Harden"
41178
+ },
41179
+ {
41180
+ "id": "D3-IOPR",
41181
+ "name": "Input/Output Profiling Resource",
41182
+ "tactic": "Detect"
41183
+ },
41184
+ {
41185
+ "id": "D3-MFA",
41186
+ "name": "Multi-factor Authentication",
41187
+ "tactic": "Harden"
41188
+ },
41189
+ {
41190
+ "id": "D3-NI",
41191
+ "name": "Network Isolation",
41192
+ "tactic": "Isolate"
41193
+ },
41194
+ {
41195
+ "id": "D3-NTA",
41196
+ "name": "Network Traffic Analysis",
41197
+ "tactic": "Detect"
41198
+ },
41199
+ {
41200
+ "id": "D3-NTPM",
41201
+ "name": "Network Traffic Policy Mapping",
41202
+ "tactic": "Model"
41203
+ }
41204
+ ],
41205
+ "framework_gaps": [
41206
+ {
41207
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
41208
+ "framework": "ALL",
41209
+ "control_name": "AI Pipeline Integrity"
41210
+ },
41211
+ {
41212
+ "id": "ALL-MCP-TOOL-TRUST",
41213
+ "framework": "ALL",
41214
+ "control_name": "MCP/Agent Tool Trust Boundaries"
41215
+ },
41216
+ {
41217
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
41218
+ "framework": "ALL",
41219
+ "control_name": "Prompt Injection as Access Control Failure"
41220
+ },
41221
+ {
41222
+ "id": "CMMC-2.0-Level-2",
41223
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
41224
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
41225
+ },
41226
+ {
41227
+ "id": "FedRAMP-Rev5-Moderate",
41228
+ "framework": "FedRAMP Rev 5 Moderate",
41229
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
41230
+ },
41231
+ {
41232
+ "id": "ISO-27001-2022-A.8.16",
41233
+ "framework": "ISO/IEC 27001:2022",
41234
+ "control_name": "Monitoring activities"
41235
+ },
41236
+ {
41237
+ "id": "ISO-27001-2022-A.8.28",
41238
+ "framework": "ISO/IEC 27001:2022",
41239
+ "control_name": "Secure coding"
41240
+ },
41241
+ {
41242
+ "id": "ISO-27001-2022-A.8.30",
41243
+ "framework": "ISO/IEC 27001:2022",
41244
+ "control_name": "Outsourced development"
41245
+ },
41246
+ {
41247
+ "id": "ISO-IEC-23894-2023-clause-7",
41248
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
41249
+ "control_name": "AI risk management process"
41250
+ },
41251
+ {
41252
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
41253
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
41254
+ "control_name": "AI risk assessment"
41255
+ },
41256
+ {
41257
+ "id": "NIST-800-218-SSDF",
41258
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
41259
+ "control_name": "Secure Software Development Framework"
41260
+ },
41261
+ {
41262
+ "id": "NIST-800-53-AC-2",
41263
+ "framework": "NIST SP 800-53 Rev 5",
41264
+ "control_name": "Account Management"
41265
+ },
41266
+ {
41267
+ "id": "NIST-800-53-CM-7",
41268
+ "framework": "NIST SP 800-53 Rev 5",
41269
+ "control_name": "Least Functionality"
41270
+ },
41271
+ {
41272
+ "id": "NIST-800-53-SA-12",
41273
+ "framework": "NIST SP 800-53 Rev 5",
41274
+ "control_name": "Supply Chain Protection"
41275
+ },
41276
+ {
41277
+ "id": "NIST-800-53-SC-7",
41278
+ "framework": "NIST SP 800-53 Rev 5",
41279
+ "control_name": "Boundary Protection"
41280
+ },
41281
+ {
41282
+ "id": "NIST-800-53-SI-12",
41283
+ "framework": "NIST SP 800-53 Rev 5",
41284
+ "control_name": "Information Management and Retention"
41285
+ },
41286
+ {
41287
+ "id": "NIST-800-53-SI-3",
41288
+ "framework": "NIST SP 800-53 Rev 5",
41289
+ "control_name": "Malicious Code Protection"
41290
+ },
41291
+ {
41292
+ "id": "NIST-AI-RMF-MEASURE-2.5",
41293
+ "framework": "NIST AI RMF 1.0",
41294
+ "control_name": "AI system to human interaction evaluation"
41295
+ },
41296
+ {
41297
+ "id": "OWASP-ASVS-v5.0-V14",
41298
+ "framework": "OWASP ASVS v5.0",
41299
+ "control_name": "Configuration verification"
41300
+ },
41301
+ {
41302
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
41303
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41304
+ "control_name": "Prompt Injection"
41305
+ },
41306
+ {
41307
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
41308
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41309
+ "control_name": "Sensitive Information Disclosure"
41310
+ },
41311
+ {
41312
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
41313
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41314
+ "control_name": "Excessive Agency"
41315
+ },
41316
+ {
41317
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
41318
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41319
+ "control_name": "Vector and Embedding Weaknesses"
41320
+ },
41321
+ {
41322
+ "id": "SLSA-v1.0-Build-L3",
41323
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
41324
+ "control_name": "Hardened build platform with non-falsifiable provenance"
41325
+ },
41326
+ {
41327
+ "id": "SOC2-CC6-logical-access",
41328
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
41329
+ "control_name": "Logical and Physical Access Controls"
41330
+ },
41331
+ {
41332
+ "id": "SOC2-CC7-anomaly-detection",
41333
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
41334
+ "control_name": "System Operations — Threat and Vulnerability Management"
41335
+ },
41336
+ {
41337
+ "id": "SOC2-CC9-vendor-management",
41338
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
41339
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
41340
+ },
41341
+ {
41342
+ "id": "SWIFT-CSCF-v2026-1.1",
41343
+ "framework": "SWIFT Customer Security Controls Framework v2026",
41344
+ "control_name": "SWIFT Environment Protection"
41345
+ }
41346
+ ],
41347
+ "attack_refs": [
41348
+ "T1059",
41349
+ "T1068",
41350
+ "T1071",
41351
+ "T1078",
41352
+ "T1102",
41353
+ "T1190",
41354
+ "T1195.001",
41355
+ "T1505",
41356
+ "T1530",
41357
+ "T1552",
41358
+ "T1565",
41359
+ "T1566",
41360
+ "T1566.001",
41361
+ "T1566.002",
41362
+ "T1566.003",
41363
+ "T1567",
41364
+ "T1568",
41365
+ "T1610",
41366
+ "T1611"
41367
+ ],
41368
+ "rfc_refs": [
41369
+ "RFC-6749",
41370
+ "RFC-7519",
41371
+ "RFC-8032",
41372
+ "RFC-8446",
41373
+ "RFC-8725",
41374
+ "RFC-9000",
41375
+ "RFC-9114",
41376
+ "RFC-9180",
41377
+ "RFC-9421",
41378
+ "RFC-9458",
41379
+ "RFC-9700"
41380
+ ]
41381
+ }
41382
+ },
41383
+ "CVE-2023-6038": {
41384
+ "name": "H2O-3 REST API Unauthenticated Local File Inclusion (Arbitrary File Read)",
41385
+ "rwep": 38,
41386
+ "cvss": 7.5,
41387
+ "cisa_kev": false,
41388
+ "epss_score": null,
41389
+ "referencing_skills": [
41390
+ "ai-attack-surface",
41391
+ "compliance-theater",
41392
+ "ai-c2-detection",
41393
+ "dlp-gap-analysis"
41394
+ ],
41395
+ "chain": {
41396
+ "cwes": [
41397
+ {
41398
+ "id": "CWE-1039",
41399
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
41400
+ "category": "AI/ML"
41401
+ },
41402
+ {
41403
+ "id": "CWE-1426",
41404
+ "name": "Improper Validation of Generative AI Output",
41405
+ "category": "AI/ML"
41406
+ },
41407
+ {
41408
+ "id": "CWE-200",
41409
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
41410
+ "category": "Information Exposure"
41411
+ },
41412
+ {
41413
+ "id": "CWE-94",
41414
+ "name": "Improper Control of Generation of Code (Code Injection)",
41415
+ "category": "Injection"
41416
+ }
41417
+ ],
41418
+ "atlas": [
41419
+ {
41420
+ "id": "AML.T0016",
41421
+ "name": "Obtain Capabilities: Develop Capabilities",
41422
+ "tactic": "Resource Development"
41423
+ },
41424
+ {
41425
+ "id": "AML.T0017",
41426
+ "name": "Discover ML Model Ontology",
41427
+ "tactic": "Discovery"
41428
+ },
41429
+ {
41430
+ "id": "AML.T0018",
41431
+ "name": "Backdoor ML Model",
41432
+ "tactic": "Persistence"
41433
+ },
41434
+ {
41435
+ "id": "AML.T0020",
41436
+ "name": "Poison Training Data",
41437
+ "tactic": "ML Attack Staging"
41438
+ },
41439
+ {
41440
+ "id": "AML.T0043",
41441
+ "name": "Craft Adversarial Data",
41442
+ "tactic": "ML Attack Staging"
41443
+ },
41444
+ {
41445
+ "id": "AML.T0051",
41446
+ "name": "LLM Prompt Injection",
41447
+ "tactic": "Execution"
41448
+ },
41449
+ {
41450
+ "id": "AML.T0054",
41451
+ "name": "LLM Jailbreak",
41452
+ "tactic": "Defense Evasion"
41453
+ },
41454
+ {
41455
+ "id": "AML.T0096",
41456
+ "name": "AI API as Covert C2 Channel",
41457
+ "tactic": "Command and Control"
41458
+ }
41459
+ ],
41460
+ "d3fend": [
41461
+ {
41462
+ "id": "D3-CA",
41463
+ "name": "Certificate Analysis",
41464
+ "tactic": "Detect"
41465
+ },
41466
+ {
41467
+ "id": "D3-CSPP",
41468
+ "name": "Client-server Payload Profiling",
41469
+ "tactic": "Detect"
41470
+ },
41471
+ {
41472
+ "id": "D3-DA",
41473
+ "name": "Domain Analysis",
41474
+ "tactic": "Detect"
41475
+ },
41476
+ {
41477
+ "id": "D3-EAL",
41478
+ "name": "Executable Allowlisting",
41479
+ "tactic": "Harden"
41480
+ },
41481
+ {
41482
+ "id": "D3-IOPR",
41483
+ "name": "Input/Output Profiling Resource",
41484
+ "tactic": "Detect"
41485
+ },
41486
+ {
41487
+ "id": "D3-NI",
41488
+ "name": "Network Isolation",
41489
+ "tactic": "Isolate"
41490
+ },
41491
+ {
41492
+ "id": "D3-NTA",
41493
+ "name": "Network Traffic Analysis",
41494
+ "tactic": "Detect"
41495
+ },
41496
+ {
41497
+ "id": "D3-NTPM",
41498
+ "name": "Network Traffic Policy Mapping",
41499
+ "tactic": "Model"
41500
+ }
41501
+ ],
41502
+ "framework_gaps": [
41503
+ {
41504
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
41505
+ "framework": "ALL",
41506
+ "control_name": "AI Pipeline Integrity"
41507
+ },
41508
+ {
41509
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
41510
+ "framework": "ALL",
41511
+ "control_name": "Prompt Injection as Access Control Failure"
41512
+ },
41513
+ {
41514
+ "id": "CMMC-2.0-Level-2",
41515
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
41516
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
41517
+ },
41518
+ {
41519
+ "id": "FedRAMP-Rev5-Moderate",
41520
+ "framework": "FedRAMP Rev 5 Moderate",
41521
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
41522
+ },
41523
+ {
41524
+ "id": "HIPAA-Security-Rule-164.312(a)(1)",
41525
+ "framework": "HIPAA Security Rule (45 CFR § 164.312)",
41526
+ "control_name": "Access control standard (technical safeguards)"
41527
+ },
41528
+ {
41529
+ "id": "ISO-27001-2022-A.8.16",
41530
+ "framework": "ISO/IEC 27001:2022",
41531
+ "control_name": "Monitoring activities"
41532
+ },
41533
+ {
41534
+ "id": "ISO-27001-2022-A.8.28",
41535
+ "framework": "ISO/IEC 27001:2022",
41536
+ "control_name": "Secure coding"
41537
+ },
41538
+ {
41539
+ "id": "ISO-IEC-23894-2023-clause-7",
41540
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
41541
+ "control_name": "AI risk management process"
41542
+ },
41543
+ {
41544
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
41545
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
41546
+ "control_name": "AI risk assessment"
41547
+ },
41548
+ {
41549
+ "id": "NIST-800-53-AC-2",
41550
+ "framework": "NIST SP 800-53 Rev 5",
41551
+ "control_name": "Account Management"
41552
+ },
41553
+ {
41554
+ "id": "NIST-800-53-SC-28",
41555
+ "framework": "NIST SP 800-53 Rev 5",
41556
+ "control_name": "Protection of Information at Rest"
41557
+ },
41558
+ {
41559
+ "id": "NIST-800-53-SC-7",
41560
+ "framework": "NIST SP 800-53 Rev 5",
41561
+ "control_name": "Boundary Protection"
41562
+ },
41563
+ {
41564
+ "id": "NIST-800-53-SI-3",
41565
+ "framework": "NIST SP 800-53 Rev 5",
41566
+ "control_name": "Malicious Code Protection"
41567
+ },
41568
+ {
41569
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
41570
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41571
+ "control_name": "Prompt Injection"
41572
+ },
41573
+ {
41574
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
41575
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41576
+ "control_name": "Sensitive Information Disclosure"
41577
+ },
41578
+ {
41579
+ "id": "SOC2-CC6-logical-access",
41580
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
41581
+ "control_name": "Logical and Physical Access Controls"
41582
+ },
41583
+ {
41584
+ "id": "SOC2-CC7-anomaly-detection",
41585
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
41586
+ "control_name": "System Operations — Threat and Vulnerability Management"
41587
+ }
41588
+ ],
41589
+ "attack_refs": [
41590
+ "T1041",
41591
+ "T1059",
41592
+ "T1071",
41593
+ "T1102",
41594
+ "T1190",
41595
+ "T1213",
41596
+ "T1530",
41597
+ "T1566",
41598
+ "T1567",
41599
+ "T1568"
41600
+ ],
41601
+ "rfc_refs": [
41602
+ "RFC-8446",
41603
+ "RFC-9000",
41604
+ "RFC-9114",
41605
+ "RFC-9180",
41606
+ "RFC-9421",
41607
+ "RFC-9458"
41608
+ ]
41609
+ }
41610
+ },
41611
+ "CVE-2024-2912": {
41612
+ "name": "BentoML Insecure Deserialization Unauthenticated Remote Code Execution",
41613
+ "rwep": 33,
41614
+ "cvss": 10,
41615
+ "cisa_kev": false,
41616
+ "epss_score": null,
41617
+ "referencing_skills": [
41618
+ "ai-attack-surface",
41619
+ "mcp-agent-trust",
41620
+ "compliance-theater",
41621
+ "rag-pipeline-security",
41622
+ "ai-c2-detection",
41623
+ "threat-modeling-methodology",
41624
+ "webapp-security",
41625
+ "api-security",
41626
+ "cloud-security",
41627
+ "container-runtime-security",
41628
+ "email-security-anti-phishing"
41629
+ ],
41630
+ "chain": {
41631
+ "cwes": [
41632
+ {
41633
+ "id": "CWE-1039",
41634
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
41635
+ "category": "AI/ML"
41636
+ },
41637
+ {
41638
+ "id": "CWE-1188",
41639
+ "name": "Initialization of a Resource with an Insecure Default",
41640
+ "category": "Configuration"
41641
+ },
41642
+ {
41643
+ "id": "CWE-1395",
41644
+ "name": "Dependency on Vulnerable Third-Party Component",
41645
+ "category": "Supply Chain"
41646
+ },
41647
+ {
41648
+ "id": "CWE-1426",
41649
+ "name": "Improper Validation of Generative AI Output",
41650
+ "category": "AI/ML"
41651
+ },
41652
+ {
41653
+ "id": "CWE-200",
41654
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
41655
+ "category": "Information Exposure"
41656
+ },
41657
+ {
41658
+ "id": "CWE-22",
41659
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
41660
+ "category": "Path/Resource"
41661
+ },
41662
+ {
41663
+ "id": "CWE-269",
41664
+ "name": "Improper Privilege Management",
41665
+ "category": "Authorization"
41666
+ },
41667
+ {
41668
+ "id": "CWE-287",
41669
+ "name": "Improper Authentication",
41670
+ "category": "Authentication"
41671
+ },
41672
+ {
41673
+ "id": "CWE-345",
41674
+ "name": "Insufficient Verification of Data Authenticity",
41675
+ "category": "Authenticity / Supply Chain"
41676
+ },
41677
+ {
41678
+ "id": "CWE-352",
41679
+ "name": "Cross-Site Request Forgery (CSRF)",
41680
+ "category": "Session"
41681
+ },
41682
+ {
41683
+ "id": "CWE-434",
41684
+ "name": "Unrestricted Upload of File with Dangerous Type",
41685
+ "category": "File Handling"
41686
+ },
41687
+ {
41688
+ "id": "CWE-494",
41689
+ "name": "Download of Code Without Integrity Check",
41690
+ "category": "Supply Chain"
41691
+ },
41692
+ {
41693
+ "id": "CWE-502",
41694
+ "name": "Deserialization of Untrusted Data",
41695
+ "category": "Serialization"
41696
+ },
41697
+ {
41698
+ "id": "CWE-732",
41699
+ "name": "Incorrect Permission Assignment for Critical Resource",
41700
+ "category": "Authorization"
41701
+ },
41702
+ {
41703
+ "id": "CWE-77",
41704
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
41705
+ "category": "Injection"
41706
+ },
41707
+ {
41708
+ "id": "CWE-78",
41709
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
41710
+ "category": "Injection"
41711
+ },
41712
+ {
41713
+ "id": "CWE-787",
41714
+ "name": "Out-of-bounds Write",
41715
+ "category": "Memory Safety"
41716
+ },
41717
+ {
41718
+ "id": "CWE-79",
41719
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
41720
+ "category": "Injection"
41721
+ },
41722
+ {
41723
+ "id": "CWE-798",
41724
+ "name": "Use of Hard-coded Credentials",
41725
+ "category": "Credentials"
41726
+ },
41727
+ {
41728
+ "id": "CWE-862",
41729
+ "name": "Missing Authorization",
41730
+ "category": "Authorization"
41731
+ },
41732
+ {
41733
+ "id": "CWE-863",
41734
+ "name": "Incorrect Authorization",
41735
+ "category": "Authorization"
41736
+ },
41737
+ {
41738
+ "id": "CWE-89",
41739
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
41740
+ "category": "Injection"
41741
+ },
41742
+ {
41743
+ "id": "CWE-918",
41744
+ "name": "Server-Side Request Forgery (SSRF)",
41745
+ "category": "Network"
41746
+ },
41747
+ {
41748
+ "id": "CWE-94",
41749
+ "name": "Improper Control of Generation of Code (Code Injection)",
41750
+ "category": "Injection"
41751
+ }
41752
+ ],
41753
+ "atlas": [
41754
+ {
41755
+ "id": "AML.T0010",
41756
+ "name": "ML Supply Chain Compromise",
41757
+ "tactic": "Initial Access"
41758
+ },
41759
+ {
41760
+ "id": "AML.T0016",
41761
+ "name": "Obtain Capabilities: Develop Capabilities",
41762
+ "tactic": "Resource Development"
41763
+ },
41764
+ {
41765
+ "id": "AML.T0017",
41766
+ "name": "Discover ML Model Ontology",
41767
+ "tactic": "Discovery"
41768
+ },
41769
+ {
41770
+ "id": "AML.T0018",
41771
+ "name": "Backdoor ML Model",
41772
+ "tactic": "Persistence"
41773
+ },
41774
+ {
41775
+ "id": "AML.T0020",
41776
+ "name": "Poison Training Data",
41777
+ "tactic": "ML Attack Staging"
41778
+ },
41779
+ {
41780
+ "id": "AML.T0043",
41781
+ "name": "Craft Adversarial Data",
41782
+ "tactic": "ML Attack Staging"
41783
+ },
41784
+ {
41785
+ "id": "AML.T0051",
41786
+ "name": "LLM Prompt Injection",
41787
+ "tactic": "Execution"
41788
+ },
41789
+ {
41790
+ "id": "AML.T0054",
41791
+ "name": "LLM Jailbreak",
41792
+ "tactic": "Defense Evasion"
41793
+ },
41794
+ {
41795
+ "id": "AML.T0096",
41796
+ "name": "AI API as Covert C2 Channel",
41797
+ "tactic": "Command and Control"
41798
+ }
41799
+ ],
41800
+ "d3fend": [
41801
+ {
41802
+ "id": "D3-CA",
41803
+ "name": "Certificate Analysis",
41804
+ "tactic": "Detect"
41805
+ },
41806
+ {
41807
+ "id": "D3-CBAN",
41808
+ "name": "Certificate-based Authentication",
41809
+ "tactic": "Harden"
41810
+ },
41811
+ {
41812
+ "id": "D3-CSPP",
41813
+ "name": "Client-server Payload Profiling",
41814
+ "tactic": "Detect"
41815
+ },
41816
+ {
41817
+ "id": "D3-DA",
41818
+ "name": "Domain Analysis",
41819
+ "tactic": "Detect"
41820
+ },
41821
+ {
41822
+ "id": "D3-EAL",
41823
+ "name": "Executable Allowlisting",
41824
+ "tactic": "Harden"
41825
+ },
41826
+ {
41827
+ "id": "D3-EHB",
41828
+ "name": "Executable Hashbased Allowlist",
41829
+ "tactic": "Harden"
41830
+ },
41831
+ {
41832
+ "id": "D3-IOPR",
41833
+ "name": "Input/Output Profiling Resource",
41834
+ "tactic": "Detect"
41835
+ },
41836
+ {
41837
+ "id": "D3-MFA",
41838
+ "name": "Multi-factor Authentication",
41839
+ "tactic": "Harden"
41840
+ },
41841
+ {
41842
+ "id": "D3-NI",
41843
+ "name": "Network Isolation",
41844
+ "tactic": "Isolate"
41845
+ },
41846
+ {
41847
+ "id": "D3-NTA",
41848
+ "name": "Network Traffic Analysis",
41849
+ "tactic": "Detect"
41850
+ },
41851
+ {
41852
+ "id": "D3-NTPM",
41853
+ "name": "Network Traffic Policy Mapping",
41854
+ "tactic": "Model"
41855
+ }
41856
+ ],
41857
+ "framework_gaps": [
41858
+ {
41859
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
41860
+ "framework": "ALL",
41861
+ "control_name": "AI Pipeline Integrity"
41862
+ },
41863
+ {
41864
+ "id": "ALL-MCP-TOOL-TRUST",
41865
+ "framework": "ALL",
41866
+ "control_name": "MCP/Agent Tool Trust Boundaries"
41867
+ },
41868
+ {
41869
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
41870
+ "framework": "ALL",
41871
+ "control_name": "Prompt Injection as Access Control Failure"
41872
+ },
41873
+ {
41874
+ "id": "CMMC-2.0-Level-2",
41875
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
41876
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
41877
+ },
41878
+ {
41879
+ "id": "FedRAMP-Rev5-Moderate",
41880
+ "framework": "FedRAMP Rev 5 Moderate",
41881
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
41882
+ },
41883
+ {
41884
+ "id": "ISO-27001-2022-A.8.16",
41885
+ "framework": "ISO/IEC 27001:2022",
41886
+ "control_name": "Monitoring activities"
41887
+ },
41888
+ {
41889
+ "id": "ISO-27001-2022-A.8.28",
41890
+ "framework": "ISO/IEC 27001:2022",
41891
+ "control_name": "Secure coding"
41892
+ },
41893
+ {
41894
+ "id": "ISO-27001-2022-A.8.30",
41895
+ "framework": "ISO/IEC 27001:2022",
41896
+ "control_name": "Outsourced development"
41897
+ },
41898
+ {
41899
+ "id": "ISO-IEC-23894-2023-clause-7",
41900
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
41901
+ "control_name": "AI risk management process"
41902
+ },
41903
+ {
41904
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
41905
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
41906
+ "control_name": "AI risk assessment"
41907
+ },
41908
+ {
41909
+ "id": "NIST-800-218-SSDF",
41910
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
41911
+ "control_name": "Secure Software Development Framework"
41912
+ },
41913
+ {
41914
+ "id": "NIST-800-53-AC-2",
41915
+ "framework": "NIST SP 800-53 Rev 5",
41916
+ "control_name": "Account Management"
41917
+ },
41918
+ {
41919
+ "id": "NIST-800-53-CM-7",
41920
+ "framework": "NIST SP 800-53 Rev 5",
41921
+ "control_name": "Least Functionality"
41922
+ },
41923
+ {
41924
+ "id": "NIST-800-53-SA-12",
41925
+ "framework": "NIST SP 800-53 Rev 5",
41926
+ "control_name": "Supply Chain Protection"
41927
+ },
41928
+ {
41929
+ "id": "NIST-800-53-SC-7",
41930
+ "framework": "NIST SP 800-53 Rev 5",
41931
+ "control_name": "Boundary Protection"
41932
+ },
41933
+ {
41934
+ "id": "NIST-800-53-SI-12",
41935
+ "framework": "NIST SP 800-53 Rev 5",
41936
+ "control_name": "Information Management and Retention"
41937
+ },
41938
+ {
41939
+ "id": "NIST-800-53-SI-3",
41940
+ "framework": "NIST SP 800-53 Rev 5",
41941
+ "control_name": "Malicious Code Protection"
41942
+ },
41943
+ {
41944
+ "id": "NIST-AI-RMF-MEASURE-2.5",
41945
+ "framework": "NIST AI RMF 1.0",
41946
+ "control_name": "AI system to human interaction evaluation"
41947
+ },
41948
+ {
41949
+ "id": "OWASP-ASVS-v5.0-V14",
41950
+ "framework": "OWASP ASVS v5.0",
41951
+ "control_name": "Configuration verification"
41952
+ },
41953
+ {
41954
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
41955
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41956
+ "control_name": "Prompt Injection"
41957
+ },
41958
+ {
41959
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
41960
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41961
+ "control_name": "Sensitive Information Disclosure"
41962
+ },
41963
+ {
41964
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
41965
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41966
+ "control_name": "Excessive Agency"
41967
+ },
41968
+ {
41969
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
41970
+ "framework": "OWASP Top 10 for LLM Applications 2025",
41971
+ "control_name": "Vector and Embedding Weaknesses"
41972
+ },
41973
+ {
41974
+ "id": "SLSA-v1.0-Build-L3",
41975
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
41976
+ "control_name": "Hardened build platform with non-falsifiable provenance"
41977
+ },
41978
+ {
41979
+ "id": "SOC2-CC6-logical-access",
41980
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
41981
+ "control_name": "Logical and Physical Access Controls"
41982
+ },
41983
+ {
41984
+ "id": "SOC2-CC7-anomaly-detection",
41985
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
41986
+ "control_name": "System Operations — Threat and Vulnerability Management"
41987
+ },
41988
+ {
41989
+ "id": "SOC2-CC9-vendor-management",
41990
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
41991
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
41992
+ },
41993
+ {
41994
+ "id": "SWIFT-CSCF-v2026-1.1",
41995
+ "framework": "SWIFT Customer Security Controls Framework v2026",
41996
+ "control_name": "SWIFT Environment Protection"
41997
+ }
41998
+ ],
41999
+ "attack_refs": [
42000
+ "T1059",
42001
+ "T1068",
42002
+ "T1071",
42003
+ "T1078",
42004
+ "T1102",
42005
+ "T1190",
42006
+ "T1195.001",
42007
+ "T1505",
42008
+ "T1530",
42009
+ "T1552",
42010
+ "T1565",
42011
+ "T1566",
42012
+ "T1566.001",
42013
+ "T1566.002",
42014
+ "T1566.003",
42015
+ "T1567",
42016
+ "T1568",
42017
+ "T1610",
42018
+ "T1611"
42019
+ ],
42020
+ "rfc_refs": [
42021
+ "RFC-6749",
42022
+ "RFC-7519",
42023
+ "RFC-8032",
42024
+ "RFC-8446",
42025
+ "RFC-8725",
42026
+ "RFC-9000",
42027
+ "RFC-9114",
42028
+ "RFC-9180",
42029
+ "RFC-9421",
42030
+ "RFC-9458",
42031
+ "RFC-9700"
42032
+ ]
42033
+ }
42034
+ },
42035
+ "CVE-2025-27520": {
42036
+ "name": "BentoML serde.py Insecure Deserialization Unauthenticated Remote Code Execution",
42037
+ "rwep": 33,
42038
+ "cvss": 9.8,
42039
+ "cisa_kev": false,
42040
+ "epss_score": null,
42041
+ "referencing_skills": [
42042
+ "ai-attack-surface",
42043
+ "mcp-agent-trust",
42044
+ "compliance-theater",
42045
+ "rag-pipeline-security",
42046
+ "ai-c2-detection",
42047
+ "threat-modeling-methodology",
42048
+ "webapp-security",
42049
+ "api-security",
42050
+ "cloud-security",
42051
+ "container-runtime-security",
42052
+ "email-security-anti-phishing"
42053
+ ],
42054
+ "chain": {
42055
+ "cwes": [
42056
+ {
42057
+ "id": "CWE-1039",
42058
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
42059
+ "category": "AI/ML"
42060
+ },
42061
+ {
42062
+ "id": "CWE-1188",
42063
+ "name": "Initialization of a Resource with an Insecure Default",
42064
+ "category": "Configuration"
42065
+ },
42066
+ {
42067
+ "id": "CWE-1395",
42068
+ "name": "Dependency on Vulnerable Third-Party Component",
42069
+ "category": "Supply Chain"
42070
+ },
42071
+ {
42072
+ "id": "CWE-1426",
42073
+ "name": "Improper Validation of Generative AI Output",
42074
+ "category": "AI/ML"
42075
+ },
42076
+ {
42077
+ "id": "CWE-200",
42078
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
42079
+ "category": "Information Exposure"
42080
+ },
42081
+ {
42082
+ "id": "CWE-22",
42083
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
42084
+ "category": "Path/Resource"
42085
+ },
42086
+ {
42087
+ "id": "CWE-269",
42088
+ "name": "Improper Privilege Management",
42089
+ "category": "Authorization"
42090
+ },
42091
+ {
42092
+ "id": "CWE-287",
42093
+ "name": "Improper Authentication",
42094
+ "category": "Authentication"
42095
+ },
42096
+ {
42097
+ "id": "CWE-345",
42098
+ "name": "Insufficient Verification of Data Authenticity",
42099
+ "category": "Authenticity / Supply Chain"
42100
+ },
42101
+ {
42102
+ "id": "CWE-352",
42103
+ "name": "Cross-Site Request Forgery (CSRF)",
42104
+ "category": "Session"
42105
+ },
42106
+ {
42107
+ "id": "CWE-434",
42108
+ "name": "Unrestricted Upload of File with Dangerous Type",
42109
+ "category": "File Handling"
42110
+ },
42111
+ {
42112
+ "id": "CWE-494",
42113
+ "name": "Download of Code Without Integrity Check",
42114
+ "category": "Supply Chain"
42115
+ },
42116
+ {
42117
+ "id": "CWE-502",
42118
+ "name": "Deserialization of Untrusted Data",
42119
+ "category": "Serialization"
42120
+ },
42121
+ {
42122
+ "id": "CWE-732",
42123
+ "name": "Incorrect Permission Assignment for Critical Resource",
42124
+ "category": "Authorization"
42125
+ },
42126
+ {
42127
+ "id": "CWE-77",
42128
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
42129
+ "category": "Injection"
42130
+ },
42131
+ {
42132
+ "id": "CWE-78",
42133
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
42134
+ "category": "Injection"
42135
+ },
42136
+ {
42137
+ "id": "CWE-787",
42138
+ "name": "Out-of-bounds Write",
42139
+ "category": "Memory Safety"
42140
+ },
42141
+ {
42142
+ "id": "CWE-79",
42143
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
42144
+ "category": "Injection"
42145
+ },
42146
+ {
42147
+ "id": "CWE-798",
42148
+ "name": "Use of Hard-coded Credentials",
42149
+ "category": "Credentials"
42150
+ },
42151
+ {
42152
+ "id": "CWE-862",
42153
+ "name": "Missing Authorization",
42154
+ "category": "Authorization"
42155
+ },
42156
+ {
42157
+ "id": "CWE-863",
42158
+ "name": "Incorrect Authorization",
42159
+ "category": "Authorization"
42160
+ },
42161
+ {
42162
+ "id": "CWE-89",
42163
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
42164
+ "category": "Injection"
42165
+ },
42166
+ {
42167
+ "id": "CWE-918",
42168
+ "name": "Server-Side Request Forgery (SSRF)",
42169
+ "category": "Network"
42170
+ },
42171
+ {
42172
+ "id": "CWE-94",
42173
+ "name": "Improper Control of Generation of Code (Code Injection)",
42174
+ "category": "Injection"
42175
+ }
42176
+ ],
42177
+ "atlas": [
42178
+ {
42179
+ "id": "AML.T0010",
42180
+ "name": "ML Supply Chain Compromise",
42181
+ "tactic": "Initial Access"
42182
+ },
42183
+ {
42184
+ "id": "AML.T0016",
42185
+ "name": "Obtain Capabilities: Develop Capabilities",
42186
+ "tactic": "Resource Development"
42187
+ },
42188
+ {
42189
+ "id": "AML.T0017",
42190
+ "name": "Discover ML Model Ontology",
42191
+ "tactic": "Discovery"
42192
+ },
42193
+ {
42194
+ "id": "AML.T0018",
42195
+ "name": "Backdoor ML Model",
42196
+ "tactic": "Persistence"
42197
+ },
42198
+ {
42199
+ "id": "AML.T0020",
42200
+ "name": "Poison Training Data",
42201
+ "tactic": "ML Attack Staging"
42202
+ },
42203
+ {
42204
+ "id": "AML.T0043",
42205
+ "name": "Craft Adversarial Data",
42206
+ "tactic": "ML Attack Staging"
42207
+ },
42208
+ {
42209
+ "id": "AML.T0051",
42210
+ "name": "LLM Prompt Injection",
42211
+ "tactic": "Execution"
42212
+ },
42213
+ {
42214
+ "id": "AML.T0054",
42215
+ "name": "LLM Jailbreak",
42216
+ "tactic": "Defense Evasion"
42217
+ },
42218
+ {
42219
+ "id": "AML.T0096",
42220
+ "name": "AI API as Covert C2 Channel",
42221
+ "tactic": "Command and Control"
42222
+ }
42223
+ ],
42224
+ "d3fend": [
42225
+ {
42226
+ "id": "D3-CA",
42227
+ "name": "Certificate Analysis",
42228
+ "tactic": "Detect"
42229
+ },
42230
+ {
42231
+ "id": "D3-CBAN",
42232
+ "name": "Certificate-based Authentication",
42233
+ "tactic": "Harden"
42234
+ },
42235
+ {
42236
+ "id": "D3-CSPP",
42237
+ "name": "Client-server Payload Profiling",
42238
+ "tactic": "Detect"
42239
+ },
42240
+ {
42241
+ "id": "D3-DA",
42242
+ "name": "Domain Analysis",
42243
+ "tactic": "Detect"
42244
+ },
42245
+ {
42246
+ "id": "D3-EAL",
42247
+ "name": "Executable Allowlisting",
42248
+ "tactic": "Harden"
42249
+ },
42250
+ {
42251
+ "id": "D3-EHB",
42252
+ "name": "Executable Hashbased Allowlist",
42253
+ "tactic": "Harden"
42254
+ },
42255
+ {
42256
+ "id": "D3-IOPR",
42257
+ "name": "Input/Output Profiling Resource",
42258
+ "tactic": "Detect"
42259
+ },
42260
+ {
42261
+ "id": "D3-MFA",
42262
+ "name": "Multi-factor Authentication",
42263
+ "tactic": "Harden"
42264
+ },
42265
+ {
42266
+ "id": "D3-NI",
42267
+ "name": "Network Isolation",
42268
+ "tactic": "Isolate"
42269
+ },
42270
+ {
42271
+ "id": "D3-NTA",
42272
+ "name": "Network Traffic Analysis",
42273
+ "tactic": "Detect"
42274
+ },
42275
+ {
42276
+ "id": "D3-NTPM",
42277
+ "name": "Network Traffic Policy Mapping",
42278
+ "tactic": "Model"
42279
+ }
42280
+ ],
42281
+ "framework_gaps": [
42282
+ {
42283
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
42284
+ "framework": "ALL",
42285
+ "control_name": "AI Pipeline Integrity"
42286
+ },
42287
+ {
42288
+ "id": "ALL-MCP-TOOL-TRUST",
42289
+ "framework": "ALL",
42290
+ "control_name": "MCP/Agent Tool Trust Boundaries"
42291
+ },
42292
+ {
42293
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
42294
+ "framework": "ALL",
42295
+ "control_name": "Prompt Injection as Access Control Failure"
42296
+ },
42297
+ {
42298
+ "id": "CMMC-2.0-Level-2",
42299
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
42300
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
42301
+ },
42302
+ {
42303
+ "id": "FedRAMP-Rev5-Moderate",
42304
+ "framework": "FedRAMP Rev 5 Moderate",
42305
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
42306
+ },
42307
+ {
42308
+ "id": "ISO-27001-2022-A.8.16",
42309
+ "framework": "ISO/IEC 27001:2022",
42310
+ "control_name": "Monitoring activities"
42311
+ },
42312
+ {
42313
+ "id": "ISO-27001-2022-A.8.28",
42314
+ "framework": "ISO/IEC 27001:2022",
42315
+ "control_name": "Secure coding"
42316
+ },
42317
+ {
42318
+ "id": "ISO-27001-2022-A.8.30",
42319
+ "framework": "ISO/IEC 27001:2022",
42320
+ "control_name": "Outsourced development"
42321
+ },
42322
+ {
42323
+ "id": "ISO-IEC-23894-2023-clause-7",
42324
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
42325
+ "control_name": "AI risk management process"
42326
+ },
42327
+ {
42328
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
42329
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
42330
+ "control_name": "AI risk assessment"
42331
+ },
42332
+ {
42333
+ "id": "NIST-800-218-SSDF",
42334
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
42335
+ "control_name": "Secure Software Development Framework"
42336
+ },
42337
+ {
42338
+ "id": "NIST-800-53-AC-2",
42339
+ "framework": "NIST SP 800-53 Rev 5",
42340
+ "control_name": "Account Management"
42341
+ },
42342
+ {
42343
+ "id": "NIST-800-53-CM-7",
42344
+ "framework": "NIST SP 800-53 Rev 5",
42345
+ "control_name": "Least Functionality"
42346
+ },
42347
+ {
42348
+ "id": "NIST-800-53-SA-12",
42349
+ "framework": "NIST SP 800-53 Rev 5",
42350
+ "control_name": "Supply Chain Protection"
42351
+ },
42352
+ {
42353
+ "id": "NIST-800-53-SC-7",
42354
+ "framework": "NIST SP 800-53 Rev 5",
42355
+ "control_name": "Boundary Protection"
42356
+ },
42357
+ {
42358
+ "id": "NIST-800-53-SI-12",
42359
+ "framework": "NIST SP 800-53 Rev 5",
42360
+ "control_name": "Information Management and Retention"
42361
+ },
42362
+ {
42363
+ "id": "NIST-800-53-SI-3",
42364
+ "framework": "NIST SP 800-53 Rev 5",
42365
+ "control_name": "Malicious Code Protection"
42366
+ },
42367
+ {
42368
+ "id": "NIST-AI-RMF-MEASURE-2.5",
42369
+ "framework": "NIST AI RMF 1.0",
42370
+ "control_name": "AI system to human interaction evaluation"
42371
+ },
42372
+ {
42373
+ "id": "OWASP-ASVS-v5.0-V14",
42374
+ "framework": "OWASP ASVS v5.0",
42375
+ "control_name": "Configuration verification"
42376
+ },
42377
+ {
42378
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
42379
+ "framework": "OWASP Top 10 for LLM Applications 2025",
42380
+ "control_name": "Prompt Injection"
42381
+ },
42382
+ {
42383
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
42384
+ "framework": "OWASP Top 10 for LLM Applications 2025",
42385
+ "control_name": "Sensitive Information Disclosure"
42386
+ },
42387
+ {
42388
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
42389
+ "framework": "OWASP Top 10 for LLM Applications 2025",
42390
+ "control_name": "Excessive Agency"
42391
+ },
42392
+ {
42393
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
42394
+ "framework": "OWASP Top 10 for LLM Applications 2025",
42395
+ "control_name": "Vector and Embedding Weaknesses"
42396
+ },
42397
+ {
42398
+ "id": "SLSA-v1.0-Build-L3",
42399
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
42400
+ "control_name": "Hardened build platform with non-falsifiable provenance"
42401
+ },
42402
+ {
42403
+ "id": "SOC2-CC6-logical-access",
42404
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
42405
+ "control_name": "Logical and Physical Access Controls"
42406
+ },
42407
+ {
42408
+ "id": "SOC2-CC7-anomaly-detection",
42409
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
42410
+ "control_name": "System Operations — Threat and Vulnerability Management"
42411
+ },
42412
+ {
42413
+ "id": "SOC2-CC9-vendor-management",
42414
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
42415
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
42416
+ },
42417
+ {
42418
+ "id": "SWIFT-CSCF-v2026-1.1",
42419
+ "framework": "SWIFT Customer Security Controls Framework v2026",
42420
+ "control_name": "SWIFT Environment Protection"
42421
+ }
42422
+ ],
42423
+ "attack_refs": [
42424
+ "T1059",
42425
+ "T1068",
42426
+ "T1071",
42427
+ "T1078",
42428
+ "T1102",
42429
+ "T1190",
42430
+ "T1195.001",
42431
+ "T1505",
42432
+ "T1530",
42433
+ "T1552",
42434
+ "T1565",
42435
+ "T1566",
42436
+ "T1566.001",
42437
+ "T1566.002",
42438
+ "T1566.003",
42439
+ "T1567",
42440
+ "T1568",
42441
+ "T1610",
42442
+ "T1611"
42443
+ ],
42444
+ "rfc_refs": [
42445
+ "RFC-6749",
42446
+ "RFC-7519",
42447
+ "RFC-8032",
42448
+ "RFC-8446",
42449
+ "RFC-8725",
42450
+ "RFC-9000",
42451
+ "RFC-9114",
42452
+ "RFC-9180",
42453
+ "RFC-9421",
42454
+ "RFC-9458",
42455
+ "RFC-9700"
42456
+ ]
42457
+ }
42458
+ },
40959
42459
  "CVE-2026-41091": {
40960
42460
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
40961
42461
  "rwep": 45,
@@ -67337,6 +68837,7 @@
67337
68837
  "CVE-2023-44467",
67338
68838
  "CVE-2023-48022",
67339
68839
  "CVE-2023-51449",
68840
+ "CVE-2023-6016",
67340
68841
  "CVE-2023-6019",
67341
68842
  "CVE-2023-6021",
67342
68843
  "CVE-2024-0129",
@@ -67353,6 +68854,7 @@
67353
68854
  "CVE-2024-24590",
67354
68855
  "CVE-2024-24591",
67355
68856
  "CVE-2024-27132",
68857
+ "CVE-2024-2912",
67356
68858
  "CVE-2024-3094",
67357
68859
  "CVE-2024-3154",
67358
68860
  "CVE-2024-37032",
@@ -67371,6 +68873,7 @@
67371
68873
  "CVE-2025-1753",
67372
68874
  "CVE-2025-23254",
67373
68875
  "CVE-2025-23266",
68876
+ "CVE-2025-27520",
67374
68877
  "CVE-2025-30165",
67375
68878
  "CVE-2025-30202",
67376
68879
  "CVE-2025-32434",
@@ -67601,14 +69104,17 @@
67601
69104
  "related_cves": [
67602
69105
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
67603
69106
  "CVE-2023-43472",
69107
+ "CVE-2023-6016",
67604
69108
  "CVE-2024-12366",
67605
69109
  "CVE-2024-24590",
67606
69110
  "CVE-2024-24591",
69111
+ "CVE-2024-2912",
67607
69112
  "CVE-2024-3094",
67608
69113
  "CVE-2024-3154",
67609
69114
  "CVE-2024-5565",
67610
69115
  "CVE-2025-0133",
67611
69116
  "CVE-2025-1094",
69117
+ "CVE-2025-27520",
67612
69118
  "CVE-2025-3248",
67613
69119
  "CVE-2025-49844",
67614
69120
  "CVE-2025-53773",
@@ -67757,6 +69263,7 @@
67757
69263
  "CVE-2023-44467",
67758
69264
  "CVE-2023-48022",
67759
69265
  "CVE-2023-51449",
69266
+ "CVE-2023-6016",
67760
69267
  "CVE-2023-6019",
67761
69268
  "CVE-2023-6021",
67762
69269
  "CVE-2024-0129",
@@ -67773,6 +69280,7 @@
67773
69280
  "CVE-2024-24590",
67774
69281
  "CVE-2024-24591",
67775
69282
  "CVE-2024-27132",
69283
+ "CVE-2024-2912",
67776
69284
  "CVE-2024-37032",
67777
69285
  "CVE-2024-39722",
67778
69286
  "CVE-2024-42478",
@@ -67789,6 +69297,7 @@
67789
69297
  "CVE-2025-1753",
67790
69298
  "CVE-2025-23254",
67791
69299
  "CVE-2025-23266",
69300
+ "CVE-2025-27520",
67792
69301
  "CVE-2025-30165",
67793
69302
  "CVE-2025-30202",
67794
69303
  "CVE-2025-32434",
@@ -67962,6 +69471,7 @@
67962
69471
  "CVE-2023-44467",
67963
69472
  "CVE-2023-48022",
67964
69473
  "CVE-2023-51449",
69474
+ "CVE-2023-6016",
67965
69475
  "CVE-2023-6019",
67966
69476
  "CVE-2023-6021",
67967
69477
  "CVE-2024-0129",
@@ -67978,6 +69488,7 @@
67978
69488
  "CVE-2024-24590",
67979
69489
  "CVE-2024-24591",
67980
69490
  "CVE-2024-27132",
69491
+ "CVE-2024-2912",
67981
69492
  "CVE-2024-37032",
67982
69493
  "CVE-2024-39722",
67983
69494
  "CVE-2024-42478",
@@ -67994,6 +69505,7 @@
67994
69505
  "CVE-2025-1753",
67995
69506
  "CVE-2025-23254",
67996
69507
  "CVE-2025-23266",
69508
+ "CVE-2025-27520",
67997
69509
  "CVE-2025-30165",
67998
69510
  "CVE-2025-30202",
67999
69511
  "CVE-2025-32434",
@@ -68181,6 +69693,7 @@
68181
69693
  "CVE-2023-44467",
68182
69694
  "CVE-2023-48022",
68183
69695
  "CVE-2023-51449",
69696
+ "CVE-2023-6016",
68184
69697
  "CVE-2023-6019",
68185
69698
  "CVE-2023-6021",
68186
69699
  "CVE-2024-0129",
@@ -68197,6 +69710,7 @@
68197
69710
  "CVE-2024-24590",
68198
69711
  "CVE-2024-24591",
68199
69712
  "CVE-2024-27132",
69713
+ "CVE-2024-2912",
68200
69714
  "CVE-2024-37032",
68201
69715
  "CVE-2024-39722",
68202
69716
  "CVE-2024-42478",
@@ -68213,6 +69727,7 @@
68213
69727
  "CVE-2025-1753",
68214
69728
  "CVE-2025-23254",
68215
69729
  "CVE-2025-23266",
69730
+ "CVE-2025-27520",
68216
69731
  "CVE-2025-30165",
68217
69732
  "CVE-2025-30202",
68218
69733
  "CVE-2025-32434",
@@ -68504,8 +70019,10 @@
68504
70019
  "CVE-2023-44467",
68505
70020
  "CVE-2023-48022",
68506
70021
  "CVE-2023-51449",
70022
+ "CVE-2023-6016",
68507
70023
  "CVE-2023-6019",
68508
70024
  "CVE-2023-6021",
70025
+ "CVE-2023-6038",
68509
70026
  "CVE-2024-0129",
68510
70027
  "CVE-2024-0132",
68511
70028
  "CVE-2024-11392",
@@ -68520,6 +70037,7 @@
68520
70037
  "CVE-2024-24590",
68521
70038
  "CVE-2024-24591",
68522
70039
  "CVE-2024-27132",
70040
+ "CVE-2024-2912",
68523
70041
  "CVE-2024-3094",
68524
70042
  "CVE-2024-3154",
68525
70043
  "CVE-2024-37032",
@@ -68537,6 +70055,7 @@
68537
70055
  "CVE-2025-1753",
68538
70056
  "CVE-2025-23254",
68539
70057
  "CVE-2025-23266",
70058
+ "CVE-2025-27520",
68540
70059
  "CVE-2025-30165",
68541
70060
  "CVE-2025-30202",
68542
70061
  "CVE-2025-32434",
@@ -69272,6 +70791,8 @@
69272
70791
  "CVE-2023-43472",
69273
70792
  "CVE-2023-48022",
69274
70793
  "CVE-2023-51449",
70794
+ "CVE-2023-6016",
70795
+ "CVE-2023-6038",
69275
70796
  "CVE-2024-0132",
69276
70797
  "CVE-2024-12366",
69277
70798
  "CVE-2024-1561",
@@ -69279,6 +70800,7 @@
69279
70800
  "CVE-2024-21576",
69280
70801
  "CVE-2024-24590",
69281
70802
  "CVE-2024-24591",
70803
+ "CVE-2024-2912",
69282
70804
  "CVE-2024-3094",
69283
70805
  "CVE-2024-3154",
69284
70806
  "CVE-2024-40635",
@@ -69290,6 +70812,7 @@
69290
70812
  "CVE-2025-14847",
69291
70813
  "CVE-2025-22226",
69292
70814
  "CVE-2025-23266",
70815
+ "CVE-2025-27520",
69293
70816
  "CVE-2025-30202",
69294
70817
  "CVE-2025-32444",
69295
70818
  "CVE-2025-3248",
@@ -69649,6 +71172,7 @@
69649
71172
  "CVE-2023-44467",
69650
71173
  "CVE-2023-48022",
69651
71174
  "CVE-2023-51449",
71175
+ "CVE-2023-6016",
69652
71176
  "CVE-2023-6019",
69653
71177
  "CVE-2023-6021",
69654
71178
  "CVE-2024-0129",
@@ -69665,6 +71189,7 @@
69665
71189
  "CVE-2024-24590",
69666
71190
  "CVE-2024-24591",
69667
71191
  "CVE-2024-27132",
71192
+ "CVE-2024-2912",
69668
71193
  "CVE-2024-3094",
69669
71194
  "CVE-2024-3154",
69670
71195
  "CVE-2024-37032",
@@ -69683,6 +71208,7 @@
69683
71208
  "CVE-2025-1753",
69684
71209
  "CVE-2025-23254",
69685
71210
  "CVE-2025-23266",
71211
+ "CVE-2025-27520",
69686
71212
  "CVE-2025-30165",
69687
71213
  "CVE-2025-30202",
69688
71214
  "CVE-2025-32434",
@@ -70293,6 +71819,7 @@
70293
71819
  "CVE-2023-44467",
70294
71820
  "CVE-2023-48022",
70295
71821
  "CVE-2023-51449",
71822
+ "CVE-2023-6016",
70296
71823
  "CVE-2023-6019",
70297
71824
  "CVE-2023-6021",
70298
71825
  "CVE-2024-0129",
@@ -70309,6 +71836,7 @@
70309
71836
  "CVE-2024-24590",
70310
71837
  "CVE-2024-24591",
70311
71838
  "CVE-2024-27132",
71839
+ "CVE-2024-2912",
70312
71840
  "CVE-2024-3094",
70313
71841
  "CVE-2024-3154",
70314
71842
  "CVE-2024-37032",
@@ -70327,6 +71855,7 @@
70327
71855
  "CVE-2025-1753",
70328
71856
  "CVE-2025-23254",
70329
71857
  "CVE-2025-23266",
71858
+ "CVE-2025-27520",
70330
71859
  "CVE-2025-30165",
70331
71860
  "CVE-2025-30202",
70332
71861
  "CVE-2025-32434",
@@ -71042,12 +72571,15 @@
71042
72571
  },
71043
72572
  "related_cves": [
71044
72573
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
72574
+ "CVE-2023-6016",
71045
72575
  "CVE-2024-12366",
71046
72576
  "CVE-2024-24590",
71047
72577
  "CVE-2024-24591",
72578
+ "CVE-2024-2912",
71048
72579
  "CVE-2024-3094",
71049
72580
  "CVE-2024-3154",
71050
72581
  "CVE-2024-5565",
72582
+ "CVE-2025-27520",
71051
72583
  "CVE-2025-3248",
71052
72584
  "CVE-2025-49844",
71053
72585
  "CVE-2025-53773",
@@ -71283,6 +72815,7 @@
71283
72815
  "CVE-2023-44467",
71284
72816
  "CVE-2023-48022",
71285
72817
  "CVE-2023-51449",
72818
+ "CVE-2023-6016",
71286
72819
  "CVE-2023-6019",
71287
72820
  "CVE-2023-6021",
71288
72821
  "CVE-2024-0129",
@@ -71299,6 +72832,7 @@
71299
72832
  "CVE-2024-24590",
71300
72833
  "CVE-2024-24591",
71301
72834
  "CVE-2024-27132",
72835
+ "CVE-2024-2912",
71302
72836
  "CVE-2024-3094",
71303
72837
  "CVE-2024-3154",
71304
72838
  "CVE-2024-37032",
@@ -71317,6 +72851,7 @@
71317
72851
  "CVE-2025-1753",
71318
72852
  "CVE-2025-23254",
71319
72853
  "CVE-2025-23266",
72854
+ "CVE-2025-27520",
71320
72855
  "CVE-2025-30165",
71321
72856
  "CVE-2025-30202",
71322
72857
  "CVE-2025-32434",
@@ -72516,6 +74051,7 @@
72516
74051
  "CVE-2023-44467",
72517
74052
  "CVE-2023-48022",
72518
74053
  "CVE-2023-51449",
74054
+ "CVE-2023-6016",
72519
74055
  "CVE-2023-6019",
72520
74056
  "CVE-2023-6021",
72521
74057
  "CVE-2024-0129",
@@ -72532,6 +74068,7 @@
72532
74068
  "CVE-2024-24590",
72533
74069
  "CVE-2024-24591",
72534
74070
  "CVE-2024-27132",
74071
+ "CVE-2024-2912",
72535
74072
  "CVE-2024-3094",
72536
74073
  "CVE-2024-3154",
72537
74074
  "CVE-2024-37032",
@@ -72550,6 +74087,7 @@
72550
74087
  "CVE-2025-1753",
72551
74088
  "CVE-2025-23254",
72552
74089
  "CVE-2025-23266",
74090
+ "CVE-2025-27520",
72553
74091
  "CVE-2025-30165",
72554
74092
  "CVE-2025-30202",
72555
74093
  "CVE-2025-32434",
@@ -72792,12 +74330,15 @@
72792
74330
  },
72793
74331
  "related_cves": [
72794
74332
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
74333
+ "CVE-2023-6016",
72795
74334
  "CVE-2024-12366",
72796
74335
  "CVE-2024-24590",
72797
74336
  "CVE-2024-24591",
74337
+ "CVE-2024-2912",
72798
74338
  "CVE-2024-3094",
72799
74339
  "CVE-2024-3154",
72800
74340
  "CVE-2024-5565",
74341
+ "CVE-2025-27520",
72801
74342
  "CVE-2025-3248",
72802
74343
  "CVE-2025-49844",
72803
74344
  "CVE-2025-53773",
@@ -72990,13 +74531,16 @@
72990
74531
  },
72991
74532
  "related_cves": [
72992
74533
  "CVE-2023-43472",
74534
+ "CVE-2023-6016",
72993
74535
  "CVE-2024-12366",
72994
74536
  "CVE-2024-24590",
72995
74537
  "CVE-2024-24591",
74538
+ "CVE-2024-2912",
72996
74539
  "CVE-2024-3094",
72997
74540
  "CVE-2024-5565",
72998
74541
  "CVE-2025-0133",
72999
74542
  "CVE-2025-1094",
74543
+ "CVE-2025-27520",
73000
74544
  "CVE-2025-3248",
73001
74545
  "CVE-2025-6965",
73002
74546
  "CVE-2026-30615",
@@ -73919,6 +75463,7 @@
73919
75463
  "CVE-2023-44467",
73920
75464
  "CVE-2023-48022",
73921
75465
  "CVE-2023-51449",
75466
+ "CVE-2023-6016",
73922
75467
  "CVE-2023-6019",
73923
75468
  "CVE-2023-6021",
73924
75469
  "CVE-2024-0129",
@@ -73935,6 +75480,7 @@
73935
75480
  "CVE-2024-24590",
73936
75481
  "CVE-2024-24591",
73937
75482
  "CVE-2024-27132",
75483
+ "CVE-2024-2912",
73938
75484
  "CVE-2024-3094",
73939
75485
  "CVE-2024-3154",
73940
75486
  "CVE-2024-37032",
@@ -73953,6 +75499,7 @@
73953
75499
  "CVE-2025-1753",
73954
75500
  "CVE-2025-23254",
73955
75501
  "CVE-2025-23266",
75502
+ "CVE-2025-27520",
73956
75503
  "CVE-2025-30165",
73957
75504
  "CVE-2025-30202",
73958
75505
  "CVE-2025-32434",
@@ -74283,6 +75830,7 @@
74283
75830
  "CVE-2023-50224",
74284
75831
  "CVE-2023-51449",
74285
75832
  "CVE-2023-52163",
75833
+ "CVE-2023-6016",
74286
75834
  "CVE-2023-6019",
74287
75835
  "CVE-2023-6021",
74288
75836
  "CVE-2024-0129",
@@ -74306,6 +75854,7 @@
74306
75854
  "CVE-2024-27132",
74307
75855
  "CVE-2024-27199",
74308
75856
  "CVE-2024-27443",
75857
+ "CVE-2024-2912",
74309
75858
  "CVE-2024-3094",
74310
75859
  "CVE-2024-3154",
74311
75860
  "CVE-2024-37032",
@@ -74364,6 +75913,7 @@
74364
75913
  "CVE-2025-2746",
74365
75914
  "CVE-2025-2747",
74366
75915
  "CVE-2025-2749",
75916
+ "CVE-2025-27520",
74367
75917
  "CVE-2025-2775",
74368
75918
  "CVE-2025-2776",
74369
75919
  "CVE-2025-27915",
@@ -74861,6 +76411,7 @@
74861
76411
  "CVE-2023-44467",
74862
76412
  "CVE-2023-48022",
74863
76413
  "CVE-2023-51449",
76414
+ "CVE-2023-6016",
74864
76415
  "CVE-2023-6019",
74865
76416
  "CVE-2023-6021",
74866
76417
  "CVE-2024-0129",
@@ -74877,6 +76428,7 @@
74877
76428
  "CVE-2024-24590",
74878
76429
  "CVE-2024-24591",
74879
76430
  "CVE-2024-27132",
76431
+ "CVE-2024-2912",
74880
76432
  "CVE-2024-3094",
74881
76433
  "CVE-2024-3154",
74882
76434
  "CVE-2024-37032",
@@ -74894,6 +76446,7 @@
74894
76446
  "CVE-2025-1753",
74895
76447
  "CVE-2025-23254",
74896
76448
  "CVE-2025-23266",
76449
+ "CVE-2025-27520",
74897
76450
  "CVE-2025-30165",
74898
76451
  "CVE-2025-30202",
74899
76452
  "CVE-2025-32434",
@@ -75240,14 +76793,17 @@
75240
76793
  "related_cves": [
75241
76794
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
75242
76795
  "CVE-2023-43472",
76796
+ "CVE-2023-6016",
75243
76797
  "CVE-2024-12366",
75244
76798
  "CVE-2024-24590",
75245
76799
  "CVE-2024-24591",
76800
+ "CVE-2024-2912",
75246
76801
  "CVE-2024-3094",
75247
76802
  "CVE-2024-3154",
75248
76803
  "CVE-2024-5565",
75249
76804
  "CVE-2025-0133",
75250
76805
  "CVE-2025-1094",
76806
+ "CVE-2025-27520",
75251
76807
  "CVE-2025-3248",
75252
76808
  "CVE-2025-49844",
75253
76809
  "CVE-2025-53773",
@@ -75530,13 +77086,16 @@
75530
77086
  },
75531
77087
  "related_cves": [
75532
77088
  "CVE-2023-43472",
77089
+ "CVE-2023-6016",
75533
77090
  "CVE-2024-12366",
75534
77091
  "CVE-2024-24590",
75535
77092
  "CVE-2024-24591",
77093
+ "CVE-2024-2912",
75536
77094
  "CVE-2024-3094",
75537
77095
  "CVE-2024-5565",
75538
77096
  "CVE-2025-0133",
75539
77097
  "CVE-2025-1094",
77098
+ "CVE-2025-27520",
75540
77099
  "CVE-2025-3248",
75541
77100
  "CVE-2025-53773",
75542
77101
  "CVE-2025-6965",
@@ -75852,6 +77411,7 @@
75852
77411
  "CVE-2023-44467",
75853
77412
  "CVE-2023-48022",
75854
77413
  "CVE-2023-51449",
77414
+ "CVE-2023-6016",
75855
77415
  "CVE-2023-6019",
75856
77416
  "CVE-2023-6021",
75857
77417
  "CVE-2024-0129",
@@ -75868,6 +77428,7 @@
75868
77428
  "CVE-2024-24590",
75869
77429
  "CVE-2024-24591",
75870
77430
  "CVE-2024-27132",
77431
+ "CVE-2024-2912",
75871
77432
  "CVE-2024-3094",
75872
77433
  "CVE-2024-3154",
75873
77434
  "CVE-2024-37032",
@@ -75886,6 +77447,7 @@
75886
77447
  "CVE-2025-1753",
75887
77448
  "CVE-2025-23254",
75888
77449
  "CVE-2025-23266",
77450
+ "CVE-2025-27520",
75889
77451
  "CVE-2025-30165",
75890
77452
  "CVE-2025-30202",
75891
77453
  "CVE-2025-32434",
@@ -76202,8 +77764,10 @@
76202
77764
  "CVE-2023-44467",
76203
77765
  "CVE-2023-48022",
76204
77766
  "CVE-2023-51449",
77767
+ "CVE-2023-6016",
76205
77768
  "CVE-2023-6019",
76206
77769
  "CVE-2023-6021",
77770
+ "CVE-2023-6038",
76207
77771
  "CVE-2024-0129",
76208
77772
  "CVE-2024-0132",
76209
77773
  "CVE-2024-11392",
@@ -76218,6 +77782,7 @@
76218
77782
  "CVE-2024-24590",
76219
77783
  "CVE-2024-24591",
76220
77784
  "CVE-2024-27132",
77785
+ "CVE-2024-2912",
76221
77786
  "CVE-2024-37032",
76222
77787
  "CVE-2024-39722",
76223
77788
  "CVE-2024-42478",
@@ -76233,6 +77798,7 @@
76233
77798
  "CVE-2025-1753",
76234
77799
  "CVE-2025-23254",
76235
77800
  "CVE-2025-23266",
77801
+ "CVE-2025-27520",
76236
77802
  "CVE-2025-30165",
76237
77803
  "CVE-2025-30202",
76238
77804
  "CVE-2025-32434",
@@ -76427,14 +77993,17 @@
76427
77993
  "related_cves": [
76428
77994
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
76429
77995
  "CVE-2023-43472",
77996
+ "CVE-2023-6016",
76430
77997
  "CVE-2024-12366",
76431
77998
  "CVE-2024-24590",
76432
77999
  "CVE-2024-24591",
78000
+ "CVE-2024-2912",
76433
78001
  "CVE-2024-3094",
76434
78002
  "CVE-2024-3154",
76435
78003
  "CVE-2024-5565",
76436
78004
  "CVE-2025-0133",
76437
78005
  "CVE-2025-1094",
78006
+ "CVE-2025-27520",
76438
78007
  "CVE-2025-3248",
76439
78008
  "CVE-2025-49844",
76440
78009
  "CVE-2025-53773",
@@ -77149,6 +78718,7 @@
77149
78718
  "CVE-2023-44467",
77150
78719
  "CVE-2023-48022",
77151
78720
  "CVE-2023-51449",
78721
+ "CVE-2023-6016",
77152
78722
  "CVE-2023-6019",
77153
78723
  "CVE-2023-6021",
77154
78724
  "CVE-2024-0129",
@@ -77165,6 +78735,7 @@
77165
78735
  "CVE-2024-24590",
77166
78736
  "CVE-2024-24591",
77167
78737
  "CVE-2024-27132",
78738
+ "CVE-2024-2912",
77168
78739
  "CVE-2024-3094",
77169
78740
  "CVE-2024-3154",
77170
78741
  "CVE-2024-37032",
@@ -77183,6 +78754,7 @@
77183
78754
  "CVE-2025-1753",
77184
78755
  "CVE-2025-23254",
77185
78756
  "CVE-2025-23266",
78757
+ "CVE-2025-27520",
77186
78758
  "CVE-2025-30165",
77187
78759
  "CVE-2025-30202",
77188
78760
  "CVE-2025-32434",
@@ -77485,8 +79057,10 @@
77485
79057
  "CVE-2023-44467",
77486
79058
  "CVE-2023-48022",
77487
79059
  "CVE-2023-51449",
79060
+ "CVE-2023-6016",
77488
79061
  "CVE-2023-6019",
77489
79062
  "CVE-2023-6021",
79063
+ "CVE-2023-6038",
77490
79064
  "CVE-2024-0129",
77491
79065
  "CVE-2024-0132",
77492
79066
  "CVE-2024-11392",
@@ -77501,6 +79075,7 @@
77501
79075
  "CVE-2024-24590",
77502
79076
  "CVE-2024-24591",
77503
79077
  "CVE-2024-27132",
79078
+ "CVE-2024-2912",
77504
79079
  "CVE-2024-3094",
77505
79080
  "CVE-2024-37032",
77506
79081
  "CVE-2024-39722",
@@ -77520,6 +79095,7 @@
77520
79095
  "CVE-2025-22226",
77521
79096
  "CVE-2025-23254",
77522
79097
  "CVE-2025-23266",
79098
+ "CVE-2025-27520",
77523
79099
  "CVE-2025-30165",
77524
79100
  "CVE-2025-30202",
77525
79101
  "CVE-2025-32434",