@blamejs/exceptd-skills 0.13.108 → 0.13.110

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +8 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +1430 -0
  6. package/data/atlas-ttps.json +6 -0
  7. package/data/attack-techniques.json +11 -1
  8. package/data/cve-catalog.json +402 -0
  9. package/data/cwe-catalog.json +5 -1
  10. package/data/framework-control-gaps.json +36 -0
  11. package/data/zeroday-lessons.json +200 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -43678,6 +43678,1370 @@
43678
43678
  ]
43679
43679
  }
43680
43680
  },
43681
+ "CVE-2023-47117": {
43682
+ "name": "Label Studio ORM Filter Manipulation Sensitive-Field Disclosure",
43683
+ "rwep": 23,
43684
+ "cvss": 7.5,
43685
+ "cisa_kev": false,
43686
+ "epss_score": null,
43687
+ "referencing_skills": [
43688
+ "ai-attack-surface",
43689
+ "compliance-theater",
43690
+ "pqc-first",
43691
+ "dlp-gap-analysis"
43692
+ ],
43693
+ "chain": {
43694
+ "cwes": [
43695
+ {
43696
+ "id": "CWE-1039",
43697
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
43698
+ "category": "AI/ML"
43699
+ },
43700
+ {
43701
+ "id": "CWE-1426",
43702
+ "name": "Improper Validation of Generative AI Output",
43703
+ "category": "AI/ML"
43704
+ },
43705
+ {
43706
+ "id": "CWE-200",
43707
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
43708
+ "category": "Information Exposure"
43709
+ },
43710
+ {
43711
+ "id": "CWE-327",
43712
+ "name": "Use of a Broken or Risky Cryptographic Algorithm",
43713
+ "category": "Cryptography"
43714
+ },
43715
+ {
43716
+ "id": "CWE-94",
43717
+ "name": "Improper Control of Generation of Code (Code Injection)",
43718
+ "category": "Injection"
43719
+ }
43720
+ ],
43721
+ "atlas": [
43722
+ {
43723
+ "id": "AML.T0016",
43724
+ "name": "Obtain Capabilities: Develop Capabilities",
43725
+ "tactic": "Resource Development"
43726
+ },
43727
+ {
43728
+ "id": "AML.T0017",
43729
+ "name": "Discover ML Model Ontology",
43730
+ "tactic": "Discovery"
43731
+ },
43732
+ {
43733
+ "id": "AML.T0018",
43734
+ "name": "Backdoor ML Model",
43735
+ "tactic": "Persistence"
43736
+ },
43737
+ {
43738
+ "id": "AML.T0020",
43739
+ "name": "Poison Training Data",
43740
+ "tactic": "ML Attack Staging"
43741
+ },
43742
+ {
43743
+ "id": "AML.T0043",
43744
+ "name": "Craft Adversarial Data",
43745
+ "tactic": "ML Attack Staging"
43746
+ },
43747
+ {
43748
+ "id": "AML.T0051",
43749
+ "name": "LLM Prompt Injection",
43750
+ "tactic": "Execution"
43751
+ },
43752
+ {
43753
+ "id": "AML.T0054",
43754
+ "name": "LLM Jailbreak",
43755
+ "tactic": "Defense Evasion"
43756
+ },
43757
+ {
43758
+ "id": "AML.T0096",
43759
+ "name": "AI API as Covert C2 Channel",
43760
+ "tactic": "Command and Control"
43761
+ }
43762
+ ],
43763
+ "d3fend": [
43764
+ {
43765
+ "id": "D3-CSPP",
43766
+ "name": "Client-server Payload Profiling",
43767
+ "tactic": "Detect"
43768
+ },
43769
+ {
43770
+ "id": "D3-EAL",
43771
+ "name": "Executable Allowlisting",
43772
+ "tactic": "Harden"
43773
+ },
43774
+ {
43775
+ "id": "D3-FE",
43776
+ "name": "File Encryption",
43777
+ "tactic": "Harden"
43778
+ },
43779
+ {
43780
+ "id": "D3-IOPR",
43781
+ "name": "Input/Output Profiling Resource",
43782
+ "tactic": "Detect"
43783
+ },
43784
+ {
43785
+ "id": "D3-MENCR",
43786
+ "name": "Message Encryption",
43787
+ "tactic": "Harden"
43788
+ },
43789
+ {
43790
+ "id": "D3-NTA",
43791
+ "name": "Network Traffic Analysis",
43792
+ "tactic": "Detect"
43793
+ },
43794
+ {
43795
+ "id": "D3-NTPM",
43796
+ "name": "Network Traffic Policy Mapping",
43797
+ "tactic": "Model"
43798
+ }
43799
+ ],
43800
+ "framework_gaps": [
43801
+ {
43802
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
43803
+ "framework": "ALL",
43804
+ "control_name": "AI Pipeline Integrity"
43805
+ },
43806
+ {
43807
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
43808
+ "framework": "ALL",
43809
+ "control_name": "Prompt Injection as Access Control Failure"
43810
+ },
43811
+ {
43812
+ "id": "CMMC-2.0-Level-2",
43813
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
43814
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
43815
+ },
43816
+ {
43817
+ "id": "FedRAMP-Rev5-Moderate",
43818
+ "framework": "FedRAMP Rev 5 Moderate",
43819
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
43820
+ },
43821
+ {
43822
+ "id": "HIPAA-Security-Rule-164.312(a)(1)",
43823
+ "framework": "HIPAA Security Rule (45 CFR § 164.312)",
43824
+ "control_name": "Access control standard (technical safeguards)"
43825
+ },
43826
+ {
43827
+ "id": "ISO-27001-2022-A.8.16",
43828
+ "framework": "ISO/IEC 27001:2022",
43829
+ "control_name": "Monitoring activities"
43830
+ },
43831
+ {
43832
+ "id": "ISO-27001-2022-A.8.28",
43833
+ "framework": "ISO/IEC 27001:2022",
43834
+ "control_name": "Secure coding"
43835
+ },
43836
+ {
43837
+ "id": "ISO-IEC-23894-2023-clause-7",
43838
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
43839
+ "control_name": "AI risk management process"
43840
+ },
43841
+ {
43842
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
43843
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
43844
+ "control_name": "AI risk assessment"
43845
+ },
43846
+ {
43847
+ "id": "NIST-800-53-AC-2",
43848
+ "framework": "NIST SP 800-53 Rev 5",
43849
+ "control_name": "Account Management"
43850
+ },
43851
+ {
43852
+ "id": "NIST-800-53-SC-28",
43853
+ "framework": "NIST SP 800-53 Rev 5",
43854
+ "control_name": "Protection of Information at Rest"
43855
+ },
43856
+ {
43857
+ "id": "NIST-800-53-SC-7",
43858
+ "framework": "NIST SP 800-53 Rev 5",
43859
+ "control_name": "Boundary Protection"
43860
+ },
43861
+ {
43862
+ "id": "NIST-800-53-SC-8",
43863
+ "framework": "NIST SP 800-53 Rev 5",
43864
+ "control_name": "Transmission Confidentiality and Integrity"
43865
+ },
43866
+ {
43867
+ "id": "NIST-800-53-SI-3",
43868
+ "framework": "NIST SP 800-53 Rev 5",
43869
+ "control_name": "Malicious Code Protection"
43870
+ },
43871
+ {
43872
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
43873
+ "framework": "OWASP Top 10 for LLM Applications 2025",
43874
+ "control_name": "Prompt Injection"
43875
+ },
43876
+ {
43877
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
43878
+ "framework": "OWASP Top 10 for LLM Applications 2025",
43879
+ "control_name": "Sensitive Information Disclosure"
43880
+ },
43881
+ {
43882
+ "id": "SOC2-CC6-logical-access",
43883
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
43884
+ "control_name": "Logical and Physical Access Controls"
43885
+ },
43886
+ {
43887
+ "id": "SOC2-CC7-anomaly-detection",
43888
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
43889
+ "control_name": "System Operations — Threat and Vulnerability Management"
43890
+ }
43891
+ ],
43892
+ "attack_refs": [
43893
+ "T1041",
43894
+ "T1059",
43895
+ "T1190",
43896
+ "T1213",
43897
+ "T1530",
43898
+ "T1566",
43899
+ "T1567"
43900
+ ],
43901
+ "rfc_refs": [
43902
+ "DRAFT-IETF-TLS-ECDHE-MLKEM",
43903
+ "DRAFT-IETF-TLS-HYBRID-DESIGN",
43904
+ "RFC-8032",
43905
+ "RFC-8446",
43906
+ "RFC-9106",
43907
+ "RFC-9180",
43908
+ "RFC-9420",
43909
+ "RFC-9458",
43910
+ "RFC-9794"
43911
+ ]
43912
+ }
43913
+ },
43914
+ "CVE-2023-43791": {
43915
+ "name": "Label Studio Account Impersonation and Privilege Escalation",
43916
+ "rwep": 29,
43917
+ "cvss": 8.8,
43918
+ "cisa_kev": false,
43919
+ "epss_score": null,
43920
+ "referencing_skills": [
43921
+ "ai-attack-surface",
43922
+ "compliance-theater",
43923
+ "pqc-first",
43924
+ "dlp-gap-analysis"
43925
+ ],
43926
+ "chain": {
43927
+ "cwes": [
43928
+ {
43929
+ "id": "CWE-1039",
43930
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
43931
+ "category": "AI/ML"
43932
+ },
43933
+ {
43934
+ "id": "CWE-1426",
43935
+ "name": "Improper Validation of Generative AI Output",
43936
+ "category": "AI/ML"
43937
+ },
43938
+ {
43939
+ "id": "CWE-200",
43940
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
43941
+ "category": "Information Exposure"
43942
+ },
43943
+ {
43944
+ "id": "CWE-327",
43945
+ "name": "Use of a Broken or Risky Cryptographic Algorithm",
43946
+ "category": "Cryptography"
43947
+ },
43948
+ {
43949
+ "id": "CWE-94",
43950
+ "name": "Improper Control of Generation of Code (Code Injection)",
43951
+ "category": "Injection"
43952
+ }
43953
+ ],
43954
+ "atlas": [
43955
+ {
43956
+ "id": "AML.T0016",
43957
+ "name": "Obtain Capabilities: Develop Capabilities",
43958
+ "tactic": "Resource Development"
43959
+ },
43960
+ {
43961
+ "id": "AML.T0017",
43962
+ "name": "Discover ML Model Ontology",
43963
+ "tactic": "Discovery"
43964
+ },
43965
+ {
43966
+ "id": "AML.T0018",
43967
+ "name": "Backdoor ML Model",
43968
+ "tactic": "Persistence"
43969
+ },
43970
+ {
43971
+ "id": "AML.T0020",
43972
+ "name": "Poison Training Data",
43973
+ "tactic": "ML Attack Staging"
43974
+ },
43975
+ {
43976
+ "id": "AML.T0043",
43977
+ "name": "Craft Adversarial Data",
43978
+ "tactic": "ML Attack Staging"
43979
+ },
43980
+ {
43981
+ "id": "AML.T0051",
43982
+ "name": "LLM Prompt Injection",
43983
+ "tactic": "Execution"
43984
+ },
43985
+ {
43986
+ "id": "AML.T0054",
43987
+ "name": "LLM Jailbreak",
43988
+ "tactic": "Defense Evasion"
43989
+ },
43990
+ {
43991
+ "id": "AML.T0096",
43992
+ "name": "AI API as Covert C2 Channel",
43993
+ "tactic": "Command and Control"
43994
+ }
43995
+ ],
43996
+ "d3fend": [
43997
+ {
43998
+ "id": "D3-CSPP",
43999
+ "name": "Client-server Payload Profiling",
44000
+ "tactic": "Detect"
44001
+ },
44002
+ {
44003
+ "id": "D3-EAL",
44004
+ "name": "Executable Allowlisting",
44005
+ "tactic": "Harden"
44006
+ },
44007
+ {
44008
+ "id": "D3-FE",
44009
+ "name": "File Encryption",
44010
+ "tactic": "Harden"
44011
+ },
44012
+ {
44013
+ "id": "D3-IOPR",
44014
+ "name": "Input/Output Profiling Resource",
44015
+ "tactic": "Detect"
44016
+ },
44017
+ {
44018
+ "id": "D3-MENCR",
44019
+ "name": "Message Encryption",
44020
+ "tactic": "Harden"
44021
+ },
44022
+ {
44023
+ "id": "D3-NTA",
44024
+ "name": "Network Traffic Analysis",
44025
+ "tactic": "Detect"
44026
+ },
44027
+ {
44028
+ "id": "D3-NTPM",
44029
+ "name": "Network Traffic Policy Mapping",
44030
+ "tactic": "Model"
44031
+ }
44032
+ ],
44033
+ "framework_gaps": [
44034
+ {
44035
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
44036
+ "framework": "ALL",
44037
+ "control_name": "AI Pipeline Integrity"
44038
+ },
44039
+ {
44040
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
44041
+ "framework": "ALL",
44042
+ "control_name": "Prompt Injection as Access Control Failure"
44043
+ },
44044
+ {
44045
+ "id": "CMMC-2.0-Level-2",
44046
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
44047
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
44048
+ },
44049
+ {
44050
+ "id": "FedRAMP-Rev5-Moderate",
44051
+ "framework": "FedRAMP Rev 5 Moderate",
44052
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
44053
+ },
44054
+ {
44055
+ "id": "HIPAA-Security-Rule-164.312(a)(1)",
44056
+ "framework": "HIPAA Security Rule (45 CFR § 164.312)",
44057
+ "control_name": "Access control standard (technical safeguards)"
44058
+ },
44059
+ {
44060
+ "id": "ISO-27001-2022-A.8.16",
44061
+ "framework": "ISO/IEC 27001:2022",
44062
+ "control_name": "Monitoring activities"
44063
+ },
44064
+ {
44065
+ "id": "ISO-27001-2022-A.8.28",
44066
+ "framework": "ISO/IEC 27001:2022",
44067
+ "control_name": "Secure coding"
44068
+ },
44069
+ {
44070
+ "id": "ISO-IEC-23894-2023-clause-7",
44071
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
44072
+ "control_name": "AI risk management process"
44073
+ },
44074
+ {
44075
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
44076
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
44077
+ "control_name": "AI risk assessment"
44078
+ },
44079
+ {
44080
+ "id": "NIST-800-53-AC-2",
44081
+ "framework": "NIST SP 800-53 Rev 5",
44082
+ "control_name": "Account Management"
44083
+ },
44084
+ {
44085
+ "id": "NIST-800-53-SC-28",
44086
+ "framework": "NIST SP 800-53 Rev 5",
44087
+ "control_name": "Protection of Information at Rest"
44088
+ },
44089
+ {
44090
+ "id": "NIST-800-53-SC-7",
44091
+ "framework": "NIST SP 800-53 Rev 5",
44092
+ "control_name": "Boundary Protection"
44093
+ },
44094
+ {
44095
+ "id": "NIST-800-53-SC-8",
44096
+ "framework": "NIST SP 800-53 Rev 5",
44097
+ "control_name": "Transmission Confidentiality and Integrity"
44098
+ },
44099
+ {
44100
+ "id": "NIST-800-53-SI-3",
44101
+ "framework": "NIST SP 800-53 Rev 5",
44102
+ "control_name": "Malicious Code Protection"
44103
+ },
44104
+ {
44105
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
44106
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44107
+ "control_name": "Prompt Injection"
44108
+ },
44109
+ {
44110
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
44111
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44112
+ "control_name": "Sensitive Information Disclosure"
44113
+ },
44114
+ {
44115
+ "id": "SOC2-CC6-logical-access",
44116
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
44117
+ "control_name": "Logical and Physical Access Controls"
44118
+ },
44119
+ {
44120
+ "id": "SOC2-CC7-anomaly-detection",
44121
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
44122
+ "control_name": "System Operations — Threat and Vulnerability Management"
44123
+ }
44124
+ ],
44125
+ "attack_refs": [
44126
+ "T1041",
44127
+ "T1059",
44128
+ "T1190",
44129
+ "T1213",
44130
+ "T1530",
44131
+ "T1566",
44132
+ "T1567"
44133
+ ],
44134
+ "rfc_refs": [
44135
+ "DRAFT-IETF-TLS-ECDHE-MLKEM",
44136
+ "DRAFT-IETF-TLS-HYBRID-DESIGN",
44137
+ "RFC-8032",
44138
+ "RFC-8446",
44139
+ "RFC-9106",
44140
+ "RFC-9180",
44141
+ "RFC-9420",
44142
+ "RFC-9458",
44143
+ "RFC-9794"
44144
+ ]
44145
+ }
44146
+ },
44147
+ "CVE-2026-31229": {
44148
+ "name": "Adversarial Robustness Toolbox torch.load Model Deserialization RCE",
44149
+ "rwep": 46,
44150
+ "cvss": 9.8,
44151
+ "cisa_kev": false,
44152
+ "epss_score": null,
44153
+ "referencing_skills": [
44154
+ "kernel-lpe-triage",
44155
+ "ai-attack-surface",
44156
+ "mcp-agent-trust",
44157
+ "compliance-theater",
44158
+ "rag-pipeline-security",
44159
+ "threat-modeling-methodology",
44160
+ "webapp-security",
44161
+ "api-security",
44162
+ "cloud-security",
44163
+ "container-runtime-security"
44164
+ ],
44165
+ "chain": {
44166
+ "cwes": [
44167
+ {
44168
+ "id": "CWE-1039",
44169
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
44170
+ "category": "AI/ML"
44171
+ },
44172
+ {
44173
+ "id": "CWE-1188",
44174
+ "name": "Initialization of a Resource with an Insecure Default",
44175
+ "category": "Configuration"
44176
+ },
44177
+ {
44178
+ "id": "CWE-125",
44179
+ "name": "Out-of-bounds Read",
44180
+ "category": "Memory Safety"
44181
+ },
44182
+ {
44183
+ "id": "CWE-1395",
44184
+ "name": "Dependency on Vulnerable Third-Party Component",
44185
+ "category": "Supply Chain"
44186
+ },
44187
+ {
44188
+ "id": "CWE-1426",
44189
+ "name": "Improper Validation of Generative AI Output",
44190
+ "category": "AI/ML"
44191
+ },
44192
+ {
44193
+ "id": "CWE-200",
44194
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
44195
+ "category": "Information Exposure"
44196
+ },
44197
+ {
44198
+ "id": "CWE-22",
44199
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
44200
+ "category": "Path/Resource"
44201
+ },
44202
+ {
44203
+ "id": "CWE-269",
44204
+ "name": "Improper Privilege Management",
44205
+ "category": "Authorization"
44206
+ },
44207
+ {
44208
+ "id": "CWE-287",
44209
+ "name": "Improper Authentication",
44210
+ "category": "Authentication"
44211
+ },
44212
+ {
44213
+ "id": "CWE-345",
44214
+ "name": "Insufficient Verification of Data Authenticity",
44215
+ "category": "Authenticity / Supply Chain"
44216
+ },
44217
+ {
44218
+ "id": "CWE-352",
44219
+ "name": "Cross-Site Request Forgery (CSRF)",
44220
+ "category": "Session"
44221
+ },
44222
+ {
44223
+ "id": "CWE-362",
44224
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
44225
+ "category": "Concurrency"
44226
+ },
44227
+ {
44228
+ "id": "CWE-416",
44229
+ "name": "Use After Free",
44230
+ "category": "Memory Safety"
44231
+ },
44232
+ {
44233
+ "id": "CWE-434",
44234
+ "name": "Unrestricted Upload of File with Dangerous Type",
44235
+ "category": "File Handling"
44236
+ },
44237
+ {
44238
+ "id": "CWE-494",
44239
+ "name": "Download of Code Without Integrity Check",
44240
+ "category": "Supply Chain"
44241
+ },
44242
+ {
44243
+ "id": "CWE-502",
44244
+ "name": "Deserialization of Untrusted Data",
44245
+ "category": "Serialization"
44246
+ },
44247
+ {
44248
+ "id": "CWE-672",
44249
+ "name": "Operation on a Resource after Expiration or Release",
44250
+ "category": "Memory Safety"
44251
+ },
44252
+ {
44253
+ "id": "CWE-732",
44254
+ "name": "Incorrect Permission Assignment for Critical Resource",
44255
+ "category": "Authorization"
44256
+ },
44257
+ {
44258
+ "id": "CWE-77",
44259
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
44260
+ "category": "Injection"
44261
+ },
44262
+ {
44263
+ "id": "CWE-78",
44264
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
44265
+ "category": "Injection"
44266
+ },
44267
+ {
44268
+ "id": "CWE-787",
44269
+ "name": "Out-of-bounds Write",
44270
+ "category": "Memory Safety"
44271
+ },
44272
+ {
44273
+ "id": "CWE-79",
44274
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
44275
+ "category": "Injection"
44276
+ },
44277
+ {
44278
+ "id": "CWE-798",
44279
+ "name": "Use of Hard-coded Credentials",
44280
+ "category": "Credentials"
44281
+ },
44282
+ {
44283
+ "id": "CWE-862",
44284
+ "name": "Missing Authorization",
44285
+ "category": "Authorization"
44286
+ },
44287
+ {
44288
+ "id": "CWE-863",
44289
+ "name": "Incorrect Authorization",
44290
+ "category": "Authorization"
44291
+ },
44292
+ {
44293
+ "id": "CWE-89",
44294
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
44295
+ "category": "Injection"
44296
+ },
44297
+ {
44298
+ "id": "CWE-918",
44299
+ "name": "Server-Side Request Forgery (SSRF)",
44300
+ "category": "Network"
44301
+ },
44302
+ {
44303
+ "id": "CWE-94",
44304
+ "name": "Improper Control of Generation of Code (Code Injection)",
44305
+ "category": "Injection"
44306
+ }
44307
+ ],
44308
+ "atlas": [
44309
+ {
44310
+ "id": "AML.T0010",
44311
+ "name": "ML Supply Chain Compromise",
44312
+ "tactic": "Initial Access"
44313
+ },
44314
+ {
44315
+ "id": "AML.T0016",
44316
+ "name": "Obtain Capabilities: Develop Capabilities",
44317
+ "tactic": "Resource Development"
44318
+ },
44319
+ {
44320
+ "id": "AML.T0017",
44321
+ "name": "Discover ML Model Ontology",
44322
+ "tactic": "Discovery"
44323
+ },
44324
+ {
44325
+ "id": "AML.T0018",
44326
+ "name": "Backdoor ML Model",
44327
+ "tactic": "Persistence"
44328
+ },
44329
+ {
44330
+ "id": "AML.T0020",
44331
+ "name": "Poison Training Data",
44332
+ "tactic": "ML Attack Staging"
44333
+ },
44334
+ {
44335
+ "id": "AML.T0043",
44336
+ "name": "Craft Adversarial Data",
44337
+ "tactic": "ML Attack Staging"
44338
+ },
44339
+ {
44340
+ "id": "AML.T0051",
44341
+ "name": "LLM Prompt Injection",
44342
+ "tactic": "Execution"
44343
+ },
44344
+ {
44345
+ "id": "AML.T0054",
44346
+ "name": "LLM Jailbreak",
44347
+ "tactic": "Defense Evasion"
44348
+ },
44349
+ {
44350
+ "id": "AML.T0096",
44351
+ "name": "AI API as Covert C2 Channel",
44352
+ "tactic": "Command and Control"
44353
+ }
44354
+ ],
44355
+ "d3fend": [
44356
+ {
44357
+ "id": "D3-ASLR",
44358
+ "name": "Address Space Layout Randomization",
44359
+ "tactic": "Harden"
44360
+ },
44361
+ {
44362
+ "id": "D3-CBAN",
44363
+ "name": "Certificate-based Authentication",
44364
+ "tactic": "Harden"
44365
+ },
44366
+ {
44367
+ "id": "D3-CSPP",
44368
+ "name": "Client-server Payload Profiling",
44369
+ "tactic": "Detect"
44370
+ },
44371
+ {
44372
+ "id": "D3-EAL",
44373
+ "name": "Executable Allowlisting",
44374
+ "tactic": "Harden"
44375
+ },
44376
+ {
44377
+ "id": "D3-EHB",
44378
+ "name": "Executable Hashbased Allowlist",
44379
+ "tactic": "Harden"
44380
+ },
44381
+ {
44382
+ "id": "D3-IOPR",
44383
+ "name": "Input/Output Profiling Resource",
44384
+ "tactic": "Detect"
44385
+ },
44386
+ {
44387
+ "id": "D3-MFA",
44388
+ "name": "Multi-factor Authentication",
44389
+ "tactic": "Harden"
44390
+ },
44391
+ {
44392
+ "id": "D3-NTA",
44393
+ "name": "Network Traffic Analysis",
44394
+ "tactic": "Detect"
44395
+ },
44396
+ {
44397
+ "id": "D3-PHRA",
44398
+ "name": "Process Hardware Resource Access",
44399
+ "tactic": "Isolate"
44400
+ },
44401
+ {
44402
+ "id": "D3-PSEP",
44403
+ "name": "Process Segment Execution Prevention",
44404
+ "tactic": "Harden"
44405
+ }
44406
+ ],
44407
+ "framework_gaps": [
44408
+ {
44409
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
44410
+ "framework": "ALL",
44411
+ "control_name": "AI Pipeline Integrity"
44412
+ },
44413
+ {
44414
+ "id": "ALL-MCP-TOOL-TRUST",
44415
+ "framework": "ALL",
44416
+ "control_name": "MCP/Agent Tool Trust Boundaries"
44417
+ },
44418
+ {
44419
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
44420
+ "framework": "ALL",
44421
+ "control_name": "Prompt Injection as Access Control Failure"
44422
+ },
44423
+ {
44424
+ "id": "CIS-Controls-v8-Control7",
44425
+ "framework": "CIS Controls v8",
44426
+ "control_name": "Continuous Vulnerability Management"
44427
+ },
44428
+ {
44429
+ "id": "CMMC-2.0-Level-2",
44430
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
44431
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
44432
+ },
44433
+ {
44434
+ "id": "FedRAMP-Rev5-Moderate",
44435
+ "framework": "FedRAMP Rev 5 Moderate",
44436
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
44437
+ },
44438
+ {
44439
+ "id": "ISO-27001-2022-A.8.28",
44440
+ "framework": "ISO/IEC 27001:2022",
44441
+ "control_name": "Secure coding"
44442
+ },
44443
+ {
44444
+ "id": "ISO-27001-2022-A.8.30",
44445
+ "framework": "ISO/IEC 27001:2022",
44446
+ "control_name": "Outsourced development"
44447
+ },
44448
+ {
44449
+ "id": "ISO-27001-2022-A.8.8",
44450
+ "framework": "ISO/IEC 27001:2022",
44451
+ "control_name": "Management of technical vulnerabilities"
44452
+ },
44453
+ {
44454
+ "id": "ISO-IEC-23894-2023-clause-7",
44455
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
44456
+ "control_name": "AI risk management process"
44457
+ },
44458
+ {
44459
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
44460
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
44461
+ "control_name": "AI risk assessment"
44462
+ },
44463
+ {
44464
+ "id": "NIS2-Art21-patch-management",
44465
+ "framework": "EU NIS2 Directive",
44466
+ "control_name": "Vulnerability handling and disclosure"
44467
+ },
44468
+ {
44469
+ "id": "NIST-800-218-SSDF",
44470
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
44471
+ "control_name": "Secure Software Development Framework"
44472
+ },
44473
+ {
44474
+ "id": "NIST-800-53-AC-2",
44475
+ "framework": "NIST SP 800-53 Rev 5",
44476
+ "control_name": "Account Management"
44477
+ },
44478
+ {
44479
+ "id": "NIST-800-53-CM-7",
44480
+ "framework": "NIST SP 800-53 Rev 5",
44481
+ "control_name": "Least Functionality"
44482
+ },
44483
+ {
44484
+ "id": "NIST-800-53-SA-12",
44485
+ "framework": "NIST SP 800-53 Rev 5",
44486
+ "control_name": "Supply Chain Protection"
44487
+ },
44488
+ {
44489
+ "id": "NIST-800-53-SC-8",
44490
+ "framework": "NIST SP 800-53 Rev 5",
44491
+ "control_name": "Transmission Confidentiality and Integrity"
44492
+ },
44493
+ {
44494
+ "id": "NIST-800-53-SI-12",
44495
+ "framework": "NIST SP 800-53 Rev 5",
44496
+ "control_name": "Information Management and Retention"
44497
+ },
44498
+ {
44499
+ "id": "NIST-800-53-SI-2",
44500
+ "framework": "NIST SP 800-53 Rev 5",
44501
+ "control_name": "Flaw Remediation"
44502
+ },
44503
+ {
44504
+ "id": "NIST-800-53-SI-3",
44505
+ "framework": "NIST SP 800-53 Rev 5",
44506
+ "control_name": "Malicious Code Protection"
44507
+ },
44508
+ {
44509
+ "id": "NIST-AI-RMF-MEASURE-2.5",
44510
+ "framework": "NIST AI RMF 1.0",
44511
+ "control_name": "AI system to human interaction evaluation"
44512
+ },
44513
+ {
44514
+ "id": "OWASP-ASVS-v5.0-V14",
44515
+ "framework": "OWASP ASVS v5.0",
44516
+ "control_name": "Configuration verification"
44517
+ },
44518
+ {
44519
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
44520
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44521
+ "control_name": "Prompt Injection"
44522
+ },
44523
+ {
44524
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
44525
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44526
+ "control_name": "Sensitive Information Disclosure"
44527
+ },
44528
+ {
44529
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
44530
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44531
+ "control_name": "Excessive Agency"
44532
+ },
44533
+ {
44534
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
44535
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44536
+ "control_name": "Vector and Embedding Weaknesses"
44537
+ },
44538
+ {
44539
+ "id": "PCI-DSS-4.0-6.3.3",
44540
+ "framework": "PCI DSS 4.0",
44541
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
44542
+ },
44543
+ {
44544
+ "id": "SLSA-v1.0-Build-L3",
44545
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
44546
+ "control_name": "Hardened build platform with non-falsifiable provenance"
44547
+ },
44548
+ {
44549
+ "id": "SOC2-CC6-logical-access",
44550
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
44551
+ "control_name": "Logical and Physical Access Controls"
44552
+ },
44553
+ {
44554
+ "id": "SOC2-CC9-vendor-management",
44555
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
44556
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
44557
+ },
44558
+ {
44559
+ "id": "SWIFT-CSCF-v2026-1.1",
44560
+ "framework": "SWIFT Customer Security Controls Framework v2026",
44561
+ "control_name": "SWIFT Environment Protection"
44562
+ }
44563
+ ],
44564
+ "attack_refs": [
44565
+ "T1059",
44566
+ "T1068",
44567
+ "T1078",
44568
+ "T1190",
44569
+ "T1195.001",
44570
+ "T1505",
44571
+ "T1530",
44572
+ "T1548.001",
44573
+ "T1552",
44574
+ "T1565",
44575
+ "T1566",
44576
+ "T1567",
44577
+ "T1610",
44578
+ "T1611"
44579
+ ],
44580
+ "rfc_refs": [
44581
+ "RFC-4301",
44582
+ "RFC-4303",
44583
+ "RFC-6749",
44584
+ "RFC-7296",
44585
+ "RFC-7519",
44586
+ "RFC-8032",
44587
+ "RFC-8446",
44588
+ "RFC-8725",
44589
+ "RFC-9114",
44590
+ "RFC-9180",
44591
+ "RFC-9421",
44592
+ "RFC-9700"
44593
+ ]
44594
+ }
44595
+ },
44596
+ "CVE-2026-31230": {
44597
+ "name": "Adversarial Robustness Toolbox CLI Argument Dynamic-Evaluation Code Execution",
44598
+ "rwep": 42,
44599
+ "cvss": 9.8,
44600
+ "cisa_kev": false,
44601
+ "epss_score": null,
44602
+ "referencing_skills": [
44603
+ "kernel-lpe-triage",
44604
+ "ai-attack-surface",
44605
+ "mcp-agent-trust",
44606
+ "compliance-theater",
44607
+ "rag-pipeline-security",
44608
+ "threat-modeling-methodology",
44609
+ "webapp-security",
44610
+ "api-security",
44611
+ "cloud-security",
44612
+ "container-runtime-security"
44613
+ ],
44614
+ "chain": {
44615
+ "cwes": [
44616
+ {
44617
+ "id": "CWE-1039",
44618
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
44619
+ "category": "AI/ML"
44620
+ },
44621
+ {
44622
+ "id": "CWE-1188",
44623
+ "name": "Initialization of a Resource with an Insecure Default",
44624
+ "category": "Configuration"
44625
+ },
44626
+ {
44627
+ "id": "CWE-125",
44628
+ "name": "Out-of-bounds Read",
44629
+ "category": "Memory Safety"
44630
+ },
44631
+ {
44632
+ "id": "CWE-1395",
44633
+ "name": "Dependency on Vulnerable Third-Party Component",
44634
+ "category": "Supply Chain"
44635
+ },
44636
+ {
44637
+ "id": "CWE-1426",
44638
+ "name": "Improper Validation of Generative AI Output",
44639
+ "category": "AI/ML"
44640
+ },
44641
+ {
44642
+ "id": "CWE-200",
44643
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
44644
+ "category": "Information Exposure"
44645
+ },
44646
+ {
44647
+ "id": "CWE-22",
44648
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
44649
+ "category": "Path/Resource"
44650
+ },
44651
+ {
44652
+ "id": "CWE-269",
44653
+ "name": "Improper Privilege Management",
44654
+ "category": "Authorization"
44655
+ },
44656
+ {
44657
+ "id": "CWE-287",
44658
+ "name": "Improper Authentication",
44659
+ "category": "Authentication"
44660
+ },
44661
+ {
44662
+ "id": "CWE-345",
44663
+ "name": "Insufficient Verification of Data Authenticity",
44664
+ "category": "Authenticity / Supply Chain"
44665
+ },
44666
+ {
44667
+ "id": "CWE-352",
44668
+ "name": "Cross-Site Request Forgery (CSRF)",
44669
+ "category": "Session"
44670
+ },
44671
+ {
44672
+ "id": "CWE-362",
44673
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
44674
+ "category": "Concurrency"
44675
+ },
44676
+ {
44677
+ "id": "CWE-416",
44678
+ "name": "Use After Free",
44679
+ "category": "Memory Safety"
44680
+ },
44681
+ {
44682
+ "id": "CWE-434",
44683
+ "name": "Unrestricted Upload of File with Dangerous Type",
44684
+ "category": "File Handling"
44685
+ },
44686
+ {
44687
+ "id": "CWE-494",
44688
+ "name": "Download of Code Without Integrity Check",
44689
+ "category": "Supply Chain"
44690
+ },
44691
+ {
44692
+ "id": "CWE-502",
44693
+ "name": "Deserialization of Untrusted Data",
44694
+ "category": "Serialization"
44695
+ },
44696
+ {
44697
+ "id": "CWE-672",
44698
+ "name": "Operation on a Resource after Expiration or Release",
44699
+ "category": "Memory Safety"
44700
+ },
44701
+ {
44702
+ "id": "CWE-732",
44703
+ "name": "Incorrect Permission Assignment for Critical Resource",
44704
+ "category": "Authorization"
44705
+ },
44706
+ {
44707
+ "id": "CWE-77",
44708
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
44709
+ "category": "Injection"
44710
+ },
44711
+ {
44712
+ "id": "CWE-78",
44713
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
44714
+ "category": "Injection"
44715
+ },
44716
+ {
44717
+ "id": "CWE-787",
44718
+ "name": "Out-of-bounds Write",
44719
+ "category": "Memory Safety"
44720
+ },
44721
+ {
44722
+ "id": "CWE-79",
44723
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
44724
+ "category": "Injection"
44725
+ },
44726
+ {
44727
+ "id": "CWE-798",
44728
+ "name": "Use of Hard-coded Credentials",
44729
+ "category": "Credentials"
44730
+ },
44731
+ {
44732
+ "id": "CWE-862",
44733
+ "name": "Missing Authorization",
44734
+ "category": "Authorization"
44735
+ },
44736
+ {
44737
+ "id": "CWE-863",
44738
+ "name": "Incorrect Authorization",
44739
+ "category": "Authorization"
44740
+ },
44741
+ {
44742
+ "id": "CWE-89",
44743
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
44744
+ "category": "Injection"
44745
+ },
44746
+ {
44747
+ "id": "CWE-918",
44748
+ "name": "Server-Side Request Forgery (SSRF)",
44749
+ "category": "Network"
44750
+ },
44751
+ {
44752
+ "id": "CWE-94",
44753
+ "name": "Improper Control of Generation of Code (Code Injection)",
44754
+ "category": "Injection"
44755
+ }
44756
+ ],
44757
+ "atlas": [
44758
+ {
44759
+ "id": "AML.T0010",
44760
+ "name": "ML Supply Chain Compromise",
44761
+ "tactic": "Initial Access"
44762
+ },
44763
+ {
44764
+ "id": "AML.T0016",
44765
+ "name": "Obtain Capabilities: Develop Capabilities",
44766
+ "tactic": "Resource Development"
44767
+ },
44768
+ {
44769
+ "id": "AML.T0017",
44770
+ "name": "Discover ML Model Ontology",
44771
+ "tactic": "Discovery"
44772
+ },
44773
+ {
44774
+ "id": "AML.T0018",
44775
+ "name": "Backdoor ML Model",
44776
+ "tactic": "Persistence"
44777
+ },
44778
+ {
44779
+ "id": "AML.T0020",
44780
+ "name": "Poison Training Data",
44781
+ "tactic": "ML Attack Staging"
44782
+ },
44783
+ {
44784
+ "id": "AML.T0043",
44785
+ "name": "Craft Adversarial Data",
44786
+ "tactic": "ML Attack Staging"
44787
+ },
44788
+ {
44789
+ "id": "AML.T0051",
44790
+ "name": "LLM Prompt Injection",
44791
+ "tactic": "Execution"
44792
+ },
44793
+ {
44794
+ "id": "AML.T0054",
44795
+ "name": "LLM Jailbreak",
44796
+ "tactic": "Defense Evasion"
44797
+ },
44798
+ {
44799
+ "id": "AML.T0096",
44800
+ "name": "AI API as Covert C2 Channel",
44801
+ "tactic": "Command and Control"
44802
+ }
44803
+ ],
44804
+ "d3fend": [
44805
+ {
44806
+ "id": "D3-ASLR",
44807
+ "name": "Address Space Layout Randomization",
44808
+ "tactic": "Harden"
44809
+ },
44810
+ {
44811
+ "id": "D3-CBAN",
44812
+ "name": "Certificate-based Authentication",
44813
+ "tactic": "Harden"
44814
+ },
44815
+ {
44816
+ "id": "D3-CSPP",
44817
+ "name": "Client-server Payload Profiling",
44818
+ "tactic": "Detect"
44819
+ },
44820
+ {
44821
+ "id": "D3-EAL",
44822
+ "name": "Executable Allowlisting",
44823
+ "tactic": "Harden"
44824
+ },
44825
+ {
44826
+ "id": "D3-EHB",
44827
+ "name": "Executable Hashbased Allowlist",
44828
+ "tactic": "Harden"
44829
+ },
44830
+ {
44831
+ "id": "D3-IOPR",
44832
+ "name": "Input/Output Profiling Resource",
44833
+ "tactic": "Detect"
44834
+ },
44835
+ {
44836
+ "id": "D3-MFA",
44837
+ "name": "Multi-factor Authentication",
44838
+ "tactic": "Harden"
44839
+ },
44840
+ {
44841
+ "id": "D3-NTA",
44842
+ "name": "Network Traffic Analysis",
44843
+ "tactic": "Detect"
44844
+ },
44845
+ {
44846
+ "id": "D3-PHRA",
44847
+ "name": "Process Hardware Resource Access",
44848
+ "tactic": "Isolate"
44849
+ },
44850
+ {
44851
+ "id": "D3-PSEP",
44852
+ "name": "Process Segment Execution Prevention",
44853
+ "tactic": "Harden"
44854
+ }
44855
+ ],
44856
+ "framework_gaps": [
44857
+ {
44858
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
44859
+ "framework": "ALL",
44860
+ "control_name": "AI Pipeline Integrity"
44861
+ },
44862
+ {
44863
+ "id": "ALL-MCP-TOOL-TRUST",
44864
+ "framework": "ALL",
44865
+ "control_name": "MCP/Agent Tool Trust Boundaries"
44866
+ },
44867
+ {
44868
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
44869
+ "framework": "ALL",
44870
+ "control_name": "Prompt Injection as Access Control Failure"
44871
+ },
44872
+ {
44873
+ "id": "CIS-Controls-v8-Control7",
44874
+ "framework": "CIS Controls v8",
44875
+ "control_name": "Continuous Vulnerability Management"
44876
+ },
44877
+ {
44878
+ "id": "CMMC-2.0-Level-2",
44879
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
44880
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
44881
+ },
44882
+ {
44883
+ "id": "FedRAMP-Rev5-Moderate",
44884
+ "framework": "FedRAMP Rev 5 Moderate",
44885
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
44886
+ },
44887
+ {
44888
+ "id": "ISO-27001-2022-A.8.28",
44889
+ "framework": "ISO/IEC 27001:2022",
44890
+ "control_name": "Secure coding"
44891
+ },
44892
+ {
44893
+ "id": "ISO-27001-2022-A.8.30",
44894
+ "framework": "ISO/IEC 27001:2022",
44895
+ "control_name": "Outsourced development"
44896
+ },
44897
+ {
44898
+ "id": "ISO-27001-2022-A.8.8",
44899
+ "framework": "ISO/IEC 27001:2022",
44900
+ "control_name": "Management of technical vulnerabilities"
44901
+ },
44902
+ {
44903
+ "id": "ISO-IEC-23894-2023-clause-7",
44904
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
44905
+ "control_name": "AI risk management process"
44906
+ },
44907
+ {
44908
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
44909
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
44910
+ "control_name": "AI risk assessment"
44911
+ },
44912
+ {
44913
+ "id": "NIS2-Art21-patch-management",
44914
+ "framework": "EU NIS2 Directive",
44915
+ "control_name": "Vulnerability handling and disclosure"
44916
+ },
44917
+ {
44918
+ "id": "NIST-800-218-SSDF",
44919
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
44920
+ "control_name": "Secure Software Development Framework"
44921
+ },
44922
+ {
44923
+ "id": "NIST-800-53-AC-2",
44924
+ "framework": "NIST SP 800-53 Rev 5",
44925
+ "control_name": "Account Management"
44926
+ },
44927
+ {
44928
+ "id": "NIST-800-53-CM-7",
44929
+ "framework": "NIST SP 800-53 Rev 5",
44930
+ "control_name": "Least Functionality"
44931
+ },
44932
+ {
44933
+ "id": "NIST-800-53-SA-12",
44934
+ "framework": "NIST SP 800-53 Rev 5",
44935
+ "control_name": "Supply Chain Protection"
44936
+ },
44937
+ {
44938
+ "id": "NIST-800-53-SC-8",
44939
+ "framework": "NIST SP 800-53 Rev 5",
44940
+ "control_name": "Transmission Confidentiality and Integrity"
44941
+ },
44942
+ {
44943
+ "id": "NIST-800-53-SI-12",
44944
+ "framework": "NIST SP 800-53 Rev 5",
44945
+ "control_name": "Information Management and Retention"
44946
+ },
44947
+ {
44948
+ "id": "NIST-800-53-SI-2",
44949
+ "framework": "NIST SP 800-53 Rev 5",
44950
+ "control_name": "Flaw Remediation"
44951
+ },
44952
+ {
44953
+ "id": "NIST-800-53-SI-3",
44954
+ "framework": "NIST SP 800-53 Rev 5",
44955
+ "control_name": "Malicious Code Protection"
44956
+ },
44957
+ {
44958
+ "id": "NIST-AI-RMF-MEASURE-2.5",
44959
+ "framework": "NIST AI RMF 1.0",
44960
+ "control_name": "AI system to human interaction evaluation"
44961
+ },
44962
+ {
44963
+ "id": "OWASP-ASVS-v5.0-V14",
44964
+ "framework": "OWASP ASVS v5.0",
44965
+ "control_name": "Configuration verification"
44966
+ },
44967
+ {
44968
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
44969
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44970
+ "control_name": "Prompt Injection"
44971
+ },
44972
+ {
44973
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
44974
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44975
+ "control_name": "Sensitive Information Disclosure"
44976
+ },
44977
+ {
44978
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
44979
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44980
+ "control_name": "Excessive Agency"
44981
+ },
44982
+ {
44983
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
44984
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44985
+ "control_name": "Vector and Embedding Weaknesses"
44986
+ },
44987
+ {
44988
+ "id": "PCI-DSS-4.0-6.3.3",
44989
+ "framework": "PCI DSS 4.0",
44990
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
44991
+ },
44992
+ {
44993
+ "id": "SLSA-v1.0-Build-L3",
44994
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
44995
+ "control_name": "Hardened build platform with non-falsifiable provenance"
44996
+ },
44997
+ {
44998
+ "id": "SOC2-CC6-logical-access",
44999
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
45000
+ "control_name": "Logical and Physical Access Controls"
45001
+ },
45002
+ {
45003
+ "id": "SOC2-CC9-vendor-management",
45004
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
45005
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
45006
+ },
45007
+ {
45008
+ "id": "SWIFT-CSCF-v2026-1.1",
45009
+ "framework": "SWIFT Customer Security Controls Framework v2026",
45010
+ "control_name": "SWIFT Environment Protection"
45011
+ }
45012
+ ],
45013
+ "attack_refs": [
45014
+ "T1059",
45015
+ "T1068",
45016
+ "T1078",
45017
+ "T1190",
45018
+ "T1195.001",
45019
+ "T1505",
45020
+ "T1530",
45021
+ "T1548.001",
45022
+ "T1552",
45023
+ "T1565",
45024
+ "T1566",
45025
+ "T1567",
45026
+ "T1610",
45027
+ "T1611"
45028
+ ],
45029
+ "rfc_refs": [
45030
+ "RFC-4301",
45031
+ "RFC-4303",
45032
+ "RFC-6749",
45033
+ "RFC-7296",
45034
+ "RFC-7519",
45035
+ "RFC-8032",
45036
+ "RFC-8446",
45037
+ "RFC-8725",
45038
+ "RFC-9114",
45039
+ "RFC-9180",
45040
+ "RFC-9421",
45041
+ "RFC-9700"
45042
+ ]
45043
+ }
45044
+ },
43681
45045
  "CVE-2026-41091": {
43682
45046
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
43683
45047
  "rwep": 45,
@@ -70134,6 +71498,8 @@
70134
71498
  "CVE-2026-30623",
70135
71499
  "CVE-2026-30624",
70136
71500
  "CVE-2026-30625",
71501
+ "CVE-2026-31229",
71502
+ "CVE-2026-31230",
70137
71503
  "CVE-2026-31431",
70138
71504
  "CVE-2026-33017",
70139
71505
  "CVE-2026-34159",
@@ -70347,6 +71713,8 @@
70347
71713
  "CVE-2025-6965",
70348
71714
  "CVE-2026-30615",
70349
71715
  "CVE-2026-30623",
71716
+ "CVE-2026-31229",
71717
+ "CVE-2026-31230",
70350
71718
  "CVE-2026-33017",
70351
71719
  "CVE-2026-39884",
70352
71720
  "CVE-2026-42208",
@@ -70559,6 +71927,8 @@
70559
71927
  "CVE-2026-30623",
70560
71928
  "CVE-2026-30624",
70561
71929
  "CVE-2026-30625",
71930
+ "CVE-2026-31229",
71931
+ "CVE-2026-31230",
70562
71932
  "CVE-2026-31431",
70563
71933
  "CVE-2026-33017",
70564
71934
  "CVE-2026-34159",
@@ -70769,6 +72139,8 @@
70769
72139
  "CVE-2026-30623",
70770
72140
  "CVE-2026-30624",
70771
72141
  "CVE-2026-30625",
72142
+ "CVE-2026-31229",
72143
+ "CVE-2026-31230",
70772
72144
  "CVE-2026-31431",
70773
72145
  "CVE-2026-33017",
70774
72146
  "CVE-2026-34159",
@@ -70993,6 +72365,8 @@
70993
72365
  "CVE-2026-30623",
70994
72366
  "CVE-2026-30624",
70995
72367
  "CVE-2026-30625",
72368
+ "CVE-2026-31229",
72369
+ "CVE-2026-31230",
70996
72370
  "CVE-2026-31431",
70997
72371
  "CVE-2026-33017",
70998
72372
  "CVE-2026-34159",
@@ -71249,7 +72623,9 @@
71249
72623
  "CVE-2022-36551",
71250
72624
  "CVE-2023-43472",
71251
72625
  "CVE-2023-43654",
72626
+ "CVE-2023-43791",
71252
72627
  "CVE-2023-44467",
72628
+ "CVE-2023-47117",
71253
72629
  "CVE-2023-48022",
71254
72630
  "CVE-2023-51449",
71255
72631
  "CVE-2023-6016",
@@ -71327,6 +72703,8 @@
71327
72703
  "CVE-2026-30623",
71328
72704
  "CVE-2026-30624",
71329
72705
  "CVE-2026-30625",
72706
+ "CVE-2026-31229",
72707
+ "CVE-2026-31230",
71330
72708
  "CVE-2026-32202",
71331
72709
  "CVE-2026-33017",
71332
72710
  "CVE-2026-33825",
@@ -71781,6 +73159,8 @@
71781
73159
  "CVE-2026-30617",
71782
73160
  "CVE-2026-30624",
71783
73161
  "CVE-2026-30625",
73162
+ "CVE-2026-31229",
73163
+ "CVE-2026-31230",
71784
73164
  "CVE-2026-31431",
71785
73165
  "CVE-2026-31635",
71786
73166
  "CVE-2026-32201",
@@ -72028,6 +73408,8 @@
72028
73408
  "BUG-2026-NIGHTMARE-ECLIPSE-YELLOWKEY",
72029
73409
  "CVE-2022-36551",
72030
73410
  "CVE-2023-43472",
73411
+ "CVE-2023-43791",
73412
+ "CVE-2023-47117",
72031
73413
  "CVE-2023-48022",
72032
73414
  "CVE-2023-51449",
72033
73415
  "CVE-2023-6016",
@@ -72064,6 +73446,8 @@
72064
73446
  "CVE-2025-6965",
72065
73447
  "CVE-2026-30615",
72066
73448
  "CVE-2026-30623",
73449
+ "CVE-2026-31229",
73450
+ "CVE-2026-31230",
72067
73451
  "CVE-2026-33017",
72068
73452
  "CVE-2026-34159",
72069
73453
  "CVE-2026-39884",
@@ -72489,6 +73873,8 @@
72489
73873
  "CVE-2026-30623",
72490
73874
  "CVE-2026-30624",
72491
73875
  "CVE-2026-30625",
73876
+ "CVE-2026-31229",
73877
+ "CVE-2026-31230",
72492
73878
  "CVE-2026-31431",
72493
73879
  "CVE-2026-33017",
72494
73880
  "CVE-2026-34159",
@@ -73138,6 +74524,8 @@
73138
74524
  "CVE-2026-30623",
73139
74525
  "CVE-2026-30624",
73140
74526
  "CVE-2026-30625",
74527
+ "CVE-2026-31229",
74528
+ "CVE-2026-31230",
73141
74529
  "CVE-2026-31431",
73142
74530
  "CVE-2026-33017",
73143
74531
  "CVE-2026-34159",
@@ -73547,6 +74935,8 @@
73547
74935
  },
73548
74936
  "related_cves": [
73549
74937
  "BUG-2026-NIGHTMARE-ECLIPSE-YELLOWKEY",
74938
+ "CVE-2023-43791",
74939
+ "CVE-2023-47117",
73550
74940
  "CVE-2025-14847",
73551
74941
  "CVE-2025-22226",
73552
74942
  "CVE-2026-43284"
@@ -73830,6 +75220,8 @@
73830
75220
  "CVE-2025-49844",
73831
75221
  "CVE-2025-53773",
73832
75222
  "CVE-2026-30615",
75223
+ "CVE-2026-31229",
75224
+ "CVE-2026-31230",
73833
75225
  "CVE-2026-33017",
73834
75226
  "CVE-2026-45321",
73835
75227
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
@@ -74136,6 +75528,8 @@
74136
75528
  "CVE-2026-30623",
74137
75529
  "CVE-2026-30624",
74138
75530
  "CVE-2026-30625",
75531
+ "CVE-2026-31229",
75532
+ "CVE-2026-31230",
74139
75533
  "CVE-2026-31431",
74140
75534
  "CVE-2026-33017",
74141
75535
  "CVE-2026-34159",
@@ -74595,6 +75989,8 @@
74595
75989
  "CVE-2026-30617",
74596
75990
  "CVE-2026-30624",
74597
75991
  "CVE-2026-30625",
75992
+ "CVE-2026-31229",
75993
+ "CVE-2026-31230",
74598
75994
  "CVE-2026-31431",
74599
75995
  "CVE-2026-31635",
74600
75996
  "CVE-2026-32201",
@@ -75055,6 +76451,8 @@
75055
76451
  "CVE-2026-30617",
75056
76452
  "CVE-2026-30624",
75057
76453
  "CVE-2026-30625",
76454
+ "CVE-2026-31229",
76455
+ "CVE-2026-31230",
75058
76456
  "CVE-2026-31431",
75059
76457
  "CVE-2026-31635",
75060
76458
  "CVE-2026-32201",
@@ -75378,6 +76776,8 @@
75378
76776
  "CVE-2026-30623",
75379
76777
  "CVE-2026-30624",
75380
76778
  "CVE-2026-30625",
76779
+ "CVE-2026-31229",
76780
+ "CVE-2026-31230",
75381
76781
  "CVE-2026-31431",
75382
76782
  "CVE-2026-33017",
75383
76783
  "CVE-2026-34159",
@@ -75597,6 +76997,8 @@
75597
76997
  "CVE-2025-49844",
75598
76998
  "CVE-2025-53773",
75599
76999
  "CVE-2026-30615",
77000
+ "CVE-2026-31229",
77001
+ "CVE-2026-31230",
75600
77002
  "CVE-2026-33017",
75601
77003
  "CVE-2026-45321",
75602
77004
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
@@ -75801,6 +77203,8 @@
75801
77203
  "CVE-2025-6965",
75802
77204
  "CVE-2026-30615",
75803
77205
  "CVE-2026-30623",
77206
+ "CVE-2026-31229",
77207
+ "CVE-2026-31230",
75804
77208
  "CVE-2026-33017",
75805
77209
  "CVE-2026-39884",
75806
77210
  "CVE-2026-42208",
@@ -76409,6 +77813,8 @@
76409
77813
  "CVE-2026-30617",
76410
77814
  "CVE-2026-30624",
76411
77815
  "CVE-2026-30625",
77816
+ "CVE-2026-31229",
77817
+ "CVE-2026-31230",
76412
77818
  "CVE-2026-31431",
76413
77819
  "CVE-2026-31635",
76414
77820
  "CVE-2026-32201",
@@ -76796,6 +78202,8 @@
76796
78202
  "CVE-2026-30623",
76797
78203
  "CVE-2026-30624",
76798
78204
  "CVE-2026-30625",
78205
+ "CVE-2026-31229",
78206
+ "CVE-2026-31230",
76799
78207
  "CVE-2026-31431",
76800
78208
  "CVE-2026-33017",
76801
78209
  "CVE-2026-34159",
@@ -77348,6 +78756,8 @@
77348
78756
  "CVE-2026-30623",
77349
78757
  "CVE-2026-30624",
77350
78758
  "CVE-2026-30625",
78759
+ "CVE-2026-31229",
78760
+ "CVE-2026-31230",
77351
78761
  "CVE-2026-31431",
77352
78762
  "CVE-2026-31635",
77353
78763
  "CVE-2026-32201",
@@ -77743,6 +79153,8 @@
77743
79153
  "CVE-2026-30617",
77744
79154
  "CVE-2026-30624",
77745
79155
  "CVE-2026-30625",
79156
+ "CVE-2026-31229",
79157
+ "CVE-2026-31230",
77746
79158
  "CVE-2026-31431",
77747
79159
  "CVE-2026-33017",
77748
79160
  "CVE-2026-34159",
@@ -78074,6 +79486,8 @@
78074
79486
  "CVE-2025-6965",
78075
79487
  "CVE-2026-30615",
78076
79488
  "CVE-2026-30623",
79489
+ "CVE-2026-31229",
79490
+ "CVE-2026-31230",
78077
79491
  "CVE-2026-33017",
78078
79492
  "CVE-2026-39884",
78079
79493
  "CVE-2026-42208",
@@ -78367,6 +79781,8 @@
78367
79781
  "CVE-2025-6965",
78368
79782
  "CVE-2026-30615",
78369
79783
  "CVE-2026-30623",
79784
+ "CVE-2026-31229",
79785
+ "CVE-2026-31230",
78370
79786
  "CVE-2026-33017",
78371
79787
  "CVE-2026-39884",
78372
79788
  "CVE-2026-42208",
@@ -78752,6 +80168,8 @@
78752
80168
  "CVE-2026-30623",
78753
80169
  "CVE-2026-30624",
78754
80170
  "CVE-2026-30625",
80171
+ "CVE-2026-31229",
80172
+ "CVE-2026-31230",
78755
80173
  "CVE-2026-31431",
78756
80174
  "CVE-2026-33017",
78757
80175
  "CVE-2026-34159",
@@ -79030,7 +80448,9 @@
79030
80448
  "CVE-2022-36551",
79031
80449
  "CVE-2023-43472",
79032
80450
  "CVE-2023-43654",
80451
+ "CVE-2023-43791",
79033
80452
  "CVE-2023-44467",
80453
+ "CVE-2023-47117",
79034
80454
  "CVE-2023-48022",
79035
80455
  "CVE-2023-51449",
79036
80456
  "CVE-2023-6016",
@@ -79104,6 +80524,8 @@
79104
80524
  "CVE-2026-30623",
79105
80525
  "CVE-2026-30624",
79106
80526
  "CVE-2026-30625",
80527
+ "CVE-2026-31229",
80528
+ "CVE-2026-31230",
79107
80529
  "CVE-2026-32202",
79108
80530
  "CVE-2026-33017",
79109
80531
  "CVE-2026-33825",
@@ -79284,6 +80706,8 @@
79284
80706
  "CVE-2025-6965",
79285
80707
  "CVE-2026-30615",
79286
80708
  "CVE-2026-30623",
80709
+ "CVE-2026-31229",
80710
+ "CVE-2026-31230",
79287
80711
  "CVE-2026-33017",
79288
80712
  "CVE-2026-39884",
79289
80713
  "CVE-2026-42208",
@@ -80067,6 +81491,8 @@
80067
81491
  "CVE-2026-30623",
80068
81492
  "CVE-2026-30624",
80069
81493
  "CVE-2026-30625",
81494
+ "CVE-2026-31229",
81495
+ "CVE-2026-31230",
80070
81496
  "CVE-2026-31431",
80071
81497
  "CVE-2026-33017",
80072
81498
  "CVE-2026-34159",
@@ -80331,7 +81757,9 @@
80331
81757
  "CVE-2022-36551",
80332
81758
  "CVE-2023-43472",
80333
81759
  "CVE-2023-43654",
81760
+ "CVE-2023-43791",
80334
81761
  "CVE-2023-44467",
81762
+ "CVE-2023-47117",
80335
81763
  "CVE-2023-48022",
80336
81764
  "CVE-2023-51449",
80337
81765
  "CVE-2023-6016",
@@ -80411,6 +81839,8 @@
80411
81839
  "CVE-2026-30623",
80412
81840
  "CVE-2026-30624",
80413
81841
  "CVE-2026-30625",
81842
+ "CVE-2026-31229",
81843
+ "CVE-2026-31230",
80414
81844
  "CVE-2026-32202",
80415
81845
  "CVE-2026-33017",
80416
81846
  "CVE-2026-33825",