@blamejs/exceptd-skills 0.13.67 → 0.13.69

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (13) hide show
  1. package/CHANGELOG.md +8 -0
  2. package/data/_indexes/_meta.json +8 -8
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +548 -0
  6. package/data/attack-techniques.json +9 -2
  7. package/data/cve-catalog.json +223 -0
  8. package/data/cwe-catalog.json +8 -4
  9. package/data/framework-control-gaps.json +12 -0
  10. package/data/zeroday-lessons.json +90 -0
  11. package/manifest.json +44 -44
  12. package/package.json +2 -2
  13. package/sbom.cdx.json +23 -23
package/data/_indexes/chains.json CHANGED
@@ -16249,6 +16249,514 @@
16249
16249
  ]
16250
16250
  }
16251
16251
  },
16252
+ "CVE-2026-41091": {
16253
+ "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
16254
+ "rwep": 45,
16255
+ "cvss": 7.8,
16256
+ "cisa_kev": true,
16257
+ "epss_score": null,
16258
+ "referencing_skills": [
16259
+ "kernel-lpe-triage",
16260
+ "attack-surface-pentest",
16261
+ "ot-ics-security",
16262
+ "coordinated-vuln-disclosure",
16263
+ "sector-energy"
16264
+ ],
16265
+ "chain": {
16266
+ "cwes": [
16267
+ {
16268
+ "id": "CWE-1037",
16269
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
16270
+ "category": "Hardware / Side Channel"
16271
+ },
16272
+ {
16273
+ "id": "CWE-125",
16274
+ "name": "Out-of-bounds Read",
16275
+ "category": "Memory Safety"
16276
+ },
16277
+ {
16278
+ "id": "CWE-1357",
16279
+ "name": "Reliance on Insufficiently Trustworthy Component",
16280
+ "category": "Supply Chain"
16281
+ },
16282
+ {
16283
+ "id": "CWE-1395",
16284
+ "name": "Dependency on Vulnerable Third-Party Component",
16285
+ "category": "Supply Chain"
16286
+ },
16287
+ {
16288
+ "id": "CWE-22",
16289
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
16290
+ "category": "Path/Resource"
16291
+ },
16292
+ {
16293
+ "id": "CWE-269",
16294
+ "name": "Improper Privilege Management",
16295
+ "category": "Authorization"
16296
+ },
16297
+ {
16298
+ "id": "CWE-287",
16299
+ "name": "Improper Authentication",
16300
+ "category": "Authentication"
16301
+ },
16302
+ {
16303
+ "id": "CWE-306",
16304
+ "name": "Missing Authentication for Critical Function",
16305
+ "category": "Authentication"
16306
+ },
16307
+ {
16308
+ "id": "CWE-352",
16309
+ "name": "Cross-Site Request Forgery (CSRF)",
16310
+ "category": "Session"
16311
+ },
16312
+ {
16313
+ "id": "CWE-362",
16314
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
16315
+ "category": "Concurrency"
16316
+ },
16317
+ {
16318
+ "id": "CWE-416",
16319
+ "name": "Use After Free",
16320
+ "category": "Memory Safety"
16321
+ },
16322
+ {
16323
+ "id": "CWE-434",
16324
+ "name": "Unrestricted Upload of File with Dangerous Type",
16325
+ "category": "File Handling"
16326
+ },
16327
+ {
16328
+ "id": "CWE-672",
16329
+ "name": "Operation on a Resource after Expiration or Release",
16330
+ "category": "Memory Safety"
16331
+ },
16332
+ {
16333
+ "id": "CWE-732",
16334
+ "name": "Incorrect Permission Assignment for Critical Resource",
16335
+ "category": "Authorization"
16336
+ },
16337
+ {
16338
+ "id": "CWE-78",
16339
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
16340
+ "category": "Injection"
16341
+ },
16342
+ {
16343
+ "id": "CWE-787",
16344
+ "name": "Out-of-bounds Write",
16345
+ "category": "Memory Safety"
16346
+ },
16347
+ {
16348
+ "id": "CWE-79",
16349
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
16350
+ "category": "Injection"
16351
+ },
16352
+ {
16353
+ "id": "CWE-798",
16354
+ "name": "Use of Hard-coded Credentials",
16355
+ "category": "Credentials"
16356
+ },
16357
+ {
16358
+ "id": "CWE-89",
16359
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
16360
+ "category": "Injection"
16361
+ },
16362
+ {
16363
+ "id": "CWE-918",
16364
+ "name": "Server-Side Request Forgery (SSRF)",
16365
+ "category": "Network"
16366
+ }
16367
+ ],
16368
+ "atlas": [
16369
+ {
16370
+ "id": "AML.T0010",
16371
+ "name": "ML Supply Chain Compromise",
16372
+ "tactic": "Initial Access"
16373
+ },
16374
+ {
16375
+ "id": "AML.T0043",
16376
+ "name": "Craft Adversarial Data",
16377
+ "tactic": "ML Attack Staging"
16378
+ },
16379
+ {
16380
+ "id": "AML.T0051",
16381
+ "name": "LLM Prompt Injection",
16382
+ "tactic": "Execution"
16383
+ }
16384
+ ],
16385
+ "d3fend": [
16386
+ {
16387
+ "id": "D3-ASLR",
16388
+ "name": "Address Space Layout Randomization",
16389
+ "tactic": "Harden"
16390
+ },
16391
+ {
16392
+ "id": "D3-CSPP",
16393
+ "name": "Client-server Payload Profiling",
16394
+ "tactic": "Detect"
16395
+ },
16396
+ {
16397
+ "id": "D3-EAL",
16398
+ "name": "Executable Allowlisting",
16399
+ "tactic": "Harden"
16400
+ },
16401
+ {
16402
+ "id": "D3-NTA",
16403
+ "name": "Network Traffic Analysis",
16404
+ "tactic": "Detect"
16405
+ },
16406
+ {
16407
+ "id": "D3-PHRA",
16408
+ "name": "Process Hardware Resource Access",
16409
+ "tactic": "Isolate"
16410
+ },
16411
+ {
16412
+ "id": "D3-PSEP",
16413
+ "name": "Process Segment Execution Prevention",
16414
+ "tactic": "Harden"
16415
+ }
16416
+ ],
16417
+ "framework_gaps": [
16418
+ {
16419
+ "id": "CIS-Controls-v8-Control7",
16420
+ "framework": "CIS Controls v8",
16421
+ "control_name": "Continuous Vulnerability Management"
16422
+ },
16423
+ {
16424
+ "id": "IEC-62443-3-3",
16425
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
16426
+ "control_name": "System security requirements and security levels"
16427
+ },
16428
+ {
16429
+ "id": "ISO-27001-2022-A.8.8",
16430
+ "framework": "ISO/IEC 27001:2022",
16431
+ "control_name": "Management of technical vulnerabilities"
16432
+ },
16433
+ {
16434
+ "id": "NERC-CIP-007-6-R4",
16435
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
16436
+ "control_name": "Security event monitoring"
16437
+ },
16438
+ {
16439
+ "id": "NIS2-Art21-patch-management",
16440
+ "framework": "EU NIS2 Directive",
16441
+ "control_name": "Vulnerability handling and disclosure"
16442
+ },
16443
+ {
16444
+ "id": "NIST-800-115",
16445
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
16446
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
16447
+ },
16448
+ {
16449
+ "id": "NIST-800-218-SSDF",
16450
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
16451
+ "control_name": "Secure Software Development Framework"
16452
+ },
16453
+ {
16454
+ "id": "NIST-800-53-SC-8",
16455
+ "framework": "NIST SP 800-53 Rev 5",
16456
+ "control_name": "Transmission Confidentiality and Integrity"
16457
+ },
16458
+ {
16459
+ "id": "NIST-800-53-SI-2",
16460
+ "framework": "NIST SP 800-53 Rev 5",
16461
+ "control_name": "Flaw Remediation"
16462
+ },
16463
+ {
16464
+ "id": "NIST-800-82r3",
16465
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
16466
+ "control_name": "Guide to Operational Technology (OT) Security"
16467
+ },
16468
+ {
16469
+ "id": "OWASP-Pen-Testing-Guide-v5",
16470
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
16471
+ "control_name": "Web application penetration testing methodology"
16472
+ },
16473
+ {
16474
+ "id": "PCI-DSS-4.0-6.3.3",
16475
+ "framework": "PCI DSS 4.0",
16476
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
16477
+ },
16478
+ {
16479
+ "id": "PTES-Pre-engagement",
16480
+ "framework": "Penetration Testing Execution Standard (PTES)",
16481
+ "control_name": "Pre-engagement Interactions"
16482
+ },
16483
+ {
16484
+ "id": "SOC2-CC9-vendor-management",
16485
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
16486
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
16487
+ }
16488
+ ],
16489
+ "attack_refs": [
16490
+ "T0855",
16491
+ "T0883",
16492
+ "T1059",
16493
+ "T1068",
16494
+ "T1078",
16495
+ "T1133",
16496
+ "T1190",
16497
+ "T1548.001"
16498
+ ],
16499
+ "rfc_refs": [
16500
+ "RFC-4301",
16501
+ "RFC-4303",
16502
+ "RFC-7296"
16503
+ ]
16504
+ }
16505
+ },
16506
+ "CVE-2026-34926": {
16507
+ "name": "Trend Micro Apex One Directory Traversal → Malicious Agent Code Deployment",
16508
+ "rwep": 52,
16509
+ "cvss": 6.7,
16510
+ "cisa_kev": true,
16511
+ "epss_score": null,
16512
+ "referencing_skills": [
16513
+ "kernel-lpe-triage",
16514
+ "attack-surface-pentest",
16515
+ "ot-ics-security",
16516
+ "coordinated-vuln-disclosure",
16517
+ "sector-energy"
16518
+ ],
16519
+ "chain": {
16520
+ "cwes": [
16521
+ {
16522
+ "id": "CWE-1037",
16523
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
16524
+ "category": "Hardware / Side Channel"
16525
+ },
16526
+ {
16527
+ "id": "CWE-125",
16528
+ "name": "Out-of-bounds Read",
16529
+ "category": "Memory Safety"
16530
+ },
16531
+ {
16532
+ "id": "CWE-1357",
16533
+ "name": "Reliance on Insufficiently Trustworthy Component",
16534
+ "category": "Supply Chain"
16535
+ },
16536
+ {
16537
+ "id": "CWE-1395",
16538
+ "name": "Dependency on Vulnerable Third-Party Component",
16539
+ "category": "Supply Chain"
16540
+ },
16541
+ {
16542
+ "id": "CWE-22",
16543
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
16544
+ "category": "Path/Resource"
16545
+ },
16546
+ {
16547
+ "id": "CWE-269",
16548
+ "name": "Improper Privilege Management",
16549
+ "category": "Authorization"
16550
+ },
16551
+ {
16552
+ "id": "CWE-287",
16553
+ "name": "Improper Authentication",
16554
+ "category": "Authentication"
16555
+ },
16556
+ {
16557
+ "id": "CWE-306",
16558
+ "name": "Missing Authentication for Critical Function",
16559
+ "category": "Authentication"
16560
+ },
16561
+ {
16562
+ "id": "CWE-352",
16563
+ "name": "Cross-Site Request Forgery (CSRF)",
16564
+ "category": "Session"
16565
+ },
16566
+ {
16567
+ "id": "CWE-362",
16568
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
16569
+ "category": "Concurrency"
16570
+ },
16571
+ {
16572
+ "id": "CWE-416",
16573
+ "name": "Use After Free",
16574
+ "category": "Memory Safety"
16575
+ },
16576
+ {
16577
+ "id": "CWE-434",
16578
+ "name": "Unrestricted Upload of File with Dangerous Type",
16579
+ "category": "File Handling"
16580
+ },
16581
+ {
16582
+ "id": "CWE-672",
16583
+ "name": "Operation on a Resource after Expiration or Release",
16584
+ "category": "Memory Safety"
16585
+ },
16586
+ {
16587
+ "id": "CWE-732",
16588
+ "name": "Incorrect Permission Assignment for Critical Resource",
16589
+ "category": "Authorization"
16590
+ },
16591
+ {
16592
+ "id": "CWE-78",
16593
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
16594
+ "category": "Injection"
16595
+ },
16596
+ {
16597
+ "id": "CWE-787",
16598
+ "name": "Out-of-bounds Write",
16599
+ "category": "Memory Safety"
16600
+ },
16601
+ {
16602
+ "id": "CWE-79",
16603
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
16604
+ "category": "Injection"
16605
+ },
16606
+ {
16607
+ "id": "CWE-798",
16608
+ "name": "Use of Hard-coded Credentials",
16609
+ "category": "Credentials"
16610
+ },
16611
+ {
16612
+ "id": "CWE-89",
16613
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
16614
+ "category": "Injection"
16615
+ },
16616
+ {
16617
+ "id": "CWE-918",
16618
+ "name": "Server-Side Request Forgery (SSRF)",
16619
+ "category": "Network"
16620
+ }
16621
+ ],
16622
+ "atlas": [
16623
+ {
16624
+ "id": "AML.T0010",
16625
+ "name": "ML Supply Chain Compromise",
16626
+ "tactic": "Initial Access"
16627
+ },
16628
+ {
16629
+ "id": "AML.T0043",
16630
+ "name": "Craft Adversarial Data",
16631
+ "tactic": "ML Attack Staging"
16632
+ },
16633
+ {
16634
+ "id": "AML.T0051",
16635
+ "name": "LLM Prompt Injection",
16636
+ "tactic": "Execution"
16637
+ }
16638
+ ],
16639
+ "d3fend": [
16640
+ {
16641
+ "id": "D3-ASLR",
16642
+ "name": "Address Space Layout Randomization",
16643
+ "tactic": "Harden"
16644
+ },
16645
+ {
16646
+ "id": "D3-CSPP",
16647
+ "name": "Client-server Payload Profiling",
16648
+ "tactic": "Detect"
16649
+ },
16650
+ {
16651
+ "id": "D3-EAL",
16652
+ "name": "Executable Allowlisting",
16653
+ "tactic": "Harden"
16654
+ },
16655
+ {
16656
+ "id": "D3-NTA",
16657
+ "name": "Network Traffic Analysis",
16658
+ "tactic": "Detect"
16659
+ },
16660
+ {
16661
+ "id": "D3-PHRA",
16662
+ "name": "Process Hardware Resource Access",
16663
+ "tactic": "Isolate"
16664
+ },
16665
+ {
16666
+ "id": "D3-PSEP",
16667
+ "name": "Process Segment Execution Prevention",
16668
+ "tactic": "Harden"
16669
+ }
16670
+ ],
16671
+ "framework_gaps": [
16672
+ {
16673
+ "id": "CIS-Controls-v8-Control7",
16674
+ "framework": "CIS Controls v8",
16675
+ "control_name": "Continuous Vulnerability Management"
16676
+ },
16677
+ {
16678
+ "id": "IEC-62443-3-3",
16679
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
16680
+ "control_name": "System security requirements and security levels"
16681
+ },
16682
+ {
16683
+ "id": "ISO-27001-2022-A.8.8",
16684
+ "framework": "ISO/IEC 27001:2022",
16685
+ "control_name": "Management of technical vulnerabilities"
16686
+ },
16687
+ {
16688
+ "id": "NERC-CIP-007-6-R4",
16689
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
16690
+ "control_name": "Security event monitoring"
16691
+ },
16692
+ {
16693
+ "id": "NIS2-Art21-patch-management",
16694
+ "framework": "EU NIS2 Directive",
16695
+ "control_name": "Vulnerability handling and disclosure"
16696
+ },
16697
+ {
16698
+ "id": "NIST-800-115",
16699
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
16700
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
16701
+ },
16702
+ {
16703
+ "id": "NIST-800-218-SSDF",
16704
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
16705
+ "control_name": "Secure Software Development Framework"
16706
+ },
16707
+ {
16708
+ "id": "NIST-800-53-SC-8",
16709
+ "framework": "NIST SP 800-53 Rev 5",
16710
+ "control_name": "Transmission Confidentiality and Integrity"
16711
+ },
16712
+ {
16713
+ "id": "NIST-800-53-SI-2",
16714
+ "framework": "NIST SP 800-53 Rev 5",
16715
+ "control_name": "Flaw Remediation"
16716
+ },
16717
+ {
16718
+ "id": "NIST-800-82r3",
16719
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
16720
+ "control_name": "Guide to Operational Technology (OT) Security"
16721
+ },
16722
+ {
16723
+ "id": "OWASP-Pen-Testing-Guide-v5",
16724
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
16725
+ "control_name": "Web application penetration testing methodology"
16726
+ },
16727
+ {
16728
+ "id": "PCI-DSS-4.0-6.3.3",
16729
+ "framework": "PCI DSS 4.0",
16730
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
16731
+ },
16732
+ {
16733
+ "id": "PTES-Pre-engagement",
16734
+ "framework": "Penetration Testing Execution Standard (PTES)",
16735
+ "control_name": "Pre-engagement Interactions"
16736
+ },
16737
+ {
16738
+ "id": "SOC2-CC9-vendor-management",
16739
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
16740
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
16741
+ }
16742
+ ],
16743
+ "attack_refs": [
16744
+ "T0855",
16745
+ "T0883",
16746
+ "T1059",
16747
+ "T1068",
16748
+ "T1078",
16749
+ "T1133",
16750
+ "T1190",
16751
+ "T1548.001"
16752
+ ],
16753
+ "rfc_refs": [
16754
+ "RFC-4301",
16755
+ "RFC-4303",
16756
+ "RFC-7296"
16757
+ ]
16758
+ }
16759
+ },
16252
16760
  "CVE-2025-32432": {
16253
16761
  "name": "Craft CMS Code Injection Vulnerability",
16254
16762
  "rwep": 77,
@@ -41283,7 +41791,9 @@
41283
41791
  "CVE-2026-30615",
41284
41792
  "CVE-2026-30623",
41285
41793
  "CVE-2026-31431",
41794
+ "CVE-2026-34926",
41286
41795
  "CVE-2026-39884",
41796
+ "CVE-2026-41091",
41287
41797
  "CVE-2026-42208",
41288
41798
  "CVE-2026-45321",
41289
41799
  "CVE-2026-46300",
@@ -41623,7 +42133,9 @@
41623
42133
  "CVE-2025-6965",
41624
42134
  "CVE-2026-30623",
41625
42135
  "CVE-2026-31431",
42136
+ "CVE-2026-34926",
41626
42137
  "CVE-2026-39884",
42138
+ "CVE-2026-41091",
41627
42139
  "CVE-2026-42208",
41628
42140
  "CVE-2026-45321",
41629
42141
  "CVE-2026-46300",
@@ -41759,7 +42271,9 @@
41759
42271
  "CVE-2025-6965",
41760
42272
  "CVE-2026-30623",
41761
42273
  "CVE-2026-31431",
42274
+ "CVE-2026-34926",
41762
42275
  "CVE-2026-39884",
42276
+ "CVE-2026-41091",
41763
42277
  "CVE-2026-42208",
41764
42278
  "CVE-2026-45321",
41765
42279
  "CVE-2026-46300",
@@ -41909,7 +42423,9 @@
41909
42423
  "CVE-2025-6965",
41910
42424
  "CVE-2026-30623",
41911
42425
  "CVE-2026-31431",
42426
+ "CVE-2026-34926",
41912
42427
  "CVE-2026-39884",
42428
+ "CVE-2026-41091",
41913
42429
  "CVE-2026-42208",
41914
42430
  "CVE-2026-45321",
41915
42431
  "CVE-2026-46300",
@@ -42561,11 +43077,13 @@
42561
43077
  "CVE-2026-33825",
42562
43078
  "CVE-2026-34197",
42563
43079
  "CVE-2026-34621",
43080
+ "CVE-2026-34926",
42564
43081
  "CVE-2026-3502",
42565
43082
  "CVE-2026-35616",
42566
43083
  "CVE-2026-3909",
42567
43084
  "CVE-2026-3910",
42568
43085
  "CVE-2026-39884",
43086
+ "CVE-2026-41091",
42569
43087
  "CVE-2026-41940",
42570
43088
  "CVE-2026-42897",
42571
43089
  "CVE-2026-42945",
@@ -43163,7 +43681,9 @@
43163
43681
  "CVE-2026-30615",
43164
43682
  "CVE-2026-30623",
43165
43683
  "CVE-2026-31431",
43684
+ "CVE-2026-34926",
43166
43685
  "CVE-2026-39884",
43686
+ "CVE-2026-41091",
43167
43687
  "CVE-2026-42208",
43168
43688
  "CVE-2026-45321",
43169
43689
  "CVE-2026-46300",
@@ -43738,7 +44258,9 @@
43738
44258
  "CVE-2026-30615",
43739
44259
  "CVE-2026-30623",
43740
44260
  "CVE-2026-31431",
44261
+ "CVE-2026-34926",
43741
44262
  "CVE-2026-39884",
44263
+ "CVE-2026-41091",
43742
44264
  "CVE-2026-42208",
43743
44265
  "CVE-2026-45321",
43744
44266
  "CVE-2026-46300",
@@ -43946,7 +44468,9 @@
43946
44468
  "CVE-2025-53773",
43947
44469
  "CVE-2026-30615",
43948
44470
  "CVE-2026-31431",
44471
+ "CVE-2026-34926",
43949
44472
  "CVE-2026-39884",
44473
+ "CVE-2026-41091",
43950
44474
  "CVE-2026-45321",
43951
44475
  "CVE-2026-46300",
43952
44476
  "CVE-2026-46333",
@@ -44590,7 +45114,9 @@
44590
45114
  "CVE-2026-30615",
44591
45115
  "CVE-2026-30623",
44592
45116
  "CVE-2026-31431",
45117
+ "CVE-2026-34926",
44593
45118
  "CVE-2026-39884",
45119
+ "CVE-2026-41091",
44594
45120
  "CVE-2026-42208",
44595
45121
  "CVE-2026-45321",
44596
45122
  "CVE-2026-46300",
@@ -44986,11 +45512,13 @@
44986
45512
  "CVE-2026-33825",
44987
45513
  "CVE-2026-34197",
44988
45514
  "CVE-2026-34621",
45515
+ "CVE-2026-34926",
44989
45516
  "CVE-2026-3502",
44990
45517
  "CVE-2026-35616",
44991
45518
  "CVE-2026-3909",
44992
45519
  "CVE-2026-3910",
44993
45520
  "CVE-2026-39884",
45521
+ "CVE-2026-41091",
44994
45522
  "CVE-2026-41940",
44995
45523
  "CVE-2026-42897",
44996
45524
  "CVE-2026-42945",
@@ -45377,11 +45905,13 @@
45377
45905
  "CVE-2026-33825",
45378
45906
  "CVE-2026-34197",
45379
45907
  "CVE-2026-34621",
45908
+ "CVE-2026-34926",
45380
45909
  "CVE-2026-3502",
45381
45910
  "CVE-2026-35616",
45382
45911
  "CVE-2026-3909",
45383
45912
  "CVE-2026-3910",
45384
45913
  "CVE-2026-39884",
45914
+ "CVE-2026-41091",
45385
45915
  "CVE-2026-41940",
45386
45916
  "CVE-2026-42897",
45387
45917
  "CVE-2026-42945",
@@ -45620,7 +46150,9 @@
45620
46150
  "CVE-2026-30615",
45621
46151
  "CVE-2026-30623",
45622
46152
  "CVE-2026-31431",
46153
+ "CVE-2026-34926",
45623
46154
  "CVE-2026-39884",
46155
+ "CVE-2026-41091",
45624
46156
  "CVE-2026-42208",
45625
46157
  "CVE-2026-45321",
45626
46158
  "CVE-2026-46300",
@@ -46568,11 +47100,13 @@
46568
47100
  "CVE-2026-33825",
46569
47101
  "CVE-2026-34197",
46570
47102
  "CVE-2026-34621",
47103
+ "CVE-2026-34926",
46571
47104
  "CVE-2026-3502",
46572
47105
  "CVE-2026-35616",
46573
47106
  "CVE-2026-3909",
46574
47107
  "CVE-2026-3910",
46575
47108
  "CVE-2026-39884",
47109
+ "CVE-2026-41091",
46576
47110
  "CVE-2026-41940",
46577
47111
  "CVE-2026-42897",
46578
47112
  "CVE-2026-42945",
@@ -46875,7 +47409,9 @@
46875
47409
  "CVE-2026-30615",
46876
47410
  "CVE-2026-30623",
46877
47411
  "CVE-2026-31431",
47412
+ "CVE-2026-34926",
46878
47413
  "CVE-2026-39884",
47414
+ "CVE-2026-41091",
46879
47415
  "CVE-2026-42208",
46880
47416
  "CVE-2026-45321",
46881
47417
  "CVE-2026-46300",
@@ -47356,11 +47892,13 @@
47356
47892
  "CVE-2026-33825",
47357
47893
  "CVE-2026-34197",
47358
47894
  "CVE-2026-34621",
47895
+ "CVE-2026-34926",
47359
47896
  "CVE-2026-3502",
47360
47897
  "CVE-2026-35616",
47361
47898
  "CVE-2026-3909",
47362
47899
  "CVE-2026-3910",
47363
47900
  "CVE-2026-39884",
47901
+ "CVE-2026-41091",
47364
47902
  "CVE-2026-41940",
47365
47903
  "CVE-2026-42897",
47366
47904
  "CVE-2026-42945",
@@ -47672,7 +48210,9 @@
47672
48210
  "CVE-2025-53773",
47673
48211
  "CVE-2026-30615",
47674
48212
  "CVE-2026-31431",
48213
+ "CVE-2026-34926",
47675
48214
  "CVE-2026-39884",
48215
+ "CVE-2026-41091",
47676
48216
  "CVE-2026-45321",
47677
48217
  "CVE-2026-46300",
47678
48218
  "CVE-2026-46333",
@@ -48585,7 +49125,9 @@
48585
49125
  "CVE-2026-30615",
48586
49126
  "CVE-2026-30623",
48587
49127
  "CVE-2026-31431",
49128
+ "CVE-2026-34926",
48588
49129
  "CVE-2026-39884",
49130
+ "CVE-2026-41091",
48589
49131
  "CVE-2026-42208",
48590
49132
  "CVE-2026-45321",
48591
49133
  "CVE-2026-46300",
@@ -48651,7 +49193,9 @@
48651
49193
  "CVE-2025-38352",
48652
49194
  "CVE-2025-43300",
48653
49195
  "CVE-2026-31431",
49196
+ "CVE-2026-34926",
48654
49197
  "CVE-2026-39884",
49198
+ "CVE-2026-41091",
48655
49199
  "CVE-2026-45321",
48656
49200
  "CVE-2026-46300",
48657
49201
  "CVE-2026-46333",
@@ -49374,10 +49918,12 @@
49374
49918
  "CVE-2026-33634",
49375
49919
  "CVE-2026-34197",
49376
49920
  "CVE-2026-34621",
49921
+ "CVE-2026-34926",
49377
49922
  "CVE-2026-3502",
49378
49923
  "CVE-2026-35616",
49379
49924
  "CVE-2026-3909",
49380
49925
  "CVE-2026-3910",
49926
+ "CVE-2026-41091",
49381
49927
  "CVE-2026-41940",
49382
49928
  "CVE-2026-42945",
49383
49929
  "CVE-2026-45321",
@@ -49617,7 +50163,9 @@
49617
50163
  "CVE-2026-30615",
49618
50164
  "CVE-2026-30623",
49619
50165
  "CVE-2026-31431",
50166
+ "CVE-2026-34926",
49620
50167
  "CVE-2026-39884",
50168
+ "CVE-2026-41091",
49621
50169
  "CVE-2026-45321",
49622
50170
  "CVE-2026-46300",
49623
50171
  "CVE-2026-46333",