@blamejs/exceptd-skills 0.13.121 → 0.13.122

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +799 -1
  6. package/data/atlas-ttps.json +6 -2
  7. package/data/attack-techniques.json +8 -3
  8. package/data/cve-catalog.json +220 -2
  9. package/data/cwe-catalog.json +6 -3
  10. package/data/framework-control-gaps.json +28 -10
  11. package/data/zeroday-lessons.json +100 -0
  12. package/manifest.json +44 -44
  13. package/package.json +1 -1
  14. package/sbom.cdx.json +24 -24
package/data/_indexes/chains.json CHANGED
@@ -74506,6 +74506,758 @@
74506
74506
  ]
74507
74507
  }
74508
74508
  },
74509
+ "CVE-2025-10164": {
74510
+ "name": "SGLang update_weights_from_tensor Unsafe Deserialization RCE",
74511
+ "rwep": 25,
74512
+ "cvss": 7.3,
74513
+ "cisa_kev": false,
74514
+ "epss_score": 0.00111,
74515
+ "referencing_skills": [
74516
+ "kernel-lpe-triage",
74517
+ "ai-attack-surface",
74518
+ "compliance-theater",
74519
+ "rag-pipeline-security",
74520
+ "threat-modeling-methodology",
74521
+ "webapp-security",
74522
+ "api-security",
74523
+ "container-runtime-security"
74524
+ ],
74525
+ "chain": {
74526
+ "cwes": [
74527
+ {
74528
+ "id": "CWE-1039",
74529
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
74530
+ "category": "AI/ML"
74531
+ },
74532
+ {
74533
+ "id": "CWE-1188",
74534
+ "name": "Initialization of a Resource with an Insecure Default",
74535
+ "category": "Configuration"
74536
+ },
74537
+ {
74538
+ "id": "CWE-125",
74539
+ "name": "Out-of-bounds Read",
74540
+ "category": "Memory Safety"
74541
+ },
74542
+ {
74543
+ "id": "CWE-1395",
74544
+ "name": "Dependency on Vulnerable Third-Party Component",
74545
+ "category": "Supply Chain"
74546
+ },
74547
+ {
74548
+ "id": "CWE-1426",
74549
+ "name": "Improper Validation of Generative AI Output",
74550
+ "category": "AI/ML"
74551
+ },
74552
+ {
74553
+ "id": "CWE-200",
74554
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
74555
+ "category": "Information Exposure"
74556
+ },
74557
+ {
74558
+ "id": "CWE-22",
74559
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
74560
+ "category": "Path/Resource"
74561
+ },
74562
+ {
74563
+ "id": "CWE-269",
74564
+ "name": "Improper Privilege Management",
74565
+ "category": "Authorization"
74566
+ },
74567
+ {
74568
+ "id": "CWE-287",
74569
+ "name": "Improper Authentication",
74570
+ "category": "Authentication"
74571
+ },
74572
+ {
74573
+ "id": "CWE-352",
74574
+ "name": "Cross-Site Request Forgery (CSRF)",
74575
+ "category": "Session"
74576
+ },
74577
+ {
74578
+ "id": "CWE-362",
74579
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
74580
+ "category": "Concurrency"
74581
+ },
74582
+ {
74583
+ "id": "CWE-416",
74584
+ "name": "Use After Free",
74585
+ "category": "Memory Safety"
74586
+ },
74587
+ {
74588
+ "id": "CWE-434",
74589
+ "name": "Unrestricted Upload of File with Dangerous Type",
74590
+ "category": "File Handling"
74591
+ },
74592
+ {
74593
+ "id": "CWE-502",
74594
+ "name": "Deserialization of Untrusted Data",
74595
+ "category": "Serialization"
74596
+ },
74597
+ {
74598
+ "id": "CWE-672",
74599
+ "name": "Operation on a Resource after Expiration or Release",
74600
+ "category": "Memory Safety"
74601
+ },
74602
+ {
74603
+ "id": "CWE-732",
74604
+ "name": "Incorrect Permission Assignment for Critical Resource",
74605
+ "category": "Authorization"
74606
+ },
74607
+ {
74608
+ "id": "CWE-77",
74609
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
74610
+ "category": "Injection"
74611
+ },
74612
+ {
74613
+ "id": "CWE-78",
74614
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
74615
+ "category": "Injection"
74616
+ },
74617
+ {
74618
+ "id": "CWE-787",
74619
+ "name": "Out-of-bounds Write",
74620
+ "category": "Memory Safety"
74621
+ },
74622
+ {
74623
+ "id": "CWE-79",
74624
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
74625
+ "category": "Injection"
74626
+ },
74627
+ {
74628
+ "id": "CWE-862",
74629
+ "name": "Missing Authorization",
74630
+ "category": "Authorization"
74631
+ },
74632
+ {
74633
+ "id": "CWE-863",
74634
+ "name": "Incorrect Authorization",
74635
+ "category": "Authorization"
74636
+ },
74637
+ {
74638
+ "id": "CWE-89",
74639
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
74640
+ "category": "Injection"
74641
+ },
74642
+ {
74643
+ "id": "CWE-918",
74644
+ "name": "Server-Side Request Forgery (SSRF)",
74645
+ "category": "Network"
74646
+ },
74647
+ {
74648
+ "id": "CWE-94",
74649
+ "name": "Improper Control of Generation of Code (Code Injection)",
74650
+ "category": "Injection"
74651
+ }
74652
+ ],
74653
+ "atlas": [
74654
+ {
74655
+ "id": "AML.T0010",
74656
+ "name": "ML Supply Chain Compromise",
74657
+ "tactic": "Initial Access"
74658
+ },
74659
+ {
74660
+ "id": "AML.T0016",
74661
+ "name": "Obtain Capabilities: Develop Capabilities",
74662
+ "tactic": "Resource Development"
74663
+ },
74664
+ {
74665
+ "id": "AML.T0017",
74666
+ "name": "Discover ML Model Ontology",
74667
+ "tactic": "Discovery"
74668
+ },
74669
+ {
74670
+ "id": "AML.T0018",
74671
+ "name": "Backdoor ML Model",
74672
+ "tactic": "Persistence"
74673
+ },
74674
+ {
74675
+ "id": "AML.T0020",
74676
+ "name": "Poison Training Data",
74677
+ "tactic": "ML Attack Staging"
74678
+ },
74679
+ {
74680
+ "id": "AML.T0043",
74681
+ "name": "Craft Adversarial Data",
74682
+ "tactic": "ML Attack Staging"
74683
+ },
74684
+ {
74685
+ "id": "AML.T0051",
74686
+ "name": "LLM Prompt Injection",
74687
+ "tactic": "Execution"
74688
+ },
74689
+ {
74690
+ "id": "AML.T0054",
74691
+ "name": "LLM Jailbreak",
74692
+ "tactic": "Defense Evasion"
74693
+ },
74694
+ {
74695
+ "id": "AML.T0096",
74696
+ "name": "AI API as Covert C2 Channel",
74697
+ "tactic": "Command and Control"
74698
+ }
74699
+ ],
74700
+ "d3fend": [
74701
+ {
74702
+ "id": "D3-ASLR",
74703
+ "name": "Address Space Layout Randomization",
74704
+ "tactic": "Harden"
74705
+ },
74706
+ {
74707
+ "id": "D3-CSPP",
74708
+ "name": "Client-server Payload Profiling",
74709
+ "tactic": "Detect"
74710
+ },
74711
+ {
74712
+ "id": "D3-EAL",
74713
+ "name": "Executable Allowlisting",
74714
+ "tactic": "Harden"
74715
+ },
74716
+ {
74717
+ "id": "D3-IOPR",
74718
+ "name": "Input/Output Profiling Resource",
74719
+ "tactic": "Detect"
74720
+ },
74721
+ {
74722
+ "id": "D3-NTA",
74723
+ "name": "Network Traffic Analysis",
74724
+ "tactic": "Detect"
74725
+ },
74726
+ {
74727
+ "id": "D3-PHRA",
74728
+ "name": "Process Hardware Resource Access",
74729
+ "tactic": "Isolate"
74730
+ },
74731
+ {
74732
+ "id": "D3-PSEP",
74733
+ "name": "Process Segment Execution Prevention",
74734
+ "tactic": "Harden"
74735
+ }
74736
+ ],
74737
+ "framework_gaps": [
74738
+ {
74739
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
74740
+ "framework": "ALL",
74741
+ "control_name": "AI Pipeline Integrity"
74742
+ },
74743
+ {
74744
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
74745
+ "framework": "ALL",
74746
+ "control_name": "Prompt Injection as Access Control Failure"
74747
+ },
74748
+ {
74749
+ "id": "CIS-Controls-v8-Control7",
74750
+ "framework": "CIS Controls v8",
74751
+ "control_name": "Continuous Vulnerability Management"
74752
+ },
74753
+ {
74754
+ "id": "CMMC-2.0-Level-2",
74755
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
74756
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
74757
+ },
74758
+ {
74759
+ "id": "FedRAMP-Rev5-Moderate",
74760
+ "framework": "FedRAMP Rev 5 Moderate",
74761
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
74762
+ },
74763
+ {
74764
+ "id": "ISO-27001-2022-A.8.28",
74765
+ "framework": "ISO/IEC 27001:2022",
74766
+ "control_name": "Secure coding"
74767
+ },
74768
+ {
74769
+ "id": "ISO-27001-2022-A.8.8",
74770
+ "framework": "ISO/IEC 27001:2022",
74771
+ "control_name": "Management of technical vulnerabilities"
74772
+ },
74773
+ {
74774
+ "id": "ISO-IEC-23894-2023-clause-7",
74775
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
74776
+ "control_name": "AI risk management process"
74777
+ },
74778
+ {
74779
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
74780
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
74781
+ "control_name": "AI risk assessment"
74782
+ },
74783
+ {
74784
+ "id": "NIS2-Art21-patch-management",
74785
+ "framework": "EU NIS2 Directive",
74786
+ "control_name": "Vulnerability handling and disclosure"
74787
+ },
74788
+ {
74789
+ "id": "NIST-800-218-SSDF",
74790
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
74791
+ "control_name": "Secure Software Development Framework"
74792
+ },
74793
+ {
74794
+ "id": "NIST-800-53-AC-2",
74795
+ "framework": "NIST SP 800-53 Rev 5",
74796
+ "control_name": "Account Management"
74797
+ },
74798
+ {
74799
+ "id": "NIST-800-53-CM-7",
74800
+ "framework": "NIST SP 800-53 Rev 5",
74801
+ "control_name": "Least Functionality"
74802
+ },
74803
+ {
74804
+ "id": "NIST-800-53-SC-8",
74805
+ "framework": "NIST SP 800-53 Rev 5",
74806
+ "control_name": "Transmission Confidentiality and Integrity"
74807
+ },
74808
+ {
74809
+ "id": "NIST-800-53-SI-12",
74810
+ "framework": "NIST SP 800-53 Rev 5",
74811
+ "control_name": "Information Management and Retention"
74812
+ },
74813
+ {
74814
+ "id": "NIST-800-53-SI-2",
74815
+ "framework": "NIST SP 800-53 Rev 5",
74816
+ "control_name": "Flaw Remediation"
74817
+ },
74818
+ {
74819
+ "id": "NIST-800-53-SI-3",
74820
+ "framework": "NIST SP 800-53 Rev 5",
74821
+ "control_name": "Malicious Code Protection"
74822
+ },
74823
+ {
74824
+ "id": "NIST-AI-RMF-MEASURE-2.5",
74825
+ "framework": "NIST AI RMF 1.0",
74826
+ "control_name": "AI system to human interaction evaluation"
74827
+ },
74828
+ {
74829
+ "id": "OWASP-ASVS-v5.0-V14",
74830
+ "framework": "OWASP ASVS v5.0",
74831
+ "control_name": "Configuration verification"
74832
+ },
74833
+ {
74834
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
74835
+ "framework": "OWASP Top 10 for LLM Applications 2025",
74836
+ "control_name": "Prompt Injection"
74837
+ },
74838
+ {
74839
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
74840
+ "framework": "OWASP Top 10 for LLM Applications 2025",
74841
+ "control_name": "Sensitive Information Disclosure"
74842
+ },
74843
+ {
74844
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
74845
+ "framework": "OWASP Top 10 for LLM Applications 2025",
74846
+ "control_name": "Vector and Embedding Weaknesses"
74847
+ },
74848
+ {
74849
+ "id": "PCI-DSS-4.0-6.3.3",
74850
+ "framework": "PCI DSS 4.0",
74851
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
74852
+ },
74853
+ {
74854
+ "id": "SLSA-v1.0-Build-L3",
74855
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
74856
+ "control_name": "Hardened build platform with non-falsifiable provenance"
74857
+ },
74858
+ {
74859
+ "id": "SOC2-CC6-logical-access",
74860
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
74861
+ "control_name": "Logical and Physical Access Controls"
74862
+ }
74863
+ ],
74864
+ "attack_refs": [
74865
+ "T1059",
74866
+ "T1068",
74867
+ "T1078",
74868
+ "T1190",
74869
+ "T1505",
74870
+ "T1548.001",
74871
+ "T1565",
74872
+ "T1566",
74873
+ "T1567",
74874
+ "T1610",
74875
+ "T1611"
74876
+ ],
74877
+ "rfc_refs": [
74878
+ "RFC-4301",
74879
+ "RFC-4303",
74880
+ "RFC-6749",
74881
+ "RFC-7296",
74882
+ "RFC-7519",
74883
+ "RFC-8032",
74884
+ "RFC-8446",
74885
+ "RFC-8725",
74886
+ "RFC-9114",
74887
+ "RFC-9421",
74888
+ "RFC-9700"
74889
+ ]
74890
+ }
74891
+ },
74892
+ "CVE-2026-5760": {
74893
+ "name": "SGLang /v1/rerank Malicious-Model Jinja2 Template-Injection RCE",
74894
+ "rwep": 29,
74895
+ "cvss": 9.8,
74896
+ "cisa_kev": false,
74897
+ "epss_score": 0.00353,
74898
+ "referencing_skills": [
74899
+ "ai-attack-surface",
74900
+ "compliance-theater",
74901
+ "rag-pipeline-security",
74902
+ "ai-c2-detection",
74903
+ "dlp-gap-analysis",
74904
+ "threat-modeling-methodology",
74905
+ "webapp-security",
74906
+ "api-security",
74907
+ "container-runtime-security"
74908
+ ],
74909
+ "chain": {
74910
+ "cwes": [
74911
+ {
74912
+ "id": "CWE-1039",
74913
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
74914
+ "category": "AI/ML"
74915
+ },
74916
+ {
74917
+ "id": "CWE-1188",
74918
+ "name": "Initialization of a Resource with an Insecure Default",
74919
+ "category": "Configuration"
74920
+ },
74921
+ {
74922
+ "id": "CWE-1395",
74923
+ "name": "Dependency on Vulnerable Third-Party Component",
74924
+ "category": "Supply Chain"
74925
+ },
74926
+ {
74927
+ "id": "CWE-1426",
74928
+ "name": "Improper Validation of Generative AI Output",
74929
+ "category": "AI/ML"
74930
+ },
74931
+ {
74932
+ "id": "CWE-200",
74933
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
74934
+ "category": "Information Exposure"
74935
+ },
74936
+ {
74937
+ "id": "CWE-22",
74938
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
74939
+ "category": "Path/Resource"
74940
+ },
74941
+ {
74942
+ "id": "CWE-269",
74943
+ "name": "Improper Privilege Management",
74944
+ "category": "Authorization"
74945
+ },
74946
+ {
74947
+ "id": "CWE-287",
74948
+ "name": "Improper Authentication",
74949
+ "category": "Authentication"
74950
+ },
74951
+ {
74952
+ "id": "CWE-352",
74953
+ "name": "Cross-Site Request Forgery (CSRF)",
74954
+ "category": "Session"
74955
+ },
74956
+ {
74957
+ "id": "CWE-434",
74958
+ "name": "Unrestricted Upload of File with Dangerous Type",
74959
+ "category": "File Handling"
74960
+ },
74961
+ {
74962
+ "id": "CWE-502",
74963
+ "name": "Deserialization of Untrusted Data",
74964
+ "category": "Serialization"
74965
+ },
74966
+ {
74967
+ "id": "CWE-732",
74968
+ "name": "Incorrect Permission Assignment for Critical Resource",
74969
+ "category": "Authorization"
74970
+ },
74971
+ {
74972
+ "id": "CWE-77",
74973
+ "name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
74974
+ "category": "Injection"
74975
+ },
74976
+ {
74977
+ "id": "CWE-78",
74978
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
74979
+ "category": "Injection"
74980
+ },
74981
+ {
74982
+ "id": "CWE-787",
74983
+ "name": "Out-of-bounds Write",
74984
+ "category": "Memory Safety"
74985
+ },
74986
+ {
74987
+ "id": "CWE-79",
74988
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
74989
+ "category": "Injection"
74990
+ },
74991
+ {
74992
+ "id": "CWE-862",
74993
+ "name": "Missing Authorization",
74994
+ "category": "Authorization"
74995
+ },
74996
+ {
74997
+ "id": "CWE-863",
74998
+ "name": "Incorrect Authorization",
74999
+ "category": "Authorization"
75000
+ },
75001
+ {
75002
+ "id": "CWE-89",
75003
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
75004
+ "category": "Injection"
75005
+ },
75006
+ {
75007
+ "id": "CWE-918",
75008
+ "name": "Server-Side Request Forgery (SSRF)",
75009
+ "category": "Network"
75010
+ },
75011
+ {
75012
+ "id": "CWE-94",
75013
+ "name": "Improper Control of Generation of Code (Code Injection)",
75014
+ "category": "Injection"
75015
+ }
75016
+ ],
75017
+ "atlas": [
75018
+ {
75019
+ "id": "AML.T0010",
75020
+ "name": "ML Supply Chain Compromise",
75021
+ "tactic": "Initial Access"
75022
+ },
75023
+ {
75024
+ "id": "AML.T0016",
75025
+ "name": "Obtain Capabilities: Develop Capabilities",
75026
+ "tactic": "Resource Development"
75027
+ },
75028
+ {
75029
+ "id": "AML.T0017",
75030
+ "name": "Discover ML Model Ontology",
75031
+ "tactic": "Discovery"
75032
+ },
75033
+ {
75034
+ "id": "AML.T0018",
75035
+ "name": "Backdoor ML Model",
75036
+ "tactic": "Persistence"
75037
+ },
75038
+ {
75039
+ "id": "AML.T0020",
75040
+ "name": "Poison Training Data",
75041
+ "tactic": "ML Attack Staging"
75042
+ },
75043
+ {
75044
+ "id": "AML.T0043",
75045
+ "name": "Craft Adversarial Data",
75046
+ "tactic": "ML Attack Staging"
75047
+ },
75048
+ {
75049
+ "id": "AML.T0051",
75050
+ "name": "LLM Prompt Injection",
75051
+ "tactic": "Execution"
75052
+ },
75053
+ {
75054
+ "id": "AML.T0054",
75055
+ "name": "LLM Jailbreak",
75056
+ "tactic": "Defense Evasion"
75057
+ },
75058
+ {
75059
+ "id": "AML.T0096",
75060
+ "name": "AI API as Covert C2 Channel",
75061
+ "tactic": "Command and Control"
75062
+ }
75063
+ ],
75064
+ "d3fend": [
75065
+ {
75066
+ "id": "D3-CA",
75067
+ "name": "Certificate Analysis",
75068
+ "tactic": "Detect"
75069
+ },
75070
+ {
75071
+ "id": "D3-CSPP",
75072
+ "name": "Client-server Payload Profiling",
75073
+ "tactic": "Detect"
75074
+ },
75075
+ {
75076
+ "id": "D3-DA",
75077
+ "name": "Domain Analysis",
75078
+ "tactic": "Detect"
75079
+ },
75080
+ {
75081
+ "id": "D3-EAL",
75082
+ "name": "Executable Allowlisting",
75083
+ "tactic": "Harden"
75084
+ },
75085
+ {
75086
+ "id": "D3-IOPR",
75087
+ "name": "Input/Output Profiling Resource",
75088
+ "tactic": "Detect"
75089
+ },
75090
+ {
75091
+ "id": "D3-NI",
75092
+ "name": "Network Isolation",
75093
+ "tactic": "Isolate"
75094
+ },
75095
+ {
75096
+ "id": "D3-NTA",
75097
+ "name": "Network Traffic Analysis",
75098
+ "tactic": "Detect"
75099
+ },
75100
+ {
75101
+ "id": "D3-NTPM",
75102
+ "name": "Network Traffic Policy Mapping",
75103
+ "tactic": "Model"
75104
+ }
75105
+ ],
75106
+ "framework_gaps": [
75107
+ {
75108
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
75109
+ "framework": "ALL",
75110
+ "control_name": "AI Pipeline Integrity"
75111
+ },
75112
+ {
75113
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
75114
+ "framework": "ALL",
75115
+ "control_name": "Prompt Injection as Access Control Failure"
75116
+ },
75117
+ {
75118
+ "id": "CMMC-2.0-Level-2",
75119
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
75120
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
75121
+ },
75122
+ {
75123
+ "id": "FedRAMP-Rev5-Moderate",
75124
+ "framework": "FedRAMP Rev 5 Moderate",
75125
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
75126
+ },
75127
+ {
75128
+ "id": "HIPAA-Security-Rule-164.312(a)(1)",
75129
+ "framework": "HIPAA Security Rule (45 CFR § 164.312)",
75130
+ "control_name": "Access control standard (technical safeguards)"
75131
+ },
75132
+ {
75133
+ "id": "ISO-27001-2022-A.8.16",
75134
+ "framework": "ISO/IEC 27001:2022",
75135
+ "control_name": "Monitoring activities"
75136
+ },
75137
+ {
75138
+ "id": "ISO-27001-2022-A.8.28",
75139
+ "framework": "ISO/IEC 27001:2022",
75140
+ "control_name": "Secure coding"
75141
+ },
75142
+ {
75143
+ "id": "ISO-IEC-23894-2023-clause-7",
75144
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
75145
+ "control_name": "AI risk management process"
75146
+ },
75147
+ {
75148
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
75149
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
75150
+ "control_name": "AI risk assessment"
75151
+ },
75152
+ {
75153
+ "id": "NIST-800-218-SSDF",
75154
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
75155
+ "control_name": "Secure Software Development Framework"
75156
+ },
75157
+ {
75158
+ "id": "NIST-800-53-AC-2",
75159
+ "framework": "NIST SP 800-53 Rev 5",
75160
+ "control_name": "Account Management"
75161
+ },
75162
+ {
75163
+ "id": "NIST-800-53-CM-7",
75164
+ "framework": "NIST SP 800-53 Rev 5",
75165
+ "control_name": "Least Functionality"
75166
+ },
75167
+ {
75168
+ "id": "NIST-800-53-SC-28",
75169
+ "framework": "NIST SP 800-53 Rev 5",
75170
+ "control_name": "Protection of Information at Rest"
75171
+ },
75172
+ {
75173
+ "id": "NIST-800-53-SC-7",
75174
+ "framework": "NIST SP 800-53 Rev 5",
75175
+ "control_name": "Boundary Protection"
75176
+ },
75177
+ {
75178
+ "id": "NIST-800-53-SI-12",
75179
+ "framework": "NIST SP 800-53 Rev 5",
75180
+ "control_name": "Information Management and Retention"
75181
+ },
75182
+ {
75183
+ "id": "NIST-800-53-SI-3",
75184
+ "framework": "NIST SP 800-53 Rev 5",
75185
+ "control_name": "Malicious Code Protection"
75186
+ },
75187
+ {
75188
+ "id": "NIST-AI-RMF-MEASURE-2.5",
75189
+ "framework": "NIST AI RMF 1.0",
75190
+ "control_name": "AI system to human interaction evaluation"
75191
+ },
75192
+ {
75193
+ "id": "OWASP-ASVS-v5.0-V14",
75194
+ "framework": "OWASP ASVS v5.0",
75195
+ "control_name": "Configuration verification"
75196
+ },
75197
+ {
75198
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
75199
+ "framework": "OWASP Top 10 for LLM Applications 2025",
75200
+ "control_name": "Prompt Injection"
75201
+ },
75202
+ {
75203
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
75204
+ "framework": "OWASP Top 10 for LLM Applications 2025",
75205
+ "control_name": "Sensitive Information Disclosure"
75206
+ },
75207
+ {
75208
+ "id": "OWASP-LLM-Top-10-2025-LLM08",
75209
+ "framework": "OWASP Top 10 for LLM Applications 2025",
75210
+ "control_name": "Vector and Embedding Weaknesses"
75211
+ },
75212
+ {
75213
+ "id": "SLSA-v1.0-Build-L3",
75214
+ "framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
75215
+ "control_name": "Hardened build platform with non-falsifiable provenance"
75216
+ },
75217
+ {
75218
+ "id": "SOC2-CC6-logical-access",
75219
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
75220
+ "control_name": "Logical and Physical Access Controls"
75221
+ },
75222
+ {
75223
+ "id": "SOC2-CC7-anomaly-detection",
75224
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
75225
+ "control_name": "System Operations — Threat and Vulnerability Management"
75226
+ }
75227
+ ],
75228
+ "attack_refs": [
75229
+ "T1041",
75230
+ "T1059",
75231
+ "T1068",
75232
+ "T1071",
75233
+ "T1078",
75234
+ "T1102",
75235
+ "T1190",
75236
+ "T1213",
75237
+ "T1505",
75238
+ "T1530",
75239
+ "T1565",
75240
+ "T1566",
75241
+ "T1567",
75242
+ "T1568",
75243
+ "T1610",
75244
+ "T1611"
75245
+ ],
75246
+ "rfc_refs": [
75247
+ "RFC-6749",
75248
+ "RFC-7519",
75249
+ "RFC-8032",
75250
+ "RFC-8446",
75251
+ "RFC-8725",
75252
+ "RFC-9000",
75253
+ "RFC-9114",
75254
+ "RFC-9180",
75255
+ "RFC-9421",
75256
+ "RFC-9458",
75257
+ "RFC-9700"
75258
+ ]
75259
+ }
75260
+ },
74509
75261
  "CWE-20": {
74510
75262
  "name": "Improper Input Validation",
74511
75263
  "category": "Validation",
@@ -74811,6 +75563,7 @@
74811
75563
  "CVE-2024-6587",
74812
75564
  "CVE-2024-9526",
74813
75565
  "CVE-2025-0133",
75566
+ "CVE-2025-10164",
74814
75567
  "CVE-2025-10585",
74815
75568
  "CVE-2025-1094",
74816
75569
  "CVE-2025-14174",
@@ -74873,6 +75626,7 @@
74873
75626
  "CVE-2026-45829",
74874
75627
  "CVE-2026-46300",
74875
75628
  "CVE-2026-46333",
75629
+ "CVE-2026-5760",
74876
75630
  "CVE-2026-9082",
74877
75631
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
74878
75632
  "MAL-2026-3083",
@@ -75067,6 +75821,7 @@
75067
75821
  "CVE-2024-5565",
75068
75822
  "CVE-2024-9526",
75069
75823
  "CVE-2025-0133",
75824
+ "CVE-2025-10164",
75070
75825
  "CVE-2025-1094",
75071
75826
  "CVE-2025-27520",
75072
75827
  "CVE-2025-3248",
@@ -75084,6 +75839,7 @@
75084
75839
  "CVE-2026-39884",
75085
75840
  "CVE-2026-42208",
75086
75841
  "CVE-2026-45321",
75842
+ "CVE-2026-5760",
75087
75843
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
75088
75844
  "MAL-2026-3083",
75089
75845
  "MAL-2026-NODE-IPC-STEALER"
@@ -75253,6 +76009,7 @@
75253
76009
  "CVE-2024-6587",
75254
76010
  "CVE-2024-9526",
75255
76011
  "CVE-2025-0133",
76012
+ "CVE-2025-10164",
75256
76013
  "CVE-2025-10585",
75257
76014
  "CVE-2025-1094",
75258
76015
  "CVE-2025-14174",
@@ -75312,6 +76069,7 @@
75312
76069
  "CVE-2026-45829",
75313
76070
  "CVE-2026-46300",
75314
76071
  "CVE-2026-46333",
76072
+ "CVE-2026-5760",
75315
76073
  "CVE-2026-9082",
75316
76074
  "MAL-2026-3083",
75317
76075
  "MAL-2026-NODE-IPC-STEALER"
@@ -75470,6 +76228,7 @@
75470
76228
  "CVE-2024-6587",
75471
76229
  "CVE-2024-9526",
75472
76230
  "CVE-2025-0133",
76231
+ "CVE-2025-10164",
75473
76232
  "CVE-2025-10585",
75474
76233
  "CVE-2025-1094",
75475
76234
  "CVE-2025-14174",
@@ -75529,6 +76288,7 @@
75529
76288
  "CVE-2026-45829",
75530
76289
  "CVE-2026-46300",
75531
76290
  "CVE-2026-46333",
76291
+ "CVE-2026-5760",
75532
76292
  "CVE-2026-9082",
75533
76293
  "MAL-2026-3083",
75534
76294
  "MAL-2026-NODE-IPC-STEALER"
@@ -75701,6 +76461,7 @@
75701
76461
  "CVE-2024-6587",
75702
76462
  "CVE-2024-9526",
75703
76463
  "CVE-2025-0133",
76464
+ "CVE-2025-10164",
75704
76465
  "CVE-2025-10585",
75705
76466
  "CVE-2025-1094",
75706
76467
  "CVE-2025-14174",
@@ -75760,6 +76521,7 @@
75760
76521
  "CVE-2026-45829",
75761
76522
  "CVE-2026-46300",
75762
76523
  "CVE-2026-46333",
76524
+ "CVE-2026-5760",
75763
76525
  "CVE-2026-9082",
75764
76526
  "MAL-2026-3083",
75765
76527
  "MAL-2026-NODE-IPC-STEALER"
@@ -76044,6 +76806,7 @@
76044
76806
  "CVE-2024-6587",
76045
76807
  "CVE-2024-9526",
76046
76808
  "CVE-2025-0133",
76809
+ "CVE-2025-10164",
76047
76810
  "CVE-2025-1094",
76048
76811
  "CVE-2025-11837",
76049
76812
  "CVE-2025-1550",
@@ -76107,6 +76870,7 @@
76107
76870
  "CVE-2026-42208",
76108
76871
  "CVE-2026-45321",
76109
76872
  "CVE-2026-45829",
76873
+ "CVE-2026-5760",
76110
76874
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
76111
76875
  "MAL-2026-3083",
76112
76876
  "MAL-2026-NODE-IPC-STEALER"
@@ -76350,6 +77114,7 @@
76350
77114
  "CVE-2024-8068",
76351
77115
  "CVE-2024-8069",
76352
77116
  "CVE-2025-10035",
77117
+ "CVE-2025-10164",
76353
77118
  "CVE-2025-10585",
76354
77119
  "CVE-2025-1094",
76355
77120
  "CVE-2025-11371",
@@ -76827,6 +77592,7 @@
76827
77592
  "CVE-2024-5565",
76828
77593
  "CVE-2024-9526",
76829
77594
  "CVE-2025-0133",
77595
+ "CVE-2025-10164",
76830
77596
  "CVE-2025-1094",
76831
77597
  "CVE-2025-14847",
76832
77598
  "CVE-2025-22226",
@@ -76858,6 +77624,7 @@
76858
77624
  "CVE-2026-42897",
76859
77625
  "CVE-2026-43284",
76860
77626
  "CVE-2026-45321",
77627
+ "CVE-2026-5760",
76861
77628
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
76862
77629
  "MAL-2026-3083",
76863
77630
  "MAL-2026-NODE-IPC-STEALER"
@@ -77234,6 +78001,7 @@
77234
78001
  "CVE-2024-6587",
77235
78002
  "CVE-2024-9526",
77236
78003
  "CVE-2025-0133",
78004
+ "CVE-2025-10164",
77237
78005
  "CVE-2025-10585",
77238
78006
  "CVE-2025-1094",
77239
78007
  "CVE-2025-14174",
@@ -77296,6 +78064,7 @@
77296
78064
  "CVE-2026-45829",
77297
78065
  "CVE-2026-46300",
77298
78066
  "CVE-2026-46333",
78067
+ "CVE-2026-5760",
77299
78068
  "CVE-2026-9082",
77300
78069
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
77301
78070
  "MAL-2026-3083",
@@ -77890,6 +78659,7 @@
77890
78659
  "CVE-2024-6587",
77891
78660
  "CVE-2024-9526",
77892
78661
  "CVE-2025-0133",
78662
+ "CVE-2025-10164",
77893
78663
  "CVE-2025-10585",
77894
78664
  "CVE-2025-1094",
77895
78665
  "CVE-2025-14174",
@@ -77952,6 +78722,7 @@
77952
78722
  "CVE-2026-45829",
77953
78723
  "CVE-2026-46300",
77954
78724
  "CVE-2026-46333",
78725
+ "CVE-2026-5760",
77955
78726
  "CVE-2026-9082",
77956
78727
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
77957
78728
  "MAL-2026-3083",
@@ -78902,6 +79673,7 @@
78902
79673
  "CVE-2024-6587",
78903
79674
  "CVE-2024-9526",
78904
79675
  "CVE-2025-0133",
79676
+ "CVE-2025-10164",
78905
79677
  "CVE-2025-10585",
78906
79678
  "CVE-2025-1094",
78907
79679
  "CVE-2025-14174",
@@ -78964,6 +79736,7 @@
78964
79736
  "CVE-2026-45829",
78965
79737
  "CVE-2026-46300",
78966
79738
  "CVE-2026-46333",
79739
+ "CVE-2026-5760",
78967
79740
  "CVE-2026-9082",
78968
79741
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
78969
79742
  "MAL-2026-3083",
@@ -79208,6 +79981,7 @@
79208
79981
  "CVE-2024-8068",
79209
79982
  "CVE-2024-8069",
79210
79983
  "CVE-2025-10035",
79984
+ "CVE-2025-10164",
79211
79985
  "CVE-2025-10585",
79212
79986
  "CVE-2025-1094",
79213
79987
  "CVE-2025-11371",
@@ -79670,6 +80444,7 @@
79670
80444
  "CVE-2024-8068",
79671
80445
  "CVE-2024-8069",
79672
80446
  "CVE-2025-10035",
80447
+ "CVE-2025-10164",
79673
80448
  "CVE-2025-10585",
79674
80449
  "CVE-2025-1094",
79675
80450
  "CVE-2025-11371",
@@ -80155,6 +80930,7 @@
80155
80930
  "CVE-2024-6587",
80156
80931
  "CVE-2024-9526",
80157
80932
  "CVE-2025-0133",
80933
+ "CVE-2025-10164",
80158
80934
  "CVE-2025-10585",
80159
80935
  "CVE-2025-1094",
80160
80936
  "CVE-2025-14174",
@@ -80217,6 +80993,7 @@
80217
80993
  "CVE-2026-45829",
80218
80994
  "CVE-2026-46300",
80219
80995
  "CVE-2026-46333",
80996
+ "CVE-2026-5760",
80220
80997
  "CVE-2026-9082",
80221
80998
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
80222
80999
  "MAL-2026-3083",
@@ -80626,6 +81403,7 @@
80626
81403
  "CVE-2024-5565",
80627
81404
  "CVE-2024-9526",
80628
81405
  "CVE-2025-0133",
81406
+ "CVE-2025-10164",
80629
81407
  "CVE-2025-1094",
80630
81408
  "CVE-2025-27520",
80631
81409
  "CVE-2025-3248",
@@ -80641,6 +81419,7 @@
80641
81419
  "CVE-2026-39884",
80642
81420
  "CVE-2026-42208",
80643
81421
  "CVE-2026-45321",
81422
+ "CVE-2026-5760",
80644
81423
  "MAL-2026-3083",
80645
81424
  "MAL-2026-NODE-IPC-STEALER",
80646
81425
  "MAL-2026-SHAI-HULUD-OSS"
@@ -81043,6 +81822,7 @@
81043
81822
  "CVE-2024-8068",
81044
81823
  "CVE-2024-8069",
81045
81824
  "CVE-2025-10035",
81825
+ "CVE-2025-10164",
81046
81826
  "CVE-2025-10585",
81047
81827
  "CVE-2025-1094",
81048
81828
  "CVE-2025-11371",
@@ -81592,6 +82372,7 @@
81592
82372
  "CVE-2024-6587",
81593
82373
  "CVE-2024-9526",
81594
82374
  "CVE-2025-0133",
82375
+ "CVE-2025-10164",
81595
82376
  "CVE-2025-10585",
81596
82377
  "CVE-2025-1094",
81597
82378
  "CVE-2025-14174",
@@ -81654,6 +82435,7 @@
81654
82435
  "CVE-2026-45829",
81655
82436
  "CVE-2026-46300",
81656
82437
  "CVE-2026-46333",
82438
+ "CVE-2026-5760",
81657
82439
  "CVE-2026-9082",
81658
82440
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
81659
82441
  "MAL-2026-3083",
@@ -81987,6 +82769,7 @@
81987
82769
  "CVE-2024-9526",
81988
82770
  "CVE-2025-0133",
81989
82771
  "CVE-2025-10035",
82772
+ "CVE-2025-10164",
81990
82773
  "CVE-2025-10585",
81991
82774
  "CVE-2025-1094",
81992
82775
  "CVE-2025-11371",
@@ -82229,6 +83012,7 @@
82229
83012
  "CVE-2026-46300",
82230
83013
  "CVE-2026-46333",
82231
83014
  "CVE-2026-5281",
83015
+ "CVE-2026-5760",
82232
83016
  "CVE-2026-6973",
82233
83017
  "CVE-2026-9082",
82234
83018
  "MAL-2026-3083",
@@ -82923,6 +83707,7 @@
82923
83707
  "CVE-2024-5565",
82924
83708
  "CVE-2024-9526",
82925
83709
  "CVE-2025-0133",
83710
+ "CVE-2025-10164",
82926
83711
  "CVE-2025-1094",
82927
83712
  "CVE-2025-27520",
82928
83713
  "CVE-2025-3248",
@@ -82940,6 +83725,7 @@
82940
83725
  "CVE-2026-39884",
82941
83726
  "CVE-2026-42208",
82942
83727
  "CVE-2026-45321",
83728
+ "CVE-2026-5760",
82943
83729
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
82944
83730
  "MAL-2026-3083",
82945
83731
  "MAL-2026-NODE-IPC-STEALER"
@@ -83224,6 +84010,7 @@
83224
84010
  "CVE-2024-5565",
83225
84011
  "CVE-2024-9526",
83226
84012
  "CVE-2025-0133",
84013
+ "CVE-2025-10164",
83227
84014
  "CVE-2025-1094",
83228
84015
  "CVE-2025-27520",
83229
84016
  "CVE-2025-3248",
@@ -83240,6 +84027,7 @@
83240
84027
  "CVE-2026-39884",
83241
84028
  "CVE-2026-42208",
83242
84029
  "CVE-2026-45321",
84030
+ "CVE-2026-5760",
83243
84031
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
83244
84032
  "MAL-2026-3083",
83245
84033
  "MAL-2026-NODE-IPC-STEALER"
@@ -83579,6 +84367,7 @@
83579
84367
  "CVE-2024-6587",
83580
84368
  "CVE-2024-9526",
83581
84369
  "CVE-2025-0133",
84370
+ "CVE-2025-10164",
83582
84371
  "CVE-2025-10585",
83583
84372
  "CVE-2025-1094",
83584
84373
  "CVE-2025-14174",
@@ -83641,6 +84430,7 @@
83641
84430
  "CVE-2026-45829",
83642
84431
  "CVE-2026-46300",
83643
84432
  "CVE-2026-46333",
84433
+ "CVE-2026-5760",
83644
84434
  "CVE-2026-9082",
83645
84435
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
83646
84436
  "MAL-2026-3083",
@@ -83945,6 +84735,7 @@
83945
84735
  "CVE-2024-6587",
83946
84736
  "CVE-2024-9526",
83947
84737
  "CVE-2025-0133",
84738
+ "CVE-2025-10164",
83948
84739
  "CVE-2025-1094",
83949
84740
  "CVE-2025-11837",
83950
84741
  "CVE-2025-1550",
@@ -84004,7 +84795,8 @@
84004
84795
  "CVE-2026-41947",
84005
84796
  "CVE-2026-41950",
84006
84797
  "CVE-2026-42208",
84007
- "CVE-2026-45829"
84798
+ "CVE-2026-45829",
84799
+ "CVE-2026-5760"
84008
84800
  ]
84009
84801
  },
84010
84802
  "CWE-1188": {
@@ -84171,6 +84963,7 @@
84171
84963
  "CVE-2024-5565",
84172
84964
  "CVE-2024-9526",
84173
84965
  "CVE-2025-0133",
84966
+ "CVE-2025-10164",
84174
84967
  "CVE-2025-1094",
84175
84968
  "CVE-2025-27520",
84176
84969
  "CVE-2025-3248",
@@ -84188,6 +84981,7 @@
84188
84981
  "CVE-2026-39884",
84189
84982
  "CVE-2026-42208",
84190
84983
  "CVE-2026-45321",
84984
+ "CVE-2026-5760",
84191
84985
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
84192
84986
  "MAL-2026-3083",
84193
84987
  "MAL-2026-NODE-IPC-STEALER",
@@ -84925,6 +85719,7 @@
84925
85719
  "CVE-2024-6587",
84926
85720
  "CVE-2024-9526",
84927
85721
  "CVE-2025-0133",
85722
+ "CVE-2025-10164",
84928
85723
  "CVE-2025-10585",
84929
85724
  "CVE-2025-1094",
84930
85725
  "CVE-2025-14174",
@@ -84986,6 +85781,7 @@
84986
85781
  "CVE-2026-45829",
84987
85782
  "CVE-2026-46300",
84988
85783
  "CVE-2026-46333",
85784
+ "CVE-2026-5760",
84989
85785
  "CVE-2026-9082",
84990
85786
  "MAL-2026-3083",
84991
85787
  "MAL-2026-NODE-IPC-STEALER",
@@ -85279,6 +86075,7 @@
85279
86075
  "CVE-2024-6587",
85280
86076
  "CVE-2024-9526",
85281
86077
  "CVE-2025-0133",
86078
+ "CVE-2025-10164",
85282
86079
  "CVE-2025-1094",
85283
86080
  "CVE-2025-11837",
85284
86081
  "CVE-2025-14847",
@@ -85346,6 +86143,7 @@
85346
86143
  "CVE-2026-43284",
85347
86144
  "CVE-2026-45321",
85348
86145
  "CVE-2026-45829",
86146
+ "CVE-2026-5760",
85349
86147
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
85350
86148
  "MAL-2026-3083",
85351
86149
  "MAL-2026-NODE-IPC-STEALER",