@blamejs/exceptd-skills 0.13.73 → 0.13.74

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +6 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +385 -0
  6. package/data/atlas-ttps.json +8 -2
  7. package/data/attack-techniques.json +4 -0
  8. package/data/cve-catalog.json +107 -0
  9. package/data/cwe-catalog.json +2 -0
  10. package/data/framework-control-gaps.json +8 -1
  11. package/data/zeroday-lessons.json +50 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/CHANGELOG.md CHANGED
@@ -1,5 +1,11 @@
1
1
  # Changelog
2
2
 
3
+ ## 0.13.74 — 2026-05-25
4
+
5
+ CVE catalog — MCP agent-tool trust: adds **CVE-2025-54136** (Check Point Research's "MCPoison"). Cursor trusts an MCP server entry when the user first approves it but never re-validates the `.cursor/mcp.json` entry on later edits — so an attacker who modifies that already-trusted entry (via a shared repository the victim pulls, or local access) gets their command (CWE-78) executed silently and persistently on every project open. This is AI-agent tool poisoning (ATLAS **AML.T0110**): a previously-approved tool mutated into a malicious one with no fresh consent. CVSS 8.8; fixed in Cursor 1.3; not KEV. RWEP P3 (30, per `lib/scoring.js`). CWE-78/829 + ATLAS AML.T0110/T0104 + ATT&CK T1059/T1195, global-first framework gaps, behavioral IoCs, and a zero-day lesson whose new control (NEW-CTRL-082) requires re-validating AI-agent tool configurations on change rather than trusting them indefinitely after first approval. CVE count 323 → 324.
6
+
7
+ Internal: the `doctor --signatures --shipped-tarball` round-trip test (npm pack + extract + Ed25519 verify) was intermittently exceeding its 30s cap on the macOS CI runner; it now uses a generous timeout to stop the spurious failure.
8
+
3
9
  ## 0.13.73 — 2026-05-25
4
10
 
5
11
  CVE catalog — MCP toolchain: adds **CVE-2025-49596**, the remote code execution in Anthropic's official MCP Inspector. The Inspector client and proxy have no authentication between them, so an unauthenticated request that reaches the browser-reachable proxy (loopback / 0.0.0.0) launches MCP commands over stdio — a malicious web page a developer visits drives it cross-origin (the 0.0.0.0-day / DNS-rebinding class), yielding RCE on the developer's machine. CWE-306; GitHub CNA CVSS v4.0 9.4 (NVD has not assessed v3.1; the catalog records a conservative v3.1 estimate of 8.3); fixed in `@modelcontextprotocol/inspector` 0.14.1. The framework-gap notes name the real exposure: MCP — the connective tissue of the agent ecosystem — concentrates RCE risk in its toolchain, which sits outside the managed vulnerability program on developer workstations. RWEP P3 (30): not KEV, no confirmed in-the-wild exploitation, patched at disclosure. CWE-306/352/346 + ATT&CK T1190/T1059, global-first framework gaps, behavioral IoCs, and a zero-day lesson whose new control (NEW-CTRL-081) requires locally-bound AI/MCP dev services to authenticate and origin-validate rather than trust loopback reachability. CVE count 322 → 323.
package/data/_indexes/_meta.json CHANGED
@@ -1,21 +1,21 @@
1
1
  {
2
2
  "schema_version": "1.1.0",
3
- "generated_at": "2026-05-25T13:30:00.326Z",
3
+ "generated_at": "2026-05-25T13:48:30.941Z",
4
4
  "generator": "scripts/build-indexes.js",
5
5
  "source_count": 54,
6
6
  "source_hashes": {
7
- "manifest.json": "20fd726ecbe98bda6e3d898f27b0d6bc1b93c9d083c1029af01b5c328d980c3a",
8
- "data/atlas-ttps.json": "eb47b6ad6b38e9a785a36769897adc8987fbc27a4b0b77ea4bed9c6d2aba0f3c",
9
- "data/attack-techniques.json": "7ab814c8fefab193b9a42ec7f9b62148401824cb127d62bd5a326660837a0e29",
10
- "data/cve-catalog.json": "16e879393e25197612d4b349b69ce6862e5230f50b7cba263bc19ed3de5dbe50",
11
- "data/cwe-catalog.json": "a90fcc2780afa8a3dbec6faed95aec7021bb6cf270136fdc3867030f5dedb38a",
7
+ "manifest.json": "68f6f585e34c102277f37433c8915186457670ca1ea75895dc824f1039c0a396",
8
+ "data/atlas-ttps.json": "07e28f5fe196d8e16082968ce36e4d33b720a024a9c00afd10ddc076a8ae8935",
9
+ "data/attack-techniques.json": "ca1702aa5bfe165a80c156eb7637a51f4e69021261609966636ff03423c35b80",
10
+ "data/cve-catalog.json": "cf89e408a932c58f38c467d2cb4167168802236698aaf21202247375e04334ab",
11
+ "data/cwe-catalog.json": "9841de079a917cd08ee7261ec7ffea296602e6e3de031a0828166242bbbd21e3",
12
12
  "data/d3fend-catalog.json": "9a54bccb9f24f84b32024216cc3f53819a053721ac8ab43c326859e68fc0ffaf",
13
13
  "data/dlp-controls.json": "d2406c482dddd30e49203879999dc4b3a7fd4d0494d6a61d86b91ee76415df19",
14
14
  "data/exploit-availability.json": "ec2656f0d9a893610e27b43eb6035fe9b18e057c9f6dfaac7e7d4959bbcbb795",
15
- "data/framework-control-gaps.json": "4d6c6c85503e0565a0ed7c0dbf665861ba799251f569ba879c20741e0f1afc83",
15
+ "data/framework-control-gaps.json": "3d6db3a2ab6aa871d38647f1241b998b6b5d5c58437e48430878d6ab72161a69",
16
16
  "data/global-frameworks.json": "9ba563a85f7f8d6c3c957de64945e20925a89d0ed6ea6fc561cf093811acf558",
17
17
  "data/rfc-references.json": "66ef2e1f444a2cf0c2700a754f0a66030bb8a91d9e68394b9537ea1fe8b904fe",
18
- "data/zeroday-lessons.json": "ac2ac160bfc823b2657e40e3996ca469ff214d1f91d38512b4d297e5c35eedb0",
18
+ "data/zeroday-lessons.json": "b136df81eb51a667d28b85b3088fff5d284eca88c35ffce8bfaa70f67feeb614",
19
19
  "skills/kernel-lpe-triage/skill.md": "08b3e9815ba481c57c80f5fc0ccbf5bb7cbb41f570c235ba6ff9596b8c07354d",
20
20
  "skills/ai-attack-surface/skill.md": "c4c1eb22a38ca7a959b5725222bab8fbd4f4044a548a93f3e288e6f698334b72",
21
21
  "skills/mcp-agent-trust/skill.md": "89ac89084391d2341b6513fefb1be2d36b93de1c130f057696219c1c59440f13",
@@ -72,7 +72,7 @@
72
72
  "dlp_refs": 0
73
73
  },
74
74
  "trigger_table_entries": 538,
75
- "chains_cve_entries": 312,
75
+ "chains_cve_entries": 313,
76
76
  "chains_cwe_entries": 171,
77
77
  "jurisdictions_indexed": 29,
78
78
  "handoff_dag_nodes": 42,
package/data/_indexes/activity-feed.json CHANGED
@@ -149,7 +149,7 @@
149
149
  "artifact": "data/cve-catalog.json",
150
150
  "path": "data/cve-catalog.json",
151
151
  "schema_version": "1.0.0",
152
- "entry_count": 323
152
+ "entry_count": 324
153
153
  },
154
154
  {
155
155
  "date": "2026-05-18",
@@ -165,7 +165,7 @@
165
165
  "artifact": "data/zeroday-lessons.json",
166
166
  "path": "data/zeroday-lessons.json",
167
167
  "schema_version": "1.1.0",
168
- "entry_count": 318
168
+ "entry_count": 319
169
169
  },
170
170
  {
171
171
  "date": "2026-05-17",
package/data/_indexes/catalog-summaries.json CHANGED
@@ -62,7 +62,7 @@
62
62
  "rebuild_after_days": 365,
63
63
  "note": "Per-entry last_verified governs decay. Skills depending on this catalog must check entry freshness before high-stakes use."
64
64
  },
65
- "entry_count": 323,
65
+ "entry_count": 324,
66
66
  "sample_keys": [
67
67
  "CVE-2025-53773",
68
68
  "CVE-2026-30615",
@@ -238,7 +238,7 @@
238
238
  "rebuild_after_days": 365,
239
239
  "note": "Per-entry last_verified governs decay. Skills depending on this catalog must check entry freshness before high-stakes use."
240
240
  },
241
- "entry_count": 318,
241
+ "entry_count": 319,
242
242
  "sample_keys": [
243
243
  "CVE-2026-31431",
244
244
  "CVE-2025-53773",
package/data/_indexes/chains.json CHANGED
@@ -16973,6 +16973,368 @@
16973
16973
  ]
16974
16974
  }
16975
16975
  },
16976
+ "CVE-2025-54136": {
16977
+ "name": "Cursor MCPoison — Persistent RCE via Modified Already-Trusted MCP Config",
16978
+ "rwep": 30,
16979
+ "cvss": 8.8,
16980
+ "cisa_kev": false,
16981
+ "epss_score": null,
16982
+ "referencing_skills": [
16983
+ "kernel-lpe-triage",
16984
+ "ai-attack-surface",
16985
+ "compliance-theater",
16986
+ "attack-surface-pentest",
16987
+ "ot-ics-security",
16988
+ "coordinated-vuln-disclosure",
16989
+ "sector-energy"
16990
+ ],
16991
+ "chain": {
16992
+ "cwes": [
16993
+ {
16994
+ "id": "CWE-1037",
16995
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
16996
+ "category": "Hardware / Side Channel"
16997
+ },
16998
+ {
16999
+ "id": "CWE-1039",
17000
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
17001
+ "category": "AI/ML"
17002
+ },
17003
+ {
17004
+ "id": "CWE-125",
17005
+ "name": "Out-of-bounds Read",
17006
+ "category": "Memory Safety"
17007
+ },
17008
+ {
17009
+ "id": "CWE-1357",
17010
+ "name": "Reliance on Insufficiently Trustworthy Component",
17011
+ "category": "Supply Chain"
17012
+ },
17013
+ {
17014
+ "id": "CWE-1395",
17015
+ "name": "Dependency on Vulnerable Third-Party Component",
17016
+ "category": "Supply Chain"
17017
+ },
17018
+ {
17019
+ "id": "CWE-1426",
17020
+ "name": "Improper Validation of Generative AI Output",
17021
+ "category": "AI/ML"
17022
+ },
17023
+ {
17024
+ "id": "CWE-22",
17025
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
17026
+ "category": "Path/Resource"
17027
+ },
17028
+ {
17029
+ "id": "CWE-269",
17030
+ "name": "Improper Privilege Management",
17031
+ "category": "Authorization"
17032
+ },
17033
+ {
17034
+ "id": "CWE-287",
17035
+ "name": "Improper Authentication",
17036
+ "category": "Authentication"
17037
+ },
17038
+ {
17039
+ "id": "CWE-306",
17040
+ "name": "Missing Authentication for Critical Function",
17041
+ "category": "Authentication"
17042
+ },
17043
+ {
17044
+ "id": "CWE-352",
17045
+ "name": "Cross-Site Request Forgery (CSRF)",
17046
+ "category": "Session"
17047
+ },
17048
+ {
17049
+ "id": "CWE-362",
17050
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
17051
+ "category": "Concurrency"
17052
+ },
17053
+ {
17054
+ "id": "CWE-416",
17055
+ "name": "Use After Free",
17056
+ "category": "Memory Safety"
17057
+ },
17058
+ {
17059
+ "id": "CWE-434",
17060
+ "name": "Unrestricted Upload of File with Dangerous Type",
17061
+ "category": "File Handling"
17062
+ },
17063
+ {
17064
+ "id": "CWE-672",
17065
+ "name": "Operation on a Resource after Expiration or Release",
17066
+ "category": "Memory Safety"
17067
+ },
17068
+ {
17069
+ "id": "CWE-732",
17070
+ "name": "Incorrect Permission Assignment for Critical Resource",
17071
+ "category": "Authorization"
17072
+ },
17073
+ {
17074
+ "id": "CWE-78",
17075
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
17076
+ "category": "Injection"
17077
+ },
17078
+ {
17079
+ "id": "CWE-787",
17080
+ "name": "Out-of-bounds Write",
17081
+ "category": "Memory Safety"
17082
+ },
17083
+ {
17084
+ "id": "CWE-79",
17085
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
17086
+ "category": "Injection"
17087
+ },
17088
+ {
17089
+ "id": "CWE-798",
17090
+ "name": "Use of Hard-coded Credentials",
17091
+ "category": "Credentials"
17092
+ },
17093
+ {
17094
+ "id": "CWE-89",
17095
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
17096
+ "category": "Injection"
17097
+ },
17098
+ {
17099
+ "id": "CWE-918",
17100
+ "name": "Server-Side Request Forgery (SSRF)",
17101
+ "category": "Network"
17102
+ },
17103
+ {
17104
+ "id": "CWE-94",
17105
+ "name": "Improper Control of Generation of Code (Code Injection)",
17106
+ "category": "Injection"
17107
+ }
17108
+ ],
17109
+ "atlas": [
17110
+ {
17111
+ "id": "AML.T0010",
17112
+ "name": "ML Supply Chain Compromise",
17113
+ "tactic": "Initial Access"
17114
+ },
17115
+ {
17116
+ "id": "AML.T0016",
17117
+ "name": "Obtain Capabilities: Develop Capabilities",
17118
+ "tactic": "Resource Development"
17119
+ },
17120
+ {
17121
+ "id": "AML.T0017",
17122
+ "name": "Discover ML Model Ontology",
17123
+ "tactic": "Discovery"
17124
+ },
17125
+ {
17126
+ "id": "AML.T0018",
17127
+ "name": "Backdoor ML Model",
17128
+ "tactic": "Persistence"
17129
+ },
17130
+ {
17131
+ "id": "AML.T0020",
17132
+ "name": "Poison Training Data",
17133
+ "tactic": "ML Attack Staging"
17134
+ },
17135
+ {
17136
+ "id": "AML.T0043",
17137
+ "name": "Craft Adversarial Data",
17138
+ "tactic": "ML Attack Staging"
17139
+ },
17140
+ {
17141
+ "id": "AML.T0051",
17142
+ "name": "LLM Prompt Injection",
17143
+ "tactic": "Execution"
17144
+ },
17145
+ {
17146
+ "id": "AML.T0054",
17147
+ "name": "LLM Jailbreak",
17148
+ "tactic": "Defense Evasion"
17149
+ },
17150
+ {
17151
+ "id": "AML.T0096",
17152
+ "name": "AI API as Covert C2 Channel",
17153
+ "tactic": "Command and Control"
17154
+ }
17155
+ ],
17156
+ "d3fend": [
17157
+ {
17158
+ "id": "D3-ASLR",
17159
+ "name": "Address Space Layout Randomization",
17160
+ "tactic": "Harden"
17161
+ },
17162
+ {
17163
+ "id": "D3-CSPP",
17164
+ "name": "Client-server Payload Profiling",
17165
+ "tactic": "Detect"
17166
+ },
17167
+ {
17168
+ "id": "D3-EAL",
17169
+ "name": "Executable Allowlisting",
17170
+ "tactic": "Harden"
17171
+ },
17172
+ {
17173
+ "id": "D3-IOPR",
17174
+ "name": "Input/Output Profiling Resource",
17175
+ "tactic": "Detect"
17176
+ },
17177
+ {
17178
+ "id": "D3-NTA",
17179
+ "name": "Network Traffic Analysis",
17180
+ "tactic": "Detect"
17181
+ },
17182
+ {
17183
+ "id": "D3-PHRA",
17184
+ "name": "Process Hardware Resource Access",
17185
+ "tactic": "Isolate"
17186
+ },
17187
+ {
17188
+ "id": "D3-PSEP",
17189
+ "name": "Process Segment Execution Prevention",
17190
+ "tactic": "Harden"
17191
+ }
17192
+ ],
17193
+ "framework_gaps": [
17194
+ {
17195
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
17196
+ "framework": "ALL",
17197
+ "control_name": "AI Pipeline Integrity"
17198
+ },
17199
+ {
17200
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
17201
+ "framework": "ALL",
17202
+ "control_name": "Prompt Injection as Access Control Failure"
17203
+ },
17204
+ {
17205
+ "id": "CIS-Controls-v8-Control7",
17206
+ "framework": "CIS Controls v8",
17207
+ "control_name": "Continuous Vulnerability Management"
17208
+ },
17209
+ {
17210
+ "id": "CMMC-2.0-Level-2",
17211
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
17212
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
17213
+ },
17214
+ {
17215
+ "id": "FedRAMP-Rev5-Moderate",
17216
+ "framework": "FedRAMP Rev 5 Moderate",
17217
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
17218
+ },
17219
+ {
17220
+ "id": "IEC-62443-3-3",
17221
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
17222
+ "control_name": "System security requirements and security levels"
17223
+ },
17224
+ {
17225
+ "id": "ISO-27001-2022-A.8.28",
17226
+ "framework": "ISO/IEC 27001:2022",
17227
+ "control_name": "Secure coding"
17228
+ },
17229
+ {
17230
+ "id": "ISO-27001-2022-A.8.8",
17231
+ "framework": "ISO/IEC 27001:2022",
17232
+ "control_name": "Management of technical vulnerabilities"
17233
+ },
17234
+ {
17235
+ "id": "ISO-IEC-23894-2023-clause-7",
17236
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
17237
+ "control_name": "AI risk management process"
17238
+ },
17239
+ {
17240
+ "id": "NERC-CIP-007-6-R4",
17241
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
17242
+ "control_name": "Security event monitoring"
17243
+ },
17244
+ {
17245
+ "id": "NIS2-Art21-patch-management",
17246
+ "framework": "EU NIS2 Directive",
17247
+ "control_name": "Vulnerability handling and disclosure"
17248
+ },
17249
+ {
17250
+ "id": "NIST-800-115",
17251
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
17252
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
17253
+ },
17254
+ {
17255
+ "id": "NIST-800-218-SSDF",
17256
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
17257
+ "control_name": "Secure Software Development Framework"
17258
+ },
17259
+ {
17260
+ "id": "NIST-800-53-AC-2",
17261
+ "framework": "NIST SP 800-53 Rev 5",
17262
+ "control_name": "Account Management"
17263
+ },
17264
+ {
17265
+ "id": "NIST-800-53-SC-8",
17266
+ "framework": "NIST SP 800-53 Rev 5",
17267
+ "control_name": "Transmission Confidentiality and Integrity"
17268
+ },
17269
+ {
17270
+ "id": "NIST-800-53-SI-2",
17271
+ "framework": "NIST SP 800-53 Rev 5",
17272
+ "control_name": "Flaw Remediation"
17273
+ },
17274
+ {
17275
+ "id": "NIST-800-53-SI-3",
17276
+ "framework": "NIST SP 800-53 Rev 5",
17277
+ "control_name": "Malicious Code Protection"
17278
+ },
17279
+ {
17280
+ "id": "NIST-800-82r3",
17281
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
17282
+ "control_name": "Guide to Operational Technology (OT) Security"
17283
+ },
17284
+ {
17285
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
17286
+ "framework": "OWASP Top 10 for LLM Applications 2025",
17287
+ "control_name": "Prompt Injection"
17288
+ },
17289
+ {
17290
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
17291
+ "framework": "OWASP Top 10 for LLM Applications 2025",
17292
+ "control_name": "Sensitive Information Disclosure"
17293
+ },
17294
+ {
17295
+ "id": "OWASP-Pen-Testing-Guide-v5",
17296
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
17297
+ "control_name": "Web application penetration testing methodology"
17298
+ },
17299
+ {
17300
+ "id": "PCI-DSS-4.0-6.3.3",
17301
+ "framework": "PCI DSS 4.0",
17302
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
17303
+ },
17304
+ {
17305
+ "id": "PTES-Pre-engagement",
17306
+ "framework": "Penetration Testing Execution Standard (PTES)",
17307
+ "control_name": "Pre-engagement Interactions"
17308
+ },
17309
+ {
17310
+ "id": "SOC2-CC6-logical-access",
17311
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
17312
+ "control_name": "Logical and Physical Access Controls"
17313
+ },
17314
+ {
17315
+ "id": "SOC2-CC9-vendor-management",
17316
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
17317
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
17318
+ }
17319
+ ],
17320
+ "attack_refs": [
17321
+ "T0855",
17322
+ "T0883",
17323
+ "T1059",
17324
+ "T1068",
17325
+ "T1078",
17326
+ "T1133",
17327
+ "T1190",
17328
+ "T1548.001",
17329
+ "T1566"
17330
+ ],
17331
+ "rfc_refs": [
17332
+ "RFC-4301",
17333
+ "RFC-4303",
17334
+ "RFC-7296"
17335
+ ]
17336
+ }
17337
+ },
16976
17338
  "CVE-2026-41091": {
16977
17339
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
16978
17340
  "rwep": 45,
@@ -43361,6 +43723,7 @@
43361
43723
  "CVE-2025-49596",
43362
43724
  "CVE-2025-49844",
43363
43725
  "CVE-2025-53773",
43726
+ "CVE-2025-54136",
43364
43727
  "CVE-2025-6965",
43365
43728
  "CVE-2026-25592",
43366
43729
  "CVE-2026-30615",
@@ -43707,6 +44070,7 @@
43707
44070
  "CVE-2025-38352",
43708
44071
  "CVE-2025-43300",
43709
44072
  "CVE-2025-49596",
44073
+ "CVE-2025-54136",
43710
44074
  "CVE-2025-6965",
43711
44075
  "CVE-2026-25592",
43712
44076
  "CVE-2026-30623",
@@ -43848,6 +44212,7 @@
43848
44212
  "CVE-2025-38352",
43849
44213
  "CVE-2025-43300",
43850
44214
  "CVE-2025-49596",
44215
+ "CVE-2025-54136",
43851
44216
  "CVE-2025-6965",
43852
44217
  "CVE-2026-25592",
43853
44218
  "CVE-2026-30623",
@@ -44003,6 +44368,7 @@
44003
44368
  "CVE-2025-38352",
44004
44369
  "CVE-2025-43300",
44005
44370
  "CVE-2025-49596",
44371
+ "CVE-2025-54136",
44006
44372
  "CVE-2025-6965",
44007
44373
  "CVE-2026-25592",
44008
44374
  "CVE-2026-30623",
@@ -44263,6 +44629,7 @@
44263
44629
  "CVE-2025-49596",
44264
44630
  "CVE-2025-49844",
44265
44631
  "CVE-2025-53773",
44632
+ "CVE-2025-54136",
44266
44633
  "CVE-2025-6965",
44267
44634
  "CVE-2026-22778",
44268
44635
  "CVE-2026-25592",
@@ -44581,6 +44948,7 @@
44581
44948
  "CVE-2025-53690",
44582
44949
  "CVE-2025-53770",
44583
44950
  "CVE-2025-54068",
44951
+ "CVE-2025-54136",
44584
44952
  "CVE-2025-5419",
44585
44953
  "CVE-2025-54236",
44586
44954
  "CVE-2025-54253",
@@ -45273,6 +45641,7 @@
45273
45641
  "CVE-2025-49596",
45274
45642
  "CVE-2025-49844",
45275
45643
  "CVE-2025-53773",
45644
+ "CVE-2025-54136",
45276
45645
  "CVE-2025-6965",
45277
45646
  "CVE-2026-25592",
45278
45647
  "CVE-2026-30615",
@@ -45853,6 +46222,7 @@
45853
46222
  "CVE-2025-49596",
45854
46223
  "CVE-2025-49844",
45855
46224
  "CVE-2025-53773",
46225
+ "CVE-2025-54136",
45856
46226
  "CVE-2025-6965",
45857
46227
  "CVE-2026-25592",
45858
46228
  "CVE-2026-30615",
@@ -46068,6 +46438,7 @@
46068
46438
  "CVE-2025-43300",
46069
46439
  "CVE-2025-49596",
46070
46440
  "CVE-2025-53773",
46441
+ "CVE-2025-54136",
46071
46442
  "CVE-2026-25592",
46072
46443
  "CVE-2026-30615",
46073
46444
  "CVE-2026-31431",
@@ -46715,6 +47086,7 @@
46715
47086
  "CVE-2025-49596",
46716
47087
  "CVE-2025-49844",
46717
47088
  "CVE-2025-53773",
47089
+ "CVE-2025-54136",
46718
47090
  "CVE-2025-6965",
46719
47091
  "CVE-2026-25592",
46720
47092
  "CVE-2026-30615",
@@ -47036,6 +47408,7 @@
47036
47408
  "CVE-2025-53690",
47037
47409
  "CVE-2025-53770",
47038
47410
  "CVE-2025-54068",
47411
+ "CVE-2025-54136",
47039
47412
  "CVE-2025-5419",
47040
47413
  "CVE-2025-54236",
47041
47414
  "CVE-2025-54253",
@@ -47437,6 +47810,7 @@
47437
47810
  "CVE-2025-53690",
47438
47811
  "CVE-2025-53770",
47439
47812
  "CVE-2025-54068",
47813
+ "CVE-2025-54136",
47440
47814
  "CVE-2025-5419",
47441
47815
  "CVE-2025-54236",
47442
47816
  "CVE-2025-54253",
@@ -47770,6 +48144,7 @@
47770
48144
  "CVE-2025-49596",
47771
48145
  "CVE-2025-49844",
47772
48146
  "CVE-2025-53773",
48147
+ "CVE-2025-54136",
47773
48148
  "CVE-2025-6965",
47774
48149
  "CVE-2026-25592",
47775
48150
  "CVE-2026-30615",
@@ -48643,6 +49018,7 @@
48643
49018
  "CVE-2025-53690",
48644
49019
  "CVE-2025-53770",
48645
49020
  "CVE-2025-54068",
49021
+ "CVE-2025-54136",
48646
49022
  "CVE-2025-5419",
48647
49023
  "CVE-2025-54236",
48648
49024
  "CVE-2025-54253",
@@ -49040,6 +49416,7 @@
49040
49416
  "CVE-2025-49596",
49041
49417
  "CVE-2025-49844",
49042
49418
  "CVE-2025-53773",
49419
+ "CVE-2025-54136",
49043
49420
  "CVE-2025-6965",
49044
49421
  "CVE-2026-25592",
49045
49422
  "CVE-2026-30615",
@@ -49443,6 +49820,7 @@
49443
49820
  "CVE-2025-53770",
49444
49821
  "CVE-2025-53773",
49445
49822
  "CVE-2025-54068",
49823
+ "CVE-2025-54136",
49446
49824
  "CVE-2025-5419",
49447
49825
  "CVE-2025-54236",
49448
49826
  "CVE-2025-54253",
@@ -49854,6 +50232,7 @@
49854
50232
  "CVE-2025-49596",
49855
50233
  "CVE-2025-49844",
49856
50234
  "CVE-2025-53773",
50235
+ "CVE-2025-54136",
49857
50236
  "CVE-2026-25592",
49858
50237
  "CVE-2026-30615",
49859
50238
  "CVE-2026-31431",
@@ -50770,6 +51149,7 @@
50770
51149
  "CVE-2025-49596",
50771
51150
  "CVE-2025-49844",
50772
51151
  "CVE-2025-53773",
51152
+ "CVE-2025-54136",
50773
51153
  "CVE-2025-6965",
50774
51154
  "CVE-2026-25592",
50775
51155
  "CVE-2026-30615",
@@ -50844,6 +51224,7 @@
50844
51224
  "CVE-2025-38352",
50845
51225
  "CVE-2025-43300",
50846
51226
  "CVE-2025-49596",
51227
+ "CVE-2025-54136",
50847
51228
  "CVE-2026-25592",
50848
51229
  "CVE-2026-31431",
50849
51230
  "CVE-2026-34926",
@@ -50992,6 +51373,7 @@
50992
51373
  "CVE-2025-34291",
50993
51374
  "CVE-2025-49596",
50994
51375
  "CVE-2025-53773",
51376
+ "CVE-2025-54136",
50995
51377
  "CVE-2025-6965",
50996
51378
  "CVE-2026-22778",
50997
51379
  "CVE-2026-25592",
@@ -51496,6 +51878,7 @@
51496
51878
  "CVE-2025-53690",
51497
51879
  "CVE-2025-53770",
51498
51880
  "CVE-2025-54068",
51881
+ "CVE-2025-54136",
51499
51882
  "CVE-2025-5419",
51500
51883
  "CVE-2025-54236",
51501
51884
  "CVE-2025-54253",
@@ -51824,6 +52207,7 @@
51824
52207
  "CVE-2025-49596",
51825
52208
  "CVE-2025-49844",
51826
52209
  "CVE-2025-53773",
52210
+ "CVE-2025-54136",
51827
52211
  "CVE-2025-6965",
51828
52212
  "CVE-2026-25592",
51829
52213
  "CVE-2026-30615",
@@ -52095,6 +52479,7 @@
52095
52479
  "CVE-2025-49596",
52096
52480
  "CVE-2025-53767",
52097
52481
  "CVE-2025-53773",
52482
+ "CVE-2025-54136",
52098
52483
  "CVE-2025-6965",
52099
52484
  "CVE-2026-22778",
52100
52485
  "CVE-2026-25592",
package/data/atlas-ttps.json CHANGED
@@ -1037,7 +1037,10 @@
1037
1037
  ],
1038
1038
  "reference_url": "https://atlas.mitre.org/techniques/AML.T0104",
1039
1039
  "stix_id": "attack-pattern--04842d98-bb69-586e-9765-6ff1f56ef722",
1040
- "is_subtechnique": false
1040
+ "is_subtechnique": false,
1041
+ "cve_refs": [
1042
+ "CVE-2025-54136"
1043
+ ]
1041
1044
  },
1042
1045
  "AML.T0105": {
1043
1046
  "id": "AML.T0105",
@@ -2379,7 +2382,10 @@
2379
2382
  "ATLAS"
2380
2383
  ],
2381
2384
  "stix_id": "attack-pattern--b1b2cc5a-7312-5f26-93d3-8b8ee1baf97d",
2382
- "is_subtechnique": false
2385
+ "is_subtechnique": false,
2386
+ "cve_refs": [
2387
+ "CVE-2025-54136"
2388
+ ]
2383
2389
  },
2384
2390
  "AML.T0111": {
2385
2391
  "id": "AML.T0111",
package/data/attack-techniques.json CHANGED
@@ -274,6 +274,7 @@
274
274
  "CVE-2025-34291",
275
275
  "CVE-2025-49596",
276
276
  "CVE-2025-53773",
277
+ "CVE-2025-54136",
277
278
  "CVE-2025-55319",
278
279
  "CVE-2025-68664",
279
280
  "CVE-2026-22778",
@@ -1003,6 +1004,9 @@
1003
1004
  "description": "Adversaries may manipulate products or product delivery mechanisms prior to receipt by a final consumer for the purpose of data or system compromise.",
1004
1005
  "tactic": [
1005
1006
  "Initial Access"
1007
+ ],
1008
+ "cve_refs": [
1009
+ "CVE-2025-54136"
1006
1010
  ]
1007
1011
  },
1008
1012
  "T1195.001": {