@blamejs/exceptd-skills 0.13.71 → 0.13.73

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +8 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +770 -0
  6. package/data/atlas-ttps.json +1 -0
  7. package/data/attack-techniques.json +4 -0
  8. package/data/cve-catalog.json +223 -0
  9. package/data/cwe-catalog.json +7 -2
  10. package/data/framework-control-gaps.json +17 -2
  11. package/data/zeroday-lessons.json +100 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -16249,6 +16249,730 @@
16249
16249
  ]
16250
16250
  }
16251
16251
  },
16252
+ "CVE-2026-25592": {
16253
+ "name": "Microsoft Semantic Kernel SessionsPythonPlugin Path Traversal — Prompt-Injection to Host RCE",
16254
+ "rwep": 30,
16255
+ "cvss": 9.9,
16256
+ "cisa_kev": false,
16257
+ "epss_score": null,
16258
+ "referencing_skills": [
16259
+ "kernel-lpe-triage",
16260
+ "ai-attack-surface",
16261
+ "compliance-theater",
16262
+ "attack-surface-pentest",
16263
+ "ot-ics-security",
16264
+ "coordinated-vuln-disclosure",
16265
+ "sector-energy"
16266
+ ],
16267
+ "chain": {
16268
+ "cwes": [
16269
+ {
16270
+ "id": "CWE-1037",
16271
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
16272
+ "category": "Hardware / Side Channel"
16273
+ },
16274
+ {
16275
+ "id": "CWE-1039",
16276
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
16277
+ "category": "AI/ML"
16278
+ },
16279
+ {
16280
+ "id": "CWE-125",
16281
+ "name": "Out-of-bounds Read",
16282
+ "category": "Memory Safety"
16283
+ },
16284
+ {
16285
+ "id": "CWE-1357",
16286
+ "name": "Reliance on Insufficiently Trustworthy Component",
16287
+ "category": "Supply Chain"
16288
+ },
16289
+ {
16290
+ "id": "CWE-1395",
16291
+ "name": "Dependency on Vulnerable Third-Party Component",
16292
+ "category": "Supply Chain"
16293
+ },
16294
+ {
16295
+ "id": "CWE-1426",
16296
+ "name": "Improper Validation of Generative AI Output",
16297
+ "category": "AI/ML"
16298
+ },
16299
+ {
16300
+ "id": "CWE-22",
16301
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
16302
+ "category": "Path/Resource"
16303
+ },
16304
+ {
16305
+ "id": "CWE-269",
16306
+ "name": "Improper Privilege Management",
16307
+ "category": "Authorization"
16308
+ },
16309
+ {
16310
+ "id": "CWE-287",
16311
+ "name": "Improper Authentication",
16312
+ "category": "Authentication"
16313
+ },
16314
+ {
16315
+ "id": "CWE-306",
16316
+ "name": "Missing Authentication for Critical Function",
16317
+ "category": "Authentication"
16318
+ },
16319
+ {
16320
+ "id": "CWE-352",
16321
+ "name": "Cross-Site Request Forgery (CSRF)",
16322
+ "category": "Session"
16323
+ },
16324
+ {
16325
+ "id": "CWE-362",
16326
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
16327
+ "category": "Concurrency"
16328
+ },
16329
+ {
16330
+ "id": "CWE-416",
16331
+ "name": "Use After Free",
16332
+ "category": "Memory Safety"
16333
+ },
16334
+ {
16335
+ "id": "CWE-434",
16336
+ "name": "Unrestricted Upload of File with Dangerous Type",
16337
+ "category": "File Handling"
16338
+ },
16339
+ {
16340
+ "id": "CWE-672",
16341
+ "name": "Operation on a Resource after Expiration or Release",
16342
+ "category": "Memory Safety"
16343
+ },
16344
+ {
16345
+ "id": "CWE-732",
16346
+ "name": "Incorrect Permission Assignment for Critical Resource",
16347
+ "category": "Authorization"
16348
+ },
16349
+ {
16350
+ "id": "CWE-78",
16351
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
16352
+ "category": "Injection"
16353
+ },
16354
+ {
16355
+ "id": "CWE-787",
16356
+ "name": "Out-of-bounds Write",
16357
+ "category": "Memory Safety"
16358
+ },
16359
+ {
16360
+ "id": "CWE-79",
16361
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
16362
+ "category": "Injection"
16363
+ },
16364
+ {
16365
+ "id": "CWE-798",
16366
+ "name": "Use of Hard-coded Credentials",
16367
+ "category": "Credentials"
16368
+ },
16369
+ {
16370
+ "id": "CWE-89",
16371
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
16372
+ "category": "Injection"
16373
+ },
16374
+ {
16375
+ "id": "CWE-918",
16376
+ "name": "Server-Side Request Forgery (SSRF)",
16377
+ "category": "Network"
16378
+ },
16379
+ {
16380
+ "id": "CWE-94",
16381
+ "name": "Improper Control of Generation of Code (Code Injection)",
16382
+ "category": "Injection"
16383
+ }
16384
+ ],
16385
+ "atlas": [
16386
+ {
16387
+ "id": "AML.T0010",
16388
+ "name": "ML Supply Chain Compromise",
16389
+ "tactic": "Initial Access"
16390
+ },
16391
+ {
16392
+ "id": "AML.T0016",
16393
+ "name": "Obtain Capabilities: Develop Capabilities",
16394
+ "tactic": "Resource Development"
16395
+ },
16396
+ {
16397
+ "id": "AML.T0017",
16398
+ "name": "Discover ML Model Ontology",
16399
+ "tactic": "Discovery"
16400
+ },
16401
+ {
16402
+ "id": "AML.T0018",
16403
+ "name": "Backdoor ML Model",
16404
+ "tactic": "Persistence"
16405
+ },
16406
+ {
16407
+ "id": "AML.T0020",
16408
+ "name": "Poison Training Data",
16409
+ "tactic": "ML Attack Staging"
16410
+ },
16411
+ {
16412
+ "id": "AML.T0043",
16413
+ "name": "Craft Adversarial Data",
16414
+ "tactic": "ML Attack Staging"
16415
+ },
16416
+ {
16417
+ "id": "AML.T0051",
16418
+ "name": "LLM Prompt Injection",
16419
+ "tactic": "Execution"
16420
+ },
16421
+ {
16422
+ "id": "AML.T0054",
16423
+ "name": "LLM Jailbreak",
16424
+ "tactic": "Defense Evasion"
16425
+ },
16426
+ {
16427
+ "id": "AML.T0096",
16428
+ "name": "AI API as Covert C2 Channel",
16429
+ "tactic": "Command and Control"
16430
+ }
16431
+ ],
16432
+ "d3fend": [
16433
+ {
16434
+ "id": "D3-ASLR",
16435
+ "name": "Address Space Layout Randomization",
16436
+ "tactic": "Harden"
16437
+ },
16438
+ {
16439
+ "id": "D3-CSPP",
16440
+ "name": "Client-server Payload Profiling",
16441
+ "tactic": "Detect"
16442
+ },
16443
+ {
16444
+ "id": "D3-EAL",
16445
+ "name": "Executable Allowlisting",
16446
+ "tactic": "Harden"
16447
+ },
16448
+ {
16449
+ "id": "D3-IOPR",
16450
+ "name": "Input/Output Profiling Resource",
16451
+ "tactic": "Detect"
16452
+ },
16453
+ {
16454
+ "id": "D3-NTA",
16455
+ "name": "Network Traffic Analysis",
16456
+ "tactic": "Detect"
16457
+ },
16458
+ {
16459
+ "id": "D3-PHRA",
16460
+ "name": "Process Hardware Resource Access",
16461
+ "tactic": "Isolate"
16462
+ },
16463
+ {
16464
+ "id": "D3-PSEP",
16465
+ "name": "Process Segment Execution Prevention",
16466
+ "tactic": "Harden"
16467
+ }
16468
+ ],
16469
+ "framework_gaps": [
16470
+ {
16471
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
16472
+ "framework": "ALL",
16473
+ "control_name": "AI Pipeline Integrity"
16474
+ },
16475
+ {
16476
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
16477
+ "framework": "ALL",
16478
+ "control_name": "Prompt Injection as Access Control Failure"
16479
+ },
16480
+ {
16481
+ "id": "CIS-Controls-v8-Control7",
16482
+ "framework": "CIS Controls v8",
16483
+ "control_name": "Continuous Vulnerability Management"
16484
+ },
16485
+ {
16486
+ "id": "CMMC-2.0-Level-2",
16487
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
16488
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
16489
+ },
16490
+ {
16491
+ "id": "FedRAMP-Rev5-Moderate",
16492
+ "framework": "FedRAMP Rev 5 Moderate",
16493
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
16494
+ },
16495
+ {
16496
+ "id": "IEC-62443-3-3",
16497
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
16498
+ "control_name": "System security requirements and security levels"
16499
+ },
16500
+ {
16501
+ "id": "ISO-27001-2022-A.8.28",
16502
+ "framework": "ISO/IEC 27001:2022",
16503
+ "control_name": "Secure coding"
16504
+ },
16505
+ {
16506
+ "id": "ISO-27001-2022-A.8.8",
16507
+ "framework": "ISO/IEC 27001:2022",
16508
+ "control_name": "Management of technical vulnerabilities"
16509
+ },
16510
+ {
16511
+ "id": "ISO-IEC-23894-2023-clause-7",
16512
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
16513
+ "control_name": "AI risk management process"
16514
+ },
16515
+ {
16516
+ "id": "NERC-CIP-007-6-R4",
16517
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
16518
+ "control_name": "Security event monitoring"
16519
+ },
16520
+ {
16521
+ "id": "NIS2-Art21-patch-management",
16522
+ "framework": "EU NIS2 Directive",
16523
+ "control_name": "Vulnerability handling and disclosure"
16524
+ },
16525
+ {
16526
+ "id": "NIST-800-115",
16527
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
16528
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
16529
+ },
16530
+ {
16531
+ "id": "NIST-800-218-SSDF",
16532
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
16533
+ "control_name": "Secure Software Development Framework"
16534
+ },
16535
+ {
16536
+ "id": "NIST-800-53-AC-2",
16537
+ "framework": "NIST SP 800-53 Rev 5",
16538
+ "control_name": "Account Management"
16539
+ },
16540
+ {
16541
+ "id": "NIST-800-53-SC-8",
16542
+ "framework": "NIST SP 800-53 Rev 5",
16543
+ "control_name": "Transmission Confidentiality and Integrity"
16544
+ },
16545
+ {
16546
+ "id": "NIST-800-53-SI-2",
16547
+ "framework": "NIST SP 800-53 Rev 5",
16548
+ "control_name": "Flaw Remediation"
16549
+ },
16550
+ {
16551
+ "id": "NIST-800-53-SI-3",
16552
+ "framework": "NIST SP 800-53 Rev 5",
16553
+ "control_name": "Malicious Code Protection"
16554
+ },
16555
+ {
16556
+ "id": "NIST-800-82r3",
16557
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
16558
+ "control_name": "Guide to Operational Technology (OT) Security"
16559
+ },
16560
+ {
16561
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
16562
+ "framework": "OWASP Top 10 for LLM Applications 2025",
16563
+ "control_name": "Prompt Injection"
16564
+ },
16565
+ {
16566
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
16567
+ "framework": "OWASP Top 10 for LLM Applications 2025",
16568
+ "control_name": "Sensitive Information Disclosure"
16569
+ },
16570
+ {
16571
+ "id": "OWASP-Pen-Testing-Guide-v5",
16572
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
16573
+ "control_name": "Web application penetration testing methodology"
16574
+ },
16575
+ {
16576
+ "id": "PCI-DSS-4.0-6.3.3",
16577
+ "framework": "PCI DSS 4.0",
16578
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
16579
+ },
16580
+ {
16581
+ "id": "PTES-Pre-engagement",
16582
+ "framework": "Penetration Testing Execution Standard (PTES)",
16583
+ "control_name": "Pre-engagement Interactions"
16584
+ },
16585
+ {
16586
+ "id": "SOC2-CC6-logical-access",
16587
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
16588
+ "control_name": "Logical and Physical Access Controls"
16589
+ },
16590
+ {
16591
+ "id": "SOC2-CC9-vendor-management",
16592
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
16593
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
16594
+ }
16595
+ ],
16596
+ "attack_refs": [
16597
+ "T0855",
16598
+ "T0883",
16599
+ "T1059",
16600
+ "T1068",
16601
+ "T1078",
16602
+ "T1133",
16603
+ "T1190",
16604
+ "T1548.001",
16605
+ "T1566"
16606
+ ],
16607
+ "rfc_refs": [
16608
+ "RFC-4301",
16609
+ "RFC-4303",
16610
+ "RFC-7296"
16611
+ ]
16612
+ }
16613
+ },
16614
+ "CVE-2025-49596": {
16615
+ "name": "MCP Inspector Missing Authentication — Unauthenticated RCE via the Inspector Proxy",
16616
+ "rwep": 30,
16617
+ "cvss": 8.3,
16618
+ "cisa_kev": false,
16619
+ "epss_score": null,
16620
+ "referencing_skills": [
16621
+ "kernel-lpe-triage",
16622
+ "ai-attack-surface",
16623
+ "compliance-theater",
16624
+ "attack-surface-pentest",
16625
+ "ot-ics-security",
16626
+ "coordinated-vuln-disclosure",
16627
+ "sector-energy"
16628
+ ],
16629
+ "chain": {
16630
+ "cwes": [
16631
+ {
16632
+ "id": "CWE-1037",
16633
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
16634
+ "category": "Hardware / Side Channel"
16635
+ },
16636
+ {
16637
+ "id": "CWE-1039",
16638
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
16639
+ "category": "AI/ML"
16640
+ },
16641
+ {
16642
+ "id": "CWE-125",
16643
+ "name": "Out-of-bounds Read",
16644
+ "category": "Memory Safety"
16645
+ },
16646
+ {
16647
+ "id": "CWE-1357",
16648
+ "name": "Reliance on Insufficiently Trustworthy Component",
16649
+ "category": "Supply Chain"
16650
+ },
16651
+ {
16652
+ "id": "CWE-1395",
16653
+ "name": "Dependency on Vulnerable Third-Party Component",
16654
+ "category": "Supply Chain"
16655
+ },
16656
+ {
16657
+ "id": "CWE-1426",
16658
+ "name": "Improper Validation of Generative AI Output",
16659
+ "category": "AI/ML"
16660
+ },
16661
+ {
16662
+ "id": "CWE-22",
16663
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
16664
+ "category": "Path/Resource"
16665
+ },
16666
+ {
16667
+ "id": "CWE-269",
16668
+ "name": "Improper Privilege Management",
16669
+ "category": "Authorization"
16670
+ },
16671
+ {
16672
+ "id": "CWE-287",
16673
+ "name": "Improper Authentication",
16674
+ "category": "Authentication"
16675
+ },
16676
+ {
16677
+ "id": "CWE-306",
16678
+ "name": "Missing Authentication for Critical Function",
16679
+ "category": "Authentication"
16680
+ },
16681
+ {
16682
+ "id": "CWE-352",
16683
+ "name": "Cross-Site Request Forgery (CSRF)",
16684
+ "category": "Session"
16685
+ },
16686
+ {
16687
+ "id": "CWE-362",
16688
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
16689
+ "category": "Concurrency"
16690
+ },
16691
+ {
16692
+ "id": "CWE-416",
16693
+ "name": "Use After Free",
16694
+ "category": "Memory Safety"
16695
+ },
16696
+ {
16697
+ "id": "CWE-434",
16698
+ "name": "Unrestricted Upload of File with Dangerous Type",
16699
+ "category": "File Handling"
16700
+ },
16701
+ {
16702
+ "id": "CWE-672",
16703
+ "name": "Operation on a Resource after Expiration or Release",
16704
+ "category": "Memory Safety"
16705
+ },
16706
+ {
16707
+ "id": "CWE-732",
16708
+ "name": "Incorrect Permission Assignment for Critical Resource",
16709
+ "category": "Authorization"
16710
+ },
16711
+ {
16712
+ "id": "CWE-78",
16713
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
16714
+ "category": "Injection"
16715
+ },
16716
+ {
16717
+ "id": "CWE-787",
16718
+ "name": "Out-of-bounds Write",
16719
+ "category": "Memory Safety"
16720
+ },
16721
+ {
16722
+ "id": "CWE-79",
16723
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
16724
+ "category": "Injection"
16725
+ },
16726
+ {
16727
+ "id": "CWE-798",
16728
+ "name": "Use of Hard-coded Credentials",
16729
+ "category": "Credentials"
16730
+ },
16731
+ {
16732
+ "id": "CWE-89",
16733
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
16734
+ "category": "Injection"
16735
+ },
16736
+ {
16737
+ "id": "CWE-918",
16738
+ "name": "Server-Side Request Forgery (SSRF)",
16739
+ "category": "Network"
16740
+ },
16741
+ {
16742
+ "id": "CWE-94",
16743
+ "name": "Improper Control of Generation of Code (Code Injection)",
16744
+ "category": "Injection"
16745
+ }
16746
+ ],
16747
+ "atlas": [
16748
+ {
16749
+ "id": "AML.T0010",
16750
+ "name": "ML Supply Chain Compromise",
16751
+ "tactic": "Initial Access"
16752
+ },
16753
+ {
16754
+ "id": "AML.T0016",
16755
+ "name": "Obtain Capabilities: Develop Capabilities",
16756
+ "tactic": "Resource Development"
16757
+ },
16758
+ {
16759
+ "id": "AML.T0017",
16760
+ "name": "Discover ML Model Ontology",
16761
+ "tactic": "Discovery"
16762
+ },
16763
+ {
16764
+ "id": "AML.T0018",
16765
+ "name": "Backdoor ML Model",
16766
+ "tactic": "Persistence"
16767
+ },
16768
+ {
16769
+ "id": "AML.T0020",
16770
+ "name": "Poison Training Data",
16771
+ "tactic": "ML Attack Staging"
16772
+ },
16773
+ {
16774
+ "id": "AML.T0043",
16775
+ "name": "Craft Adversarial Data",
16776
+ "tactic": "ML Attack Staging"
16777
+ },
16778
+ {
16779
+ "id": "AML.T0051",
16780
+ "name": "LLM Prompt Injection",
16781
+ "tactic": "Execution"
16782
+ },
16783
+ {
16784
+ "id": "AML.T0054",
16785
+ "name": "LLM Jailbreak",
16786
+ "tactic": "Defense Evasion"
16787
+ },
16788
+ {
16789
+ "id": "AML.T0096",
16790
+ "name": "AI API as Covert C2 Channel",
16791
+ "tactic": "Command and Control"
16792
+ }
16793
+ ],
16794
+ "d3fend": [
16795
+ {
16796
+ "id": "D3-ASLR",
16797
+ "name": "Address Space Layout Randomization",
16798
+ "tactic": "Harden"
16799
+ },
16800
+ {
16801
+ "id": "D3-CSPP",
16802
+ "name": "Client-server Payload Profiling",
16803
+ "tactic": "Detect"
16804
+ },
16805
+ {
16806
+ "id": "D3-EAL",
16807
+ "name": "Executable Allowlisting",
16808
+ "tactic": "Harden"
16809
+ },
16810
+ {
16811
+ "id": "D3-IOPR",
16812
+ "name": "Input/Output Profiling Resource",
16813
+ "tactic": "Detect"
16814
+ },
16815
+ {
16816
+ "id": "D3-NTA",
16817
+ "name": "Network Traffic Analysis",
16818
+ "tactic": "Detect"
16819
+ },
16820
+ {
16821
+ "id": "D3-PHRA",
16822
+ "name": "Process Hardware Resource Access",
16823
+ "tactic": "Isolate"
16824
+ },
16825
+ {
16826
+ "id": "D3-PSEP",
16827
+ "name": "Process Segment Execution Prevention",
16828
+ "tactic": "Harden"
16829
+ }
16830
+ ],
16831
+ "framework_gaps": [
16832
+ {
16833
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
16834
+ "framework": "ALL",
16835
+ "control_name": "AI Pipeline Integrity"
16836
+ },
16837
+ {
16838
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
16839
+ "framework": "ALL",
16840
+ "control_name": "Prompt Injection as Access Control Failure"
16841
+ },
16842
+ {
16843
+ "id": "CIS-Controls-v8-Control7",
16844
+ "framework": "CIS Controls v8",
16845
+ "control_name": "Continuous Vulnerability Management"
16846
+ },
16847
+ {
16848
+ "id": "CMMC-2.0-Level-2",
16849
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
16850
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
16851
+ },
16852
+ {
16853
+ "id": "FedRAMP-Rev5-Moderate",
16854
+ "framework": "FedRAMP Rev 5 Moderate",
16855
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
16856
+ },
16857
+ {
16858
+ "id": "IEC-62443-3-3",
16859
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
16860
+ "control_name": "System security requirements and security levels"
16861
+ },
16862
+ {
16863
+ "id": "ISO-27001-2022-A.8.28",
16864
+ "framework": "ISO/IEC 27001:2022",
16865
+ "control_name": "Secure coding"
16866
+ },
16867
+ {
16868
+ "id": "ISO-27001-2022-A.8.8",
16869
+ "framework": "ISO/IEC 27001:2022",
16870
+ "control_name": "Management of technical vulnerabilities"
16871
+ },
16872
+ {
16873
+ "id": "ISO-IEC-23894-2023-clause-7",
16874
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
16875
+ "control_name": "AI risk management process"
16876
+ },
16877
+ {
16878
+ "id": "NERC-CIP-007-6-R4",
16879
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
16880
+ "control_name": "Security event monitoring"
16881
+ },
16882
+ {
16883
+ "id": "NIS2-Art21-patch-management",
16884
+ "framework": "EU NIS2 Directive",
16885
+ "control_name": "Vulnerability handling and disclosure"
16886
+ },
16887
+ {
16888
+ "id": "NIST-800-115",
16889
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
16890
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
16891
+ },
16892
+ {
16893
+ "id": "NIST-800-218-SSDF",
16894
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
16895
+ "control_name": "Secure Software Development Framework"
16896
+ },
16897
+ {
16898
+ "id": "NIST-800-53-AC-2",
16899
+ "framework": "NIST SP 800-53 Rev 5",
16900
+ "control_name": "Account Management"
16901
+ },
16902
+ {
16903
+ "id": "NIST-800-53-SC-8",
16904
+ "framework": "NIST SP 800-53 Rev 5",
16905
+ "control_name": "Transmission Confidentiality and Integrity"
16906
+ },
16907
+ {
16908
+ "id": "NIST-800-53-SI-2",
16909
+ "framework": "NIST SP 800-53 Rev 5",
16910
+ "control_name": "Flaw Remediation"
16911
+ },
16912
+ {
16913
+ "id": "NIST-800-53-SI-3",
16914
+ "framework": "NIST SP 800-53 Rev 5",
16915
+ "control_name": "Malicious Code Protection"
16916
+ },
16917
+ {
16918
+ "id": "NIST-800-82r3",
16919
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
16920
+ "control_name": "Guide to Operational Technology (OT) Security"
16921
+ },
16922
+ {
16923
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
16924
+ "framework": "OWASP Top 10 for LLM Applications 2025",
16925
+ "control_name": "Prompt Injection"
16926
+ },
16927
+ {
16928
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
16929
+ "framework": "OWASP Top 10 for LLM Applications 2025",
16930
+ "control_name": "Sensitive Information Disclosure"
16931
+ },
16932
+ {
16933
+ "id": "OWASP-Pen-Testing-Guide-v5",
16934
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
16935
+ "control_name": "Web application penetration testing methodology"
16936
+ },
16937
+ {
16938
+ "id": "PCI-DSS-4.0-6.3.3",
16939
+ "framework": "PCI DSS 4.0",
16940
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
16941
+ },
16942
+ {
16943
+ "id": "PTES-Pre-engagement",
16944
+ "framework": "Penetration Testing Execution Standard (PTES)",
16945
+ "control_name": "Pre-engagement Interactions"
16946
+ },
16947
+ {
16948
+ "id": "SOC2-CC6-logical-access",
16949
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
16950
+ "control_name": "Logical and Physical Access Controls"
16951
+ },
16952
+ {
16953
+ "id": "SOC2-CC9-vendor-management",
16954
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
16955
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
16956
+ }
16957
+ ],
16958
+ "attack_refs": [
16959
+ "T0855",
16960
+ "T0883",
16961
+ "T1059",
16962
+ "T1068",
16963
+ "T1078",
16964
+ "T1133",
16965
+ "T1190",
16966
+ "T1548.001",
16967
+ "T1566"
16968
+ ],
16969
+ "rfc_refs": [
16970
+ "RFC-4301",
16971
+ "RFC-4303",
16972
+ "RFC-7296"
16973
+ ]
16974
+ }
16975
+ },
16252
16976
  "CVE-2026-41091": {
16253
16977
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
16254
16978
  "rwep": 45,
@@ -42634,9 +43358,11 @@
42634
43358
  "CVE-2025-34291",
42635
43359
  "CVE-2025-38352",
42636
43360
  "CVE-2025-43300",
43361
+ "CVE-2025-49596",
42637
43362
  "CVE-2025-49844",
42638
43363
  "CVE-2025-53773",
42639
43364
  "CVE-2025-6965",
43365
+ "CVE-2026-25592",
42640
43366
  "CVE-2026-30615",
42641
43367
  "CVE-2026-30623",
42642
43368
  "CVE-2026-31431",
@@ -42980,7 +43706,9 @@
42980
43706
  "CVE-2025-34291",
42981
43707
  "CVE-2025-38352",
42982
43708
  "CVE-2025-43300",
43709
+ "CVE-2025-49596",
42983
43710
  "CVE-2025-6965",
43711
+ "CVE-2026-25592",
42984
43712
  "CVE-2026-30623",
42985
43713
  "CVE-2026-31431",
42986
43714
  "CVE-2026-34926",
@@ -43119,7 +43847,9 @@
43119
43847
  "CVE-2025-34291",
43120
43848
  "CVE-2025-38352",
43121
43849
  "CVE-2025-43300",
43850
+ "CVE-2025-49596",
43122
43851
  "CVE-2025-6965",
43852
+ "CVE-2026-25592",
43123
43853
  "CVE-2026-30623",
43124
43854
  "CVE-2026-31431",
43125
43855
  "CVE-2026-34926",
@@ -43272,7 +44002,9 @@
43272
44002
  "CVE-2025-34291",
43273
44003
  "CVE-2025-38352",
43274
44004
  "CVE-2025-43300",
44005
+ "CVE-2025-49596",
43275
44006
  "CVE-2025-6965",
44007
+ "CVE-2026-25592",
43276
44008
  "CVE-2026-30623",
43277
44009
  "CVE-2026-31431",
43278
44010
  "CVE-2026-34926",
@@ -43528,10 +44260,12 @@
43528
44260
  "CVE-2025-1094",
43529
44261
  "CVE-2025-11837",
43530
44262
  "CVE-2025-34291",
44263
+ "CVE-2025-49596",
43531
44264
  "CVE-2025-49844",
43532
44265
  "CVE-2025-53773",
43533
44266
  "CVE-2025-6965",
43534
44267
  "CVE-2026-22778",
44268
+ "CVE-2026-25592",
43535
44269
  "CVE-2026-30615",
43536
44270
  "CVE-2026-30623",
43537
44271
  "CVE-2026-32202",
@@ -43837,6 +44571,7 @@
43837
44571
  "CVE-2025-48928",
43838
44572
  "CVE-2025-49113",
43839
44573
  "CVE-2025-4919",
44574
+ "CVE-2025-49596",
43840
44575
  "CVE-2025-49704",
43841
44576
  "CVE-2025-49706",
43842
44577
  "CVE-2025-49844",
@@ -43925,6 +44660,7 @@
43925
44660
  "CVE-2026-24423",
43926
44661
  "CVE-2026-24858",
43927
44662
  "CVE-2026-25108",
44663
+ "CVE-2026-25592",
43928
44664
  "CVE-2026-3055",
43929
44665
  "CVE-2026-31431",
43930
44666
  "CVE-2026-31635",
@@ -44534,9 +45270,11 @@
44534
45270
  "CVE-2025-34291",
44535
45271
  "CVE-2025-38352",
44536
45272
  "CVE-2025-43300",
45273
+ "CVE-2025-49596",
44537
45274
  "CVE-2025-49844",
44538
45275
  "CVE-2025-53773",
44539
45276
  "CVE-2025-6965",
45277
+ "CVE-2026-25592",
44540
45278
  "CVE-2026-30615",
44541
45279
  "CVE-2026-30623",
44542
45280
  "CVE-2026-31431",
@@ -45112,9 +45850,11 @@
45112
45850
  "CVE-2025-34291",
45113
45851
  "CVE-2025-38352",
45114
45852
  "CVE-2025-43300",
45853
+ "CVE-2025-49596",
45115
45854
  "CVE-2025-49844",
45116
45855
  "CVE-2025-53773",
45117
45856
  "CVE-2025-6965",
45857
+ "CVE-2026-25592",
45118
45858
  "CVE-2026-30615",
45119
45859
  "CVE-2026-30623",
45120
45860
  "CVE-2026-31431",
@@ -45326,7 +46066,9 @@
45326
46066
  "CVE-2025-34291",
45327
46067
  "CVE-2025-38352",
45328
46068
  "CVE-2025-43300",
46069
+ "CVE-2025-49596",
45329
46070
  "CVE-2025-53773",
46071
+ "CVE-2026-25592",
45330
46072
  "CVE-2026-30615",
45331
46073
  "CVE-2026-31431",
45332
46074
  "CVE-2026-34926",
@@ -45970,9 +46712,11 @@
45970
46712
  "CVE-2025-34291",
45971
46713
  "CVE-2025-38352",
45972
46714
  "CVE-2025-43300",
46715
+ "CVE-2025-49596",
45973
46716
  "CVE-2025-49844",
45974
46717
  "CVE-2025-53773",
45975
46718
  "CVE-2025-6965",
46719
+ "CVE-2026-25592",
45976
46720
  "CVE-2026-30615",
45977
46721
  "CVE-2026-30623",
45978
46722
  "CVE-2026-31431",
@@ -46282,6 +47026,7 @@
46282
47026
  "CVE-2025-48928",
46283
47027
  "CVE-2025-49113",
46284
47028
  "CVE-2025-4919",
47029
+ "CVE-2025-49596",
46285
47030
  "CVE-2025-49704",
46286
47031
  "CVE-2025-49706",
46287
47032
  "CVE-2025-49844",
@@ -46370,6 +47115,7 @@
46370
47115
  "CVE-2026-24423",
46371
47116
  "CVE-2026-24858",
46372
47117
  "CVE-2026-25108",
47118
+ "CVE-2026-25592",
46373
47119
  "CVE-2026-3055",
46374
47120
  "CVE-2026-31431",
46375
47121
  "CVE-2026-31635",
@@ -46681,6 +47427,7 @@
46681
47427
  "CVE-2025-48928",
46682
47428
  "CVE-2025-49113",
46683
47429
  "CVE-2025-4919",
47430
+ "CVE-2025-49596",
46684
47431
  "CVE-2025-49704",
46685
47432
  "CVE-2025-49706",
46686
47433
  "CVE-2025-49844",
@@ -46769,6 +47516,7 @@
46769
47516
  "CVE-2026-24423",
46770
47517
  "CVE-2026-24858",
46771
47518
  "CVE-2026-25108",
47519
+ "CVE-2026-25592",
46772
47520
  "CVE-2026-3055",
46773
47521
  "CVE-2026-31431",
46774
47522
  "CVE-2026-31635",
@@ -47019,9 +47767,11 @@
47019
47767
  "CVE-2025-34291",
47020
47768
  "CVE-2025-38352",
47021
47769
  "CVE-2025-43300",
47770
+ "CVE-2025-49596",
47022
47771
  "CVE-2025-49844",
47023
47772
  "CVE-2025-53773",
47024
47773
  "CVE-2025-6965",
47774
+ "CVE-2026-25592",
47025
47775
  "CVE-2026-30615",
47026
47776
  "CVE-2026-30623",
47027
47777
  "CVE-2026-31431",
@@ -47883,6 +48633,7 @@
47883
48633
  "CVE-2025-48928",
47884
48634
  "CVE-2025-49113",
47885
48635
  "CVE-2025-4919",
48636
+ "CVE-2025-49596",
47886
48637
  "CVE-2025-49704",
47887
48638
  "CVE-2025-49706",
47888
48639
  "CVE-2025-49844",
@@ -47971,6 +48722,7 @@
47971
48722
  "CVE-2026-24423",
47972
48723
  "CVE-2026-24858",
47973
48724
  "CVE-2026-25108",
48725
+ "CVE-2026-25592",
47974
48726
  "CVE-2026-3055",
47975
48727
  "CVE-2026-31431",
47976
48728
  "CVE-2026-31635",
@@ -48285,9 +49037,11 @@
48285
49037
  "CVE-2025-34291",
48286
49038
  "CVE-2025-38352",
48287
49039
  "CVE-2025-43300",
49040
+ "CVE-2025-49596",
48288
49041
  "CVE-2025-49844",
48289
49042
  "CVE-2025-53773",
48290
49043
  "CVE-2025-6965",
49044
+ "CVE-2026-25592",
48291
49045
  "CVE-2026-30615",
48292
49046
  "CVE-2026-30623",
48293
49047
  "CVE-2026-31431",
@@ -48678,6 +49432,7 @@
48678
49432
  "CVE-2025-48928",
48679
49433
  "CVE-2025-49113",
48680
49434
  "CVE-2025-4919",
49435
+ "CVE-2025-49596",
48681
49436
  "CVE-2025-49704",
48682
49437
  "CVE-2025-49706",
48683
49438
  "CVE-2025-49844",
@@ -48768,6 +49523,7 @@
48768
49523
  "CVE-2026-24423",
48769
49524
  "CVE-2026-24858",
48770
49525
  "CVE-2026-25108",
49526
+ "CVE-2026-25592",
48771
49527
  "CVE-2026-3055",
48772
49528
  "CVE-2026-30615",
48773
49529
  "CVE-2026-30623",
@@ -49095,8 +49851,10 @@
49095
49851
  "CVE-2025-34291",
49096
49852
  "CVE-2025-38352",
49097
49853
  "CVE-2025-43300",
49854
+ "CVE-2025-49596",
49098
49855
  "CVE-2025-49844",
49099
49856
  "CVE-2025-53773",
49857
+ "CVE-2026-25592",
49100
49858
  "CVE-2026-30615",
49101
49859
  "CVE-2026-31431",
49102
49860
  "CVE-2026-34926",
@@ -50009,9 +50767,11 @@
50009
50767
  "CVE-2025-34291",
50010
50768
  "CVE-2025-38352",
50011
50769
  "CVE-2025-43300",
50770
+ "CVE-2025-49596",
50012
50771
  "CVE-2025-49844",
50013
50772
  "CVE-2025-53773",
50014
50773
  "CVE-2025-6965",
50774
+ "CVE-2026-25592",
50015
50775
  "CVE-2026-30615",
50016
50776
  "CVE-2026-30623",
50017
50777
  "CVE-2026-31431",
@@ -50083,6 +50843,8 @@
50083
50843
  "CVE-2025-34291",
50084
50844
  "CVE-2025-38352",
50085
50845
  "CVE-2025-43300",
50846
+ "CVE-2025-49596",
50847
+ "CVE-2026-25592",
50086
50848
  "CVE-2026-31431",
50087
50849
  "CVE-2026-34926",
50088
50850
  "CVE-2026-39884",
@@ -50228,9 +50990,11 @@
50228
50990
  "CVE-2025-1094",
50229
50991
  "CVE-2025-11837",
50230
50992
  "CVE-2025-34291",
50993
+ "CVE-2025-49596",
50231
50994
  "CVE-2025-53773",
50232
50995
  "CVE-2025-6965",
50233
50996
  "CVE-2026-22778",
50997
+ "CVE-2026-25592",
50234
50998
  "CVE-2026-30623",
50235
50999
  "CVE-2026-32202",
50236
51000
  "CVE-2026-33825",
@@ -50723,6 +51487,7 @@
50723
51487
  "CVE-2025-48928",
50724
51488
  "CVE-2025-49113",
50725
51489
  "CVE-2025-4919",
51490
+ "CVE-2025-49596",
50726
51491
  "CVE-2025-49704",
50727
51492
  "CVE-2025-49706",
50728
51493
  "CVE-2025-5086",
@@ -50806,6 +51571,7 @@
50806
51571
  "CVE-2026-24423",
50807
51572
  "CVE-2026-24858",
50808
51573
  "CVE-2026-25108",
51574
+ "CVE-2026-25592",
50809
51575
  "CVE-2026-3055",
50810
51576
  "CVE-2026-30615",
50811
51577
  "CVE-2026-31431",
@@ -51055,9 +51821,11 @@
51055
51821
  "CVE-2025-34291",
51056
51822
  "CVE-2025-38352",
51057
51823
  "CVE-2025-43300",
51824
+ "CVE-2025-49596",
51058
51825
  "CVE-2025-49844",
51059
51826
  "CVE-2025-53773",
51060
51827
  "CVE-2025-6965",
51828
+ "CVE-2026-25592",
51061
51829
  "CVE-2026-30615",
51062
51830
  "CVE-2026-30623",
51063
51831
  "CVE-2026-31431",
@@ -51324,10 +52092,12 @@
51324
52092
  "CVE-2025-14847",
51325
52093
  "CVE-2025-22226",
51326
52094
  "CVE-2025-34291",
52095
+ "CVE-2025-49596",
51327
52096
  "CVE-2025-53767",
51328
52097
  "CVE-2025-53773",
51329
52098
  "CVE-2025-6965",
51330
52099
  "CVE-2026-22778",
52100
+ "CVE-2026-25592",
51331
52101
  "CVE-2026-30615",
51332
52102
  "CVE-2026-30623",
51333
52103
  "CVE-2026-32202",