@blamejs/exceptd-skills 0.13.109 → 0.13.110

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +954 -0
  6. package/data/atlas-ttps.json +4 -0
  7. package/data/attack-techniques.json +6 -1
  8. package/data/cve-catalog.json +195 -0
  9. package/data/cwe-catalog.json +3 -1
  10. package/data/framework-control-gaps.json +18 -0
  11. package/data/zeroday-lessons.json +100 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -44144,6 +44144,904 @@
44144
44144
  ]
44145
44145
  }
44146
44146
  },
44147
+ "CVE-2026-31229": {
44148
+ "name": "Adversarial Robustness Toolbox torch.load Model Deserialization RCE",
44149
+ "rwep": 46,
44150
+ "cvss": 9.8,
44151
+ "cisa_kev": false,
44152
+ "epss_score": null,
44153
+ "referencing_skills": [
44154
+ "kernel-lpe-triage",
44155
+ "ai-attack-surface",
44156
+ "mcp-agent-trust",
44157
+ "compliance-theater",
44158
+ "rag-pipeline-security",
44159
+ "threat-modeling-methodology",
44160
+ "webapp-security",
44161
+ "api-security",
44162
+ "cloud-security",
44163
+ "container-runtime-security"
44164
+ ],
44165
+ "chain": {
44166
+ "cwes": [
44167
+ {
44168
+ "id": "CWE-1039",
44169
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
44170
+ "category": "AI/ML"
44171
+ },
44172
+ {
44173
+ "id": "CWE-1188",
44174
+ "name": "Initialization of a Resource with an Insecure Default",
44175
+ "category": "Configuration"
44176
+ },
44177
+ {
44178
+ "id": "CWE-125",
44179
+ "name": "Out-of-bounds Read",
44180
+ "category": "Memory Safety"
44181
+ },
44182
+ {
44183
+ "id": "CWE-1395",
44184
+ "name": "Dependency on Vulnerable Third-Party Component",
44185
+ "category": "Supply Chain"
44186
+ },
44187
+ {
44188
+ "id": "CWE-1426",
44189
+ "name": "Improper Validation of Generative AI Output",
44190
+ "category": "AI/ML"
44191
+ },
44192
+ {
44193
+ "id": "CWE-200",
44194
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
44195
+ "category": "Information Exposure"
44196
+ },
44197
+ {
44198
+ "id": "CWE-22",
44199
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
44200
+ "category": "Path/Resource"
44201
+ },
44202
+ {
44203
+ "id": "CWE-269",
44204
+ "name": "Improper Privilege Management",
44205
+ "category": "Authorization"
44206
+ },
44207
+ {
44208
+ "id": "CWE-287",
44209
+ "name": "Improper Authentication",
44210
+ "category": "Authentication"
44211
+ },
44212
+ {
44213
+ "id": "CWE-345",
44214
+ "name": "Insufficient Verification of Data Authenticity",
44215
+ "category": "Authenticity / Supply Chain"
44216
+ },
44217
+ {
44218
+ "id": "CWE-352",
44219
+ "name": "Cross-Site Request Forgery (CSRF)",
44220
+ "category": "Session"
44221
+ },
44222
+ {
44223
+ "id": "CWE-362",
44224
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
44225
+ "category": "Concurrency"
44226
+ },
44227
+ {
44228
+ "id": "CWE-416",
44229
+ "name": "Use After Free",
44230
+ "category": "Memory Safety"
44231
+ },
44232
+ {
44233
+ "id": "CWE-434",
44234
+ "name": "Unrestricted Upload of File with Dangerous Type",
44235
+ "category": "File Handling"
44236
+ },
44237
+ {
44238
+ "id": "CWE-494",
44239
+ "name": "Download of Code Without Integrity Check",
44240
+ "category": "Supply Chain"
44241
+ },
44242
+ {
44243
+ "id": "CWE-502",
44244
+ "name": "Deserialization of Untrusted Data",
44245
+ "category": "Serialization"
44246
+ },
44247
+ {
44248
+ "id": "CWE-672",
44249
+ "name": "Operation on a Resource after Expiration or Release",
44250
+ "category": "Memory Safety"
44251
+ },
44252
+ {
44253
+ "id": "CWE-732",
44254
+ "name": "Incorrect Permission Assignment for Critical Resource",
44255
+ "category": "Authorization"
44256
+ },
44257
+ {
44258
+ "id": "CWE-77",
44259
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
44260
+ "category": "Injection"
44261
+ },
44262
+ {
44263
+ "id": "CWE-78",
44264
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
44265
+ "category": "Injection"
44266
+ },
44267
+ {
44268
+ "id": "CWE-787",
44269
+ "name": "Out-of-bounds Write",
44270
+ "category": "Memory Safety"
44271
+ },
44272
+ {
44273
+ "id": "CWE-79",
44274
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
44275
+ "category": "Injection"
44276
+ },
44277
+ {
44278
+ "id": "CWE-798",
44279
+ "name": "Use of Hard-coded Credentials",
44280
+ "category": "Credentials"
44281
+ },
44282
+ {
44283
+ "id": "CWE-862",
44284
+ "name": "Missing Authorization",
44285
+ "category": "Authorization"
44286
+ },
44287
+ {
44288
+ "id": "CWE-863",
44289
+ "name": "Incorrect Authorization",
44290
+ "category": "Authorization"
44291
+ },
44292
+ {
44293
+ "id": "CWE-89",
44294
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
44295
+ "category": "Injection"
44296
+ },
44297
+ {
44298
+ "id": "CWE-918",
44299
+ "name": "Server-Side Request Forgery (SSRF)",
44300
+ "category": "Network"
44301
+ },
44302
+ {
44303
+ "id": "CWE-94",
44304
+ "name": "Improper Control of Generation of Code (Code Injection)",
44305
+ "category": "Injection"
44306
+ }
44307
+ ],
44308
+ "atlas": [
44309
+ {
44310
+ "id": "AML.T0010",
44311
+ "name": "ML Supply Chain Compromise",
44312
+ "tactic": "Initial Access"
44313
+ },
44314
+ {
44315
+ "id": "AML.T0016",
44316
+ "name": "Obtain Capabilities: Develop Capabilities",
44317
+ "tactic": "Resource Development"
44318
+ },
44319
+ {
44320
+ "id": "AML.T0017",
44321
+ "name": "Discover ML Model Ontology",
44322
+ "tactic": "Discovery"
44323
+ },
44324
+ {
44325
+ "id": "AML.T0018",
44326
+ "name": "Backdoor ML Model",
44327
+ "tactic": "Persistence"
44328
+ },
44329
+ {
44330
+ "id": "AML.T0020",
44331
+ "name": "Poison Training Data",
44332
+ "tactic": "ML Attack Staging"
44333
+ },
44334
+ {
44335
+ "id": "AML.T0043",
44336
+ "name": "Craft Adversarial Data",
44337
+ "tactic": "ML Attack Staging"
44338
+ },
44339
+ {
44340
+ "id": "AML.T0051",
44341
+ "name": "LLM Prompt Injection",
44342
+ "tactic": "Execution"
44343
+ },
44344
+ {
44345
+ "id": "AML.T0054",
44346
+ "name": "LLM Jailbreak",
44347
+ "tactic": "Defense Evasion"
44348
+ },
44349
+ {
44350
+ "id": "AML.T0096",
44351
+ "name": "AI API as Covert C2 Channel",
44352
+ "tactic": "Command and Control"
44353
+ }
44354
+ ],
44355
+ "d3fend": [
44356
+ {
44357
+ "id": "D3-ASLR",
44358
+ "name": "Address Space Layout Randomization",
44359
+ "tactic": "Harden"
44360
+ },
44361
+ {
44362
+ "id": "D3-CBAN",
44363
+ "name": "Certificate-based Authentication",
44364
+ "tactic": "Harden"
44365
+ },
44366
+ {
44367
+ "id": "D3-CSPP",
44368
+ "name": "Client-server Payload Profiling",
44369
+ "tactic": "Detect"
44370
+ },
44371
+ {
44372
+ "id": "D3-EAL",
44373
+ "name": "Executable Allowlisting",
44374
+ "tactic": "Harden"
44375
+ },
44376
+ {
44377
+ "id": "D3-EHB",
44378
+ "name": "Executable Hashbased Allowlist",
44379
+ "tactic": "Harden"
44380
+ },
44381
+ {
44382
+ "id": "D3-IOPR",
44383
+ "name": "Input/Output Profiling Resource",
44384
+ "tactic": "Detect"
44385
+ },
44386
+ {
44387
+ "id": "D3-MFA",
44388
+ "name": "Multi-factor Authentication",
44389
+ "tactic": "Harden"
44390
+ },
44391
+ {
44392
+ "id": "D3-NTA",
44393
+ "name": "Network Traffic Analysis",
44394
+ "tactic": "Detect"
44395
+ },
44396
+ {
44397
+ "id": "D3-PHRA",
44398
+ "name": "Process Hardware Resource Access",
44399
+ "tactic": "Isolate"
44400
+ },
44401
+ {
44402
+ "id": "D3-PSEP",
44403
+ "name": "Process Segment Execution Prevention",
44404
+ "tactic": "Harden"
44405
+ }
44406
+ ],
44407
+ "framework_gaps": [
44408
+ {
44409
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
44410
+ "framework": "ALL",
44411
+ "control_name": "AI Pipeline Integrity"
44412
+ },
44413
+ {
44414
+ "id": "ALL-MCP-TOOL-TRUST",
44415
+ "framework": "ALL",
44416
+ "control_name": "MCP/Agent Tool Trust Boundaries"
44417
+ },
44418
+ {
44419
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
44420
+ "framework": "ALL",
44421
+ "control_name": "Prompt Injection as Access Control Failure"
44422
+ },
44423
+ {
44424
+ "id": "CIS-Controls-v8-Control7",
44425
+ "framework": "CIS Controls v8",
44426
+ "control_name": "Continuous Vulnerability Management"
44427
+ },
44428
+ {
44429
+ "id": "CMMC-2.0-Level-2",
44430
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
44431
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
44432
+ },
44433
+ {
44434
+ "id": "FedRAMP-Rev5-Moderate",
44435
+ "framework": "FedRAMP Rev 5 Moderate",
44436
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
44437
+ },
44438
+ {
44439
+ "id": "ISO-27001-2022-A.8.28",
44440
+ "framework": "ISO/IEC 27001:2022",
44441
+ "control_name": "Secure coding"
44442
+ },
44443
+ {
44444
+ "id": "ISO-27001-2022-A.8.30",
44445
+ "framework": "ISO/IEC 27001:2022",
44446
+ "control_name": "Outsourced development"
44447
+ },
44448
+ {
44449
+ "id": "ISO-27001-2022-A.8.8",
44450
+ "framework": "ISO/IEC 27001:2022",
44451
+ "control_name": "Management of technical vulnerabilities"
44452
+ },
44453
+ {
44454
+ "id": "ISO-IEC-23894-2023-clause-7",
44455
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
44456
+ "control_name": "AI risk management process"
44457
+ },
44458
+ {
44459
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
44460
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
44461
+ "control_name": "AI risk assessment"
44462
+ },
44463
+ {
44464
+ "id": "NIS2-Art21-patch-management",
44465
+ "framework": "EU NIS2 Directive",
44466
+ "control_name": "Vulnerability handling and disclosure"
44467
+ },
44468
+ {
44469
+ "id": "NIST-800-218-SSDF",
44470
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
44471
+ "control_name": "Secure Software Development Framework"
44472
+ },
44473
+ {
44474
+ "id": "NIST-800-53-AC-2",
44475
+ "framework": "NIST SP 800-53 Rev 5",
44476
+ "control_name": "Account Management"
44477
+ },
44478
+ {
44479
+ "id": "NIST-800-53-CM-7",
44480
+ "framework": "NIST SP 800-53 Rev 5",
44481
+ "control_name": "Least Functionality"
44482
+ },
44483
+ {
44484
+ "id": "NIST-800-53-SA-12",
44485
+ "framework": "NIST SP 800-53 Rev 5",
44486
+ "control_name": "Supply Chain Protection"
44487
+ },
44488
+ {
44489
+ "id": "NIST-800-53-SC-8",
44490
+ "framework": "NIST SP 800-53 Rev 5",
44491
+ "control_name": "Transmission Confidentiality and Integrity"
44492
+ },
44493
+ {
44494
+ "id": "NIST-800-53-SI-12",
44495
+ "framework": "NIST SP 800-53 Rev 5",
44496
+ "control_name": "Information Management and Retention"
44497
+ },
44498
+ {
44499
+ "id": "NIST-800-53-SI-2",
44500
+ "framework": "NIST SP 800-53 Rev 5",
44501
+ "control_name": "Flaw Remediation"
44502
+ },
44503
+ {
44504
+ "id": "NIST-800-53-SI-3",
44505
+ "framework": "NIST SP 800-53 Rev 5",
44506
+ "control_name": "Malicious Code Protection"
44507
+ },
44508
+ {
44509
+ "id": "NIST-AI-RMF-MEASURE-2.5",
44510
+ "framework": "NIST AI RMF 1.0",
44511
+ "control_name": "AI system to human interaction evaluation"
44512
+ },
44513
+ {
44514
+ "id": "OWASP-ASVS-v5.0-V14",
44515
+ "framework": "OWASP ASVS v5.0",
44516
+ "control_name": "Configuration verification"
44517
+ },
44518
+ {
44519
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
44520
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44521
+ "control_name": "Prompt Injection"
44522
+ },
44523
+ {
44524
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
44525
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44526
+ "control_name": "Sensitive Information Disclosure"
44527
+ },
44528
+ {
44529
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
44530
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44531
+ "control_name": "Excessive Agency"
44532
+ },
44533
+ {
44534
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
44535
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44536
+ "control_name": "Vector and Embedding Weaknesses"
44537
+ },
44538
+ {
44539
+ "id": "PCI-DSS-4.0-6.3.3",
44540
+ "framework": "PCI DSS 4.0",
44541
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
44542
+ },
44543
+ {
44544
+ "id": "SLSA-v1.0-Build-L3",
44545
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
44546
+ "control_name": "Hardened build platform with non-falsifiable provenance"
44547
+ },
44548
+ {
44549
+ "id": "SOC2-CC6-logical-access",
44550
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
44551
+ "control_name": "Logical and Physical Access Controls"
44552
+ },
44553
+ {
44554
+ "id": "SOC2-CC9-vendor-management",
44555
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
44556
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
44557
+ },
44558
+ {
44559
+ "id": "SWIFT-CSCF-v2026-1.1",
44560
+ "framework": "SWIFT Customer Security Controls Framework v2026",
44561
+ "control_name": "SWIFT Environment Protection"
44562
+ }
44563
+ ],
44564
+ "attack_refs": [
44565
+ "T1059",
44566
+ "T1068",
44567
+ "T1078",
44568
+ "T1190",
44569
+ "T1195.001",
44570
+ "T1505",
44571
+ "T1530",
44572
+ "T1548.001",
44573
+ "T1552",
44574
+ "T1565",
44575
+ "T1566",
44576
+ "T1567",
44577
+ "T1610",
44578
+ "T1611"
44579
+ ],
44580
+ "rfc_refs": [
44581
+ "RFC-4301",
44582
+ "RFC-4303",
44583
+ "RFC-6749",
44584
+ "RFC-7296",
44585
+ "RFC-7519",
44586
+ "RFC-8032",
44587
+ "RFC-8446",
44588
+ "RFC-8725",
44589
+ "RFC-9114",
44590
+ "RFC-9180",
44591
+ "RFC-9421",
44592
+ "RFC-9700"
44593
+ ]
44594
+ }
44595
+ },
44596
+ "CVE-2026-31230": {
44597
+ "name": "Adversarial Robustness Toolbox CLI Argument Dynamic-Evaluation Code Execution",
44598
+ "rwep": 42,
44599
+ "cvss": 9.8,
44600
+ "cisa_kev": false,
44601
+ "epss_score": null,
44602
+ "referencing_skills": [
44603
+ "kernel-lpe-triage",
44604
+ "ai-attack-surface",
44605
+ "mcp-agent-trust",
44606
+ "compliance-theater",
44607
+ "rag-pipeline-security",
44608
+ "threat-modeling-methodology",
44609
+ "webapp-security",
44610
+ "api-security",
44611
+ "cloud-security",
44612
+ "container-runtime-security"
44613
+ ],
44614
+ "chain": {
44615
+ "cwes": [
44616
+ {
44617
+ "id": "CWE-1039",
44618
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
44619
+ "category": "AI/ML"
44620
+ },
44621
+ {
44622
+ "id": "CWE-1188",
44623
+ "name": "Initialization of a Resource with an Insecure Default",
44624
+ "category": "Configuration"
44625
+ },
44626
+ {
44627
+ "id": "CWE-125",
44628
+ "name": "Out-of-bounds Read",
44629
+ "category": "Memory Safety"
44630
+ },
44631
+ {
44632
+ "id": "CWE-1395",
44633
+ "name": "Dependency on Vulnerable Third-Party Component",
44634
+ "category": "Supply Chain"
44635
+ },
44636
+ {
44637
+ "id": "CWE-1426",
44638
+ "name": "Improper Validation of Generative AI Output",
44639
+ "category": "AI/ML"
44640
+ },
44641
+ {
44642
+ "id": "CWE-200",
44643
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
44644
+ "category": "Information Exposure"
44645
+ },
44646
+ {
44647
+ "id": "CWE-22",
44648
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
44649
+ "category": "Path/Resource"
44650
+ },
44651
+ {
44652
+ "id": "CWE-269",
44653
+ "name": "Improper Privilege Management",
44654
+ "category": "Authorization"
44655
+ },
44656
+ {
44657
+ "id": "CWE-287",
44658
+ "name": "Improper Authentication",
44659
+ "category": "Authentication"
44660
+ },
44661
+ {
44662
+ "id": "CWE-345",
44663
+ "name": "Insufficient Verification of Data Authenticity",
44664
+ "category": "Authenticity / Supply Chain"
44665
+ },
44666
+ {
44667
+ "id": "CWE-352",
44668
+ "name": "Cross-Site Request Forgery (CSRF)",
44669
+ "category": "Session"
44670
+ },
44671
+ {
44672
+ "id": "CWE-362",
44673
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
44674
+ "category": "Concurrency"
44675
+ },
44676
+ {
44677
+ "id": "CWE-416",
44678
+ "name": "Use After Free",
44679
+ "category": "Memory Safety"
44680
+ },
44681
+ {
44682
+ "id": "CWE-434",
44683
+ "name": "Unrestricted Upload of File with Dangerous Type",
44684
+ "category": "File Handling"
44685
+ },
44686
+ {
44687
+ "id": "CWE-494",
44688
+ "name": "Download of Code Without Integrity Check",
44689
+ "category": "Supply Chain"
44690
+ },
44691
+ {
44692
+ "id": "CWE-502",
44693
+ "name": "Deserialization of Untrusted Data",
44694
+ "category": "Serialization"
44695
+ },
44696
+ {
44697
+ "id": "CWE-672",
44698
+ "name": "Operation on a Resource after Expiration or Release",
44699
+ "category": "Memory Safety"
44700
+ },
44701
+ {
44702
+ "id": "CWE-732",
44703
+ "name": "Incorrect Permission Assignment for Critical Resource",
44704
+ "category": "Authorization"
44705
+ },
44706
+ {
44707
+ "id": "CWE-77",
44708
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
44709
+ "category": "Injection"
44710
+ },
44711
+ {
44712
+ "id": "CWE-78",
44713
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
44714
+ "category": "Injection"
44715
+ },
44716
+ {
44717
+ "id": "CWE-787",
44718
+ "name": "Out-of-bounds Write",
44719
+ "category": "Memory Safety"
44720
+ },
44721
+ {
44722
+ "id": "CWE-79",
44723
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
44724
+ "category": "Injection"
44725
+ },
44726
+ {
44727
+ "id": "CWE-798",
44728
+ "name": "Use of Hard-coded Credentials",
44729
+ "category": "Credentials"
44730
+ },
44731
+ {
44732
+ "id": "CWE-862",
44733
+ "name": "Missing Authorization",
44734
+ "category": "Authorization"
44735
+ },
44736
+ {
44737
+ "id": "CWE-863",
44738
+ "name": "Incorrect Authorization",
44739
+ "category": "Authorization"
44740
+ },
44741
+ {
44742
+ "id": "CWE-89",
44743
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
44744
+ "category": "Injection"
44745
+ },
44746
+ {
44747
+ "id": "CWE-918",
44748
+ "name": "Server-Side Request Forgery (SSRF)",
44749
+ "category": "Network"
44750
+ },
44751
+ {
44752
+ "id": "CWE-94",
44753
+ "name": "Improper Control of Generation of Code (Code Injection)",
44754
+ "category": "Injection"
44755
+ }
44756
+ ],
44757
+ "atlas": [
44758
+ {
44759
+ "id": "AML.T0010",
44760
+ "name": "ML Supply Chain Compromise",
44761
+ "tactic": "Initial Access"
44762
+ },
44763
+ {
44764
+ "id": "AML.T0016",
44765
+ "name": "Obtain Capabilities: Develop Capabilities",
44766
+ "tactic": "Resource Development"
44767
+ },
44768
+ {
44769
+ "id": "AML.T0017",
44770
+ "name": "Discover ML Model Ontology",
44771
+ "tactic": "Discovery"
44772
+ },
44773
+ {
44774
+ "id": "AML.T0018",
44775
+ "name": "Backdoor ML Model",
44776
+ "tactic": "Persistence"
44777
+ },
44778
+ {
44779
+ "id": "AML.T0020",
44780
+ "name": "Poison Training Data",
44781
+ "tactic": "ML Attack Staging"
44782
+ },
44783
+ {
44784
+ "id": "AML.T0043",
44785
+ "name": "Craft Adversarial Data",
44786
+ "tactic": "ML Attack Staging"
44787
+ },
44788
+ {
44789
+ "id": "AML.T0051",
44790
+ "name": "LLM Prompt Injection",
44791
+ "tactic": "Execution"
44792
+ },
44793
+ {
44794
+ "id": "AML.T0054",
44795
+ "name": "LLM Jailbreak",
44796
+ "tactic": "Defense Evasion"
44797
+ },
44798
+ {
44799
+ "id": "AML.T0096",
44800
+ "name": "AI API as Covert C2 Channel",
44801
+ "tactic": "Command and Control"
44802
+ }
44803
+ ],
44804
+ "d3fend": [
44805
+ {
44806
+ "id": "D3-ASLR",
44807
+ "name": "Address Space Layout Randomization",
44808
+ "tactic": "Harden"
44809
+ },
44810
+ {
44811
+ "id": "D3-CBAN",
44812
+ "name": "Certificate-based Authentication",
44813
+ "tactic": "Harden"
44814
+ },
44815
+ {
44816
+ "id": "D3-CSPP",
44817
+ "name": "Client-server Payload Profiling",
44818
+ "tactic": "Detect"
44819
+ },
44820
+ {
44821
+ "id": "D3-EAL",
44822
+ "name": "Executable Allowlisting",
44823
+ "tactic": "Harden"
44824
+ },
44825
+ {
44826
+ "id": "D3-EHB",
44827
+ "name": "Executable Hashbased Allowlist",
44828
+ "tactic": "Harden"
44829
+ },
44830
+ {
44831
+ "id": "D3-IOPR",
44832
+ "name": "Input/Output Profiling Resource",
44833
+ "tactic": "Detect"
44834
+ },
44835
+ {
44836
+ "id": "D3-MFA",
44837
+ "name": "Multi-factor Authentication",
44838
+ "tactic": "Harden"
44839
+ },
44840
+ {
44841
+ "id": "D3-NTA",
44842
+ "name": "Network Traffic Analysis",
44843
+ "tactic": "Detect"
44844
+ },
44845
+ {
44846
+ "id": "D3-PHRA",
44847
+ "name": "Process Hardware Resource Access",
44848
+ "tactic": "Isolate"
44849
+ },
44850
+ {
44851
+ "id": "D3-PSEP",
44852
+ "name": "Process Segment Execution Prevention",
44853
+ "tactic": "Harden"
44854
+ }
44855
+ ],
44856
+ "framework_gaps": [
44857
+ {
44858
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
44859
+ "framework": "ALL",
44860
+ "control_name": "AI Pipeline Integrity"
44861
+ },
44862
+ {
44863
+ "id": "ALL-MCP-TOOL-TRUST",
44864
+ "framework": "ALL",
44865
+ "control_name": "MCP/Agent Tool Trust Boundaries"
44866
+ },
44867
+ {
44868
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
44869
+ "framework": "ALL",
44870
+ "control_name": "Prompt Injection as Access Control Failure"
44871
+ },
44872
+ {
44873
+ "id": "CIS-Controls-v8-Control7",
44874
+ "framework": "CIS Controls v8",
44875
+ "control_name": "Continuous Vulnerability Management"
44876
+ },
44877
+ {
44878
+ "id": "CMMC-2.0-Level-2",
44879
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
44880
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
44881
+ },
44882
+ {
44883
+ "id": "FedRAMP-Rev5-Moderate",
44884
+ "framework": "FedRAMP Rev 5 Moderate",
44885
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
44886
+ },
44887
+ {
44888
+ "id": "ISO-27001-2022-A.8.28",
44889
+ "framework": "ISO/IEC 27001:2022",
44890
+ "control_name": "Secure coding"
44891
+ },
44892
+ {
44893
+ "id": "ISO-27001-2022-A.8.30",
44894
+ "framework": "ISO/IEC 27001:2022",
44895
+ "control_name": "Outsourced development"
44896
+ },
44897
+ {
44898
+ "id": "ISO-27001-2022-A.8.8",
44899
+ "framework": "ISO/IEC 27001:2022",
44900
+ "control_name": "Management of technical vulnerabilities"
44901
+ },
44902
+ {
44903
+ "id": "ISO-IEC-23894-2023-clause-7",
44904
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
44905
+ "control_name": "AI risk management process"
44906
+ },
44907
+ {
44908
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
44909
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
44910
+ "control_name": "AI risk assessment"
44911
+ },
44912
+ {
44913
+ "id": "NIS2-Art21-patch-management",
44914
+ "framework": "EU NIS2 Directive",
44915
+ "control_name": "Vulnerability handling and disclosure"
44916
+ },
44917
+ {
44918
+ "id": "NIST-800-218-SSDF",
44919
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
44920
+ "control_name": "Secure Software Development Framework"
44921
+ },
44922
+ {
44923
+ "id": "NIST-800-53-AC-2",
44924
+ "framework": "NIST SP 800-53 Rev 5",
44925
+ "control_name": "Account Management"
44926
+ },
44927
+ {
44928
+ "id": "NIST-800-53-CM-7",
44929
+ "framework": "NIST SP 800-53 Rev 5",
44930
+ "control_name": "Least Functionality"
44931
+ },
44932
+ {
44933
+ "id": "NIST-800-53-SA-12",
44934
+ "framework": "NIST SP 800-53 Rev 5",
44935
+ "control_name": "Supply Chain Protection"
44936
+ },
44937
+ {
44938
+ "id": "NIST-800-53-SC-8",
44939
+ "framework": "NIST SP 800-53 Rev 5",
44940
+ "control_name": "Transmission Confidentiality and Integrity"
44941
+ },
44942
+ {
44943
+ "id": "NIST-800-53-SI-12",
44944
+ "framework": "NIST SP 800-53 Rev 5",
44945
+ "control_name": "Information Management and Retention"
44946
+ },
44947
+ {
44948
+ "id": "NIST-800-53-SI-2",
44949
+ "framework": "NIST SP 800-53 Rev 5",
44950
+ "control_name": "Flaw Remediation"
44951
+ },
44952
+ {
44953
+ "id": "NIST-800-53-SI-3",
44954
+ "framework": "NIST SP 800-53 Rev 5",
44955
+ "control_name": "Malicious Code Protection"
44956
+ },
44957
+ {
44958
+ "id": "NIST-AI-RMF-MEASURE-2.5",
44959
+ "framework": "NIST AI RMF 1.0",
44960
+ "control_name": "AI system to human interaction evaluation"
44961
+ },
44962
+ {
44963
+ "id": "OWASP-ASVS-v5.0-V14",
44964
+ "framework": "OWASP ASVS v5.0",
44965
+ "control_name": "Configuration verification"
44966
+ },
44967
+ {
44968
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
44969
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44970
+ "control_name": "Prompt Injection"
44971
+ },
44972
+ {
44973
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
44974
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44975
+ "control_name": "Sensitive Information Disclosure"
44976
+ },
44977
+ {
44978
+ "id": "OWASP-LLM-Top-10-2025-LLM06",
44979
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44980
+ "control_name": "Excessive Agency"
44981
+ },
44982
+ {
44983
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
44984
+ "framework": "OWASP Top 10 for LLM Applications 2025",
44985
+ "control_name": "Vector and Embedding Weaknesses"
44986
+ },
44987
+ {
44988
+ "id": "PCI-DSS-4.0-6.3.3",
44989
+ "framework": "PCI DSS 4.0",
44990
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
44991
+ },
44992
+ {
44993
+ "id": "SLSA-v1.0-Build-L3",
44994
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
44995
+ "control_name": "Hardened build platform with non-falsifiable provenance"
44996
+ },
44997
+ {
44998
+ "id": "SOC2-CC6-logical-access",
44999
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
45000
+ "control_name": "Logical and Physical Access Controls"
45001
+ },
45002
+ {
45003
+ "id": "SOC2-CC9-vendor-management",
45004
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
45005
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
45006
+ },
45007
+ {
45008
+ "id": "SWIFT-CSCF-v2026-1.1",
45009
+ "framework": "SWIFT Customer Security Controls Framework v2026",
45010
+ "control_name": "SWIFT Environment Protection"
45011
+ }
45012
+ ],
45013
+ "attack_refs": [
45014
+ "T1059",
45015
+ "T1068",
45016
+ "T1078",
45017
+ "T1190",
45018
+ "T1195.001",
45019
+ "T1505",
45020
+ "T1530",
45021
+ "T1548.001",
45022
+ "T1552",
45023
+ "T1565",
45024
+ "T1566",
45025
+ "T1567",
45026
+ "T1610",
45027
+ "T1611"
45028
+ ],
45029
+ "rfc_refs": [
45030
+ "RFC-4301",
45031
+ "RFC-4303",
45032
+ "RFC-6749",
45033
+ "RFC-7296",
45034
+ "RFC-7519",
45035
+ "RFC-8032",
45036
+ "RFC-8446",
45037
+ "RFC-8725",
45038
+ "RFC-9114",
45039
+ "RFC-9180",
45040
+ "RFC-9421",
45041
+ "RFC-9700"
45042
+ ]
45043
+ }
45044
+ },
44147
45045
  "CVE-2026-41091": {
44148
45046
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
44149
45047
  "rwep": 45,
@@ -70600,6 +71498,8 @@
70600
71498
  "CVE-2026-30623",
70601
71499
  "CVE-2026-30624",
70602
71500
  "CVE-2026-30625",
71501
+ "CVE-2026-31229",
71502
+ "CVE-2026-31230",
70603
71503
  "CVE-2026-31431",
70604
71504
  "CVE-2026-33017",
70605
71505
  "CVE-2026-34159",
@@ -70813,6 +71713,8 @@
70813
71713
  "CVE-2025-6965",
70814
71714
  "CVE-2026-30615",
70815
71715
  "CVE-2026-30623",
71716
+ "CVE-2026-31229",
71717
+ "CVE-2026-31230",
70816
71718
  "CVE-2026-33017",
70817
71719
  "CVE-2026-39884",
70818
71720
  "CVE-2026-42208",
@@ -71025,6 +71927,8 @@
71025
71927
  "CVE-2026-30623",
71026
71928
  "CVE-2026-30624",
71027
71929
  "CVE-2026-30625",
71930
+ "CVE-2026-31229",
71931
+ "CVE-2026-31230",
71028
71932
  "CVE-2026-31431",
71029
71933
  "CVE-2026-33017",
71030
71934
  "CVE-2026-34159",
@@ -71235,6 +72139,8 @@
71235
72139
  "CVE-2026-30623",
71236
72140
  "CVE-2026-30624",
71237
72141
  "CVE-2026-30625",
72142
+ "CVE-2026-31229",
72143
+ "CVE-2026-31230",
71238
72144
  "CVE-2026-31431",
71239
72145
  "CVE-2026-33017",
71240
72146
  "CVE-2026-34159",
@@ -71459,6 +72365,8 @@
71459
72365
  "CVE-2026-30623",
71460
72366
  "CVE-2026-30624",
71461
72367
  "CVE-2026-30625",
72368
+ "CVE-2026-31229",
72369
+ "CVE-2026-31230",
71462
72370
  "CVE-2026-31431",
71463
72371
  "CVE-2026-33017",
71464
72372
  "CVE-2026-34159",
@@ -71795,6 +72703,8 @@
71795
72703
  "CVE-2026-30623",
71796
72704
  "CVE-2026-30624",
71797
72705
  "CVE-2026-30625",
72706
+ "CVE-2026-31229",
72707
+ "CVE-2026-31230",
71798
72708
  "CVE-2026-32202",
71799
72709
  "CVE-2026-33017",
71800
72710
  "CVE-2026-33825",
@@ -72249,6 +73159,8 @@
72249
73159
  "CVE-2026-30617",
72250
73160
  "CVE-2026-30624",
72251
73161
  "CVE-2026-30625",
73162
+ "CVE-2026-31229",
73163
+ "CVE-2026-31230",
72252
73164
  "CVE-2026-31431",
72253
73165
  "CVE-2026-31635",
72254
73166
  "CVE-2026-32201",
@@ -72534,6 +73446,8 @@
72534
73446
  "CVE-2025-6965",
72535
73447
  "CVE-2026-30615",
72536
73448
  "CVE-2026-30623",
73449
+ "CVE-2026-31229",
73450
+ "CVE-2026-31230",
72537
73451
  "CVE-2026-33017",
72538
73452
  "CVE-2026-34159",
72539
73453
  "CVE-2026-39884",
@@ -72959,6 +73873,8 @@
72959
73873
  "CVE-2026-30623",
72960
73874
  "CVE-2026-30624",
72961
73875
  "CVE-2026-30625",
73876
+ "CVE-2026-31229",
73877
+ "CVE-2026-31230",
72962
73878
  "CVE-2026-31431",
72963
73879
  "CVE-2026-33017",
72964
73880
  "CVE-2026-34159",
@@ -73608,6 +74524,8 @@
73608
74524
  "CVE-2026-30623",
73609
74525
  "CVE-2026-30624",
73610
74526
  "CVE-2026-30625",
74527
+ "CVE-2026-31229",
74528
+ "CVE-2026-31230",
73611
74529
  "CVE-2026-31431",
73612
74530
  "CVE-2026-33017",
73613
74531
  "CVE-2026-34159",
@@ -74302,6 +75220,8 @@
74302
75220
  "CVE-2025-49844",
74303
75221
  "CVE-2025-53773",
74304
75222
  "CVE-2026-30615",
75223
+ "CVE-2026-31229",
75224
+ "CVE-2026-31230",
74305
75225
  "CVE-2026-33017",
74306
75226
  "CVE-2026-45321",
74307
75227
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
@@ -74608,6 +75528,8 @@
74608
75528
  "CVE-2026-30623",
74609
75529
  "CVE-2026-30624",
74610
75530
  "CVE-2026-30625",
75531
+ "CVE-2026-31229",
75532
+ "CVE-2026-31230",
74611
75533
  "CVE-2026-31431",
74612
75534
  "CVE-2026-33017",
74613
75535
  "CVE-2026-34159",
@@ -75067,6 +75989,8 @@
75067
75989
  "CVE-2026-30617",
75068
75990
  "CVE-2026-30624",
75069
75991
  "CVE-2026-30625",
75992
+ "CVE-2026-31229",
75993
+ "CVE-2026-31230",
75070
75994
  "CVE-2026-31431",
75071
75995
  "CVE-2026-31635",
75072
75996
  "CVE-2026-32201",
@@ -75527,6 +76451,8 @@
75527
76451
  "CVE-2026-30617",
75528
76452
  "CVE-2026-30624",
75529
76453
  "CVE-2026-30625",
76454
+ "CVE-2026-31229",
76455
+ "CVE-2026-31230",
75530
76456
  "CVE-2026-31431",
75531
76457
  "CVE-2026-31635",
75532
76458
  "CVE-2026-32201",
@@ -75850,6 +76776,8 @@
75850
76776
  "CVE-2026-30623",
75851
76777
  "CVE-2026-30624",
75852
76778
  "CVE-2026-30625",
76779
+ "CVE-2026-31229",
76780
+ "CVE-2026-31230",
75853
76781
  "CVE-2026-31431",
75854
76782
  "CVE-2026-33017",
75855
76783
  "CVE-2026-34159",
@@ -76069,6 +76997,8 @@
76069
76997
  "CVE-2025-49844",
76070
76998
  "CVE-2025-53773",
76071
76999
  "CVE-2026-30615",
77000
+ "CVE-2026-31229",
77001
+ "CVE-2026-31230",
76072
77002
  "CVE-2026-33017",
76073
77003
  "CVE-2026-45321",
76074
77004
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
@@ -76273,6 +77203,8 @@
76273
77203
  "CVE-2025-6965",
76274
77204
  "CVE-2026-30615",
76275
77205
  "CVE-2026-30623",
77206
+ "CVE-2026-31229",
77207
+ "CVE-2026-31230",
76276
77208
  "CVE-2026-33017",
76277
77209
  "CVE-2026-39884",
76278
77210
  "CVE-2026-42208",
@@ -76881,6 +77813,8 @@
76881
77813
  "CVE-2026-30617",
76882
77814
  "CVE-2026-30624",
76883
77815
  "CVE-2026-30625",
77816
+ "CVE-2026-31229",
77817
+ "CVE-2026-31230",
76884
77818
  "CVE-2026-31431",
76885
77819
  "CVE-2026-31635",
76886
77820
  "CVE-2026-32201",
@@ -77268,6 +78202,8 @@
77268
78202
  "CVE-2026-30623",
77269
78203
  "CVE-2026-30624",
77270
78204
  "CVE-2026-30625",
78205
+ "CVE-2026-31229",
78206
+ "CVE-2026-31230",
77271
78207
  "CVE-2026-31431",
77272
78208
  "CVE-2026-33017",
77273
78209
  "CVE-2026-34159",
@@ -77820,6 +78756,8 @@
77820
78756
  "CVE-2026-30623",
77821
78757
  "CVE-2026-30624",
77822
78758
  "CVE-2026-30625",
78759
+ "CVE-2026-31229",
78760
+ "CVE-2026-31230",
77823
78761
  "CVE-2026-31431",
77824
78762
  "CVE-2026-31635",
77825
78763
  "CVE-2026-32201",
@@ -78215,6 +79153,8 @@
78215
79153
  "CVE-2026-30617",
78216
79154
  "CVE-2026-30624",
78217
79155
  "CVE-2026-30625",
79156
+ "CVE-2026-31229",
79157
+ "CVE-2026-31230",
78218
79158
  "CVE-2026-31431",
78219
79159
  "CVE-2026-33017",
78220
79160
  "CVE-2026-34159",
@@ -78546,6 +79486,8 @@
78546
79486
  "CVE-2025-6965",
78547
79487
  "CVE-2026-30615",
78548
79488
  "CVE-2026-30623",
79489
+ "CVE-2026-31229",
79490
+ "CVE-2026-31230",
78549
79491
  "CVE-2026-33017",
78550
79492
  "CVE-2026-39884",
78551
79493
  "CVE-2026-42208",
@@ -78839,6 +79781,8 @@
78839
79781
  "CVE-2025-6965",
78840
79782
  "CVE-2026-30615",
78841
79783
  "CVE-2026-30623",
79784
+ "CVE-2026-31229",
79785
+ "CVE-2026-31230",
78842
79786
  "CVE-2026-33017",
78843
79787
  "CVE-2026-39884",
78844
79788
  "CVE-2026-42208",
@@ -79224,6 +80168,8 @@
79224
80168
  "CVE-2026-30623",
79225
80169
  "CVE-2026-30624",
79226
80170
  "CVE-2026-30625",
80171
+ "CVE-2026-31229",
80172
+ "CVE-2026-31230",
79227
80173
  "CVE-2026-31431",
79228
80174
  "CVE-2026-33017",
79229
80175
  "CVE-2026-34159",
@@ -79578,6 +80524,8 @@
79578
80524
  "CVE-2026-30623",
79579
80525
  "CVE-2026-30624",
79580
80526
  "CVE-2026-30625",
80527
+ "CVE-2026-31229",
80528
+ "CVE-2026-31230",
79581
80529
  "CVE-2026-32202",
79582
80530
  "CVE-2026-33017",
79583
80531
  "CVE-2026-33825",
@@ -79758,6 +80706,8 @@
79758
80706
  "CVE-2025-6965",
79759
80707
  "CVE-2026-30615",
79760
80708
  "CVE-2026-30623",
80709
+ "CVE-2026-31229",
80710
+ "CVE-2026-31230",
79761
80711
  "CVE-2026-33017",
79762
80712
  "CVE-2026-39884",
79763
80713
  "CVE-2026-42208",
@@ -80541,6 +81491,8 @@
80541
81491
  "CVE-2026-30623",
80542
81492
  "CVE-2026-30624",
80543
81493
  "CVE-2026-30625",
81494
+ "CVE-2026-31229",
81495
+ "CVE-2026-31230",
80544
81496
  "CVE-2026-31431",
80545
81497
  "CVE-2026-33017",
80546
81498
  "CVE-2026-34159",
@@ -80887,6 +81839,8 @@
80887
81839
  "CVE-2026-30623",
80888
81840
  "CVE-2026-30624",
80889
81841
  "CVE-2026-30625",
81842
+ "CVE-2026-31229",
81843
+ "CVE-2026-31230",
80890
81844
  "CVE-2026-32202",
80891
81845
  "CVE-2026-33017",
80892
81846
  "CVE-2026-33825",