@blamejs/exceptd-skills 0.13.76 → 0.13.77

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (13) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +8 -8
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +659 -0
  6. package/data/attack-techniques.json +3 -0
  7. package/data/cve-catalog.json +208 -0
  8. package/data/cwe-catalog.json +4 -1
  9. package/data/framework-control-gaps.json +19 -5
  10. package/data/zeroday-lessons.json +100 -0
  11. package/manifest.json +44 -44
  12. package/package.json +2 -2
  13. package/sbom.cdx.json +23 -23
package/data/_indexes/chains.json CHANGED
@@ -19869,6 +19869,622 @@
19869
19869
  ]
19870
19870
  }
19871
19871
  },
19872
+ "CVE-2026-26015": {
19873
+ "name": "DocsGPT MCP stdio Unauthenticated Remote Code Execution",
19874
+ "rwep": 27,
19875
+ "cvss": 9.8,
19876
+ "cisa_kev": false,
19877
+ "epss_score": null,
19878
+ "referencing_skills": [
19879
+ "kernel-lpe-triage",
19880
+ "ai-attack-surface",
19881
+ "compliance-theater",
19882
+ "attack-surface-pentest",
19883
+ "ot-ics-security",
19884
+ "coordinated-vuln-disclosure",
19885
+ "sector-energy"
19886
+ ],
19887
+ "chain": {
19888
+ "cwes": [
19889
+ {
19890
+ "id": "CWE-1037",
19891
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
19892
+ "category": "Hardware / Side Channel"
19893
+ },
19894
+ {
19895
+ "id": "CWE-1039",
19896
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
19897
+ "category": "AI/ML"
19898
+ },
19899
+ {
19900
+ "id": "CWE-125",
19901
+ "name": "Out-of-bounds Read",
19902
+ "category": "Memory Safety"
19903
+ },
19904
+ {
19905
+ "id": "CWE-1357",
19906
+ "name": "Reliance on Insufficiently Trustworthy Component",
19907
+ "category": "Supply Chain"
19908
+ },
19909
+ {
19910
+ "id": "CWE-1395",
19911
+ "name": "Dependency on Vulnerable Third-Party Component",
19912
+ "category": "Supply Chain"
19913
+ },
19914
+ {
19915
+ "id": "CWE-1426",
19916
+ "name": "Improper Validation of Generative AI Output",
19917
+ "category": "AI/ML"
19918
+ },
19919
+ {
19920
+ "id": "CWE-22",
19921
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
19922
+ "category": "Path/Resource"
19923
+ },
19924
+ {
19925
+ "id": "CWE-269",
19926
+ "name": "Improper Privilege Management",
19927
+ "category": "Authorization"
19928
+ },
19929
+ {
19930
+ "id": "CWE-287",
19931
+ "name": "Improper Authentication",
19932
+ "category": "Authentication"
19933
+ },
19934
+ {
19935
+ "id": "CWE-306",
19936
+ "name": "Missing Authentication for Critical Function",
19937
+ "category": "Authentication"
19938
+ },
19939
+ {
19940
+ "id": "CWE-352",
19941
+ "name": "Cross-Site Request Forgery (CSRF)",
19942
+ "category": "Session"
19943
+ },
19944
+ {
19945
+ "id": "CWE-362",
19946
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
19947
+ "category": "Concurrency"
19948
+ },
19949
+ {
19950
+ "id": "CWE-416",
19951
+ "name": "Use After Free",
19952
+ "category": "Memory Safety"
19953
+ },
19954
+ {
19955
+ "id": "CWE-434",
19956
+ "name": "Unrestricted Upload of File with Dangerous Type",
19957
+ "category": "File Handling"
19958
+ },
19959
+ {
19960
+ "id": "CWE-672",
19961
+ "name": "Operation on a Resource after Expiration or Release",
19962
+ "category": "Memory Safety"
19963
+ },
19964
+ {
19965
+ "id": "CWE-732",
19966
+ "name": "Incorrect Permission Assignment for Critical Resource",
19967
+ "category": "Authorization"
19968
+ },
19969
+ {
19970
+ "id": "CWE-78",
19971
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
19972
+ "category": "Injection"
19973
+ },
19974
+ {
19975
+ "id": "CWE-787",
19976
+ "name": "Out-of-bounds Write",
19977
+ "category": "Memory Safety"
19978
+ },
19979
+ {
19980
+ "id": "CWE-79",
19981
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
19982
+ "category": "Injection"
19983
+ },
19984
+ {
19985
+ "id": "CWE-798",
19986
+ "name": "Use of Hard-coded Credentials",
19987
+ "category": "Credentials"
19988
+ },
19989
+ {
19990
+ "id": "CWE-89",
19991
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
19992
+ "category": "Injection"
19993
+ },
19994
+ {
19995
+ "id": "CWE-918",
19996
+ "name": "Server-Side Request Forgery (SSRF)",
19997
+ "category": "Network"
19998
+ },
19999
+ {
20000
+ "id": "CWE-94",
20001
+ "name": "Improper Control of Generation of Code (Code Injection)",
20002
+ "category": "Injection"
20003
+ }
20004
+ ],
20005
+ "atlas": [
20006
+ {
20007
+ "id": "AML.T0010",
20008
+ "name": "ML Supply Chain Compromise",
20009
+ "tactic": "Initial Access"
20010
+ },
20011
+ {
20012
+ "id": "AML.T0016",
20013
+ "name": "Obtain Capabilities: Develop Capabilities",
20014
+ "tactic": "Resource Development"
20015
+ },
20016
+ {
20017
+ "id": "AML.T0017",
20018
+ "name": "Discover ML Model Ontology",
20019
+ "tactic": "Discovery"
20020
+ },
20021
+ {
20022
+ "id": "AML.T0018",
20023
+ "name": "Backdoor ML Model",
20024
+ "tactic": "Persistence"
20025
+ },
20026
+ {
20027
+ "id": "AML.T0020",
20028
+ "name": "Poison Training Data",
20029
+ "tactic": "ML Attack Staging"
20030
+ },
20031
+ {
20032
+ "id": "AML.T0043",
20033
+ "name": "Craft Adversarial Data",
20034
+ "tactic": "ML Attack Staging"
20035
+ },
20036
+ {
20037
+ "id": "AML.T0051",
20038
+ "name": "LLM Prompt Injection",
20039
+ "tactic": "Execution"
20040
+ },
20041
+ {
20042
+ "id": "AML.T0054",
20043
+ "name": "LLM Jailbreak",
20044
+ "tactic": "Defense Evasion"
20045
+ },
20046
+ {
20047
+ "id": "AML.T0096",
20048
+ "name": "AI API as Covert C2 Channel",
20049
+ "tactic": "Command and Control"
20050
+ }
20051
+ ],
20052
+ "d3fend": [
20053
+ {
20054
+ "id": "D3-ASLR",
20055
+ "name": "Address Space Layout Randomization",
20056
+ "tactic": "Harden"
20057
+ },
20058
+ {
20059
+ "id": "D3-CSPP",
20060
+ "name": "Client-server Payload Profiling",
20061
+ "tactic": "Detect"
20062
+ },
20063
+ {
20064
+ "id": "D3-EAL",
20065
+ "name": "Executable Allowlisting",
20066
+ "tactic": "Harden"
20067
+ },
20068
+ {
20069
+ "id": "D3-IOPR",
20070
+ "name": "Input/Output Profiling Resource",
20071
+ "tactic": "Detect"
20072
+ },
20073
+ {
20074
+ "id": "D3-NTA",
20075
+ "name": "Network Traffic Analysis",
20076
+ "tactic": "Detect"
20077
+ },
20078
+ {
20079
+ "id": "D3-PHRA",
20080
+ "name": "Process Hardware Resource Access",
20081
+ "tactic": "Isolate"
20082
+ },
20083
+ {
20084
+ "id": "D3-PSEP",
20085
+ "name": "Process Segment Execution Prevention",
20086
+ "tactic": "Harden"
20087
+ }
20088
+ ],
20089
+ "framework_gaps": [
20090
+ {
20091
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
20092
+ "framework": "ALL",
20093
+ "control_name": "AI Pipeline Integrity"
20094
+ },
20095
+ {
20096
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
20097
+ "framework": "ALL",
20098
+ "control_name": "Prompt Injection as Access Control Failure"
20099
+ },
20100
+ {
20101
+ "id": "CIS-Controls-v8-Control7",
20102
+ "framework": "CIS Controls v8",
20103
+ "control_name": "Continuous Vulnerability Management"
20104
+ },
20105
+ {
20106
+ "id": "CMMC-2.0-Level-2",
20107
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
20108
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
20109
+ },
20110
+ {
20111
+ "id": "FedRAMP-Rev5-Moderate",
20112
+ "framework": "FedRAMP Rev 5 Moderate",
20113
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
20114
+ },
20115
+ {
20116
+ "id": "IEC-62443-3-3",
20117
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
20118
+ "control_name": "System security requirements and security levels"
20119
+ },
20120
+ {
20121
+ "id": "ISO-27001-2022-A.8.28",
20122
+ "framework": "ISO/IEC 27001:2022",
20123
+ "control_name": "Secure coding"
20124
+ },
20125
+ {
20126
+ "id": "ISO-27001-2022-A.8.8",
20127
+ "framework": "ISO/IEC 27001:2022",
20128
+ "control_name": "Management of technical vulnerabilities"
20129
+ },
20130
+ {
20131
+ "id": "ISO-IEC-23894-2023-clause-7",
20132
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
20133
+ "control_name": "AI risk management process"
20134
+ },
20135
+ {
20136
+ "id": "NERC-CIP-007-6-R4",
20137
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
20138
+ "control_name": "Security event monitoring"
20139
+ },
20140
+ {
20141
+ "id": "NIS2-Art21-patch-management",
20142
+ "framework": "EU NIS2 Directive",
20143
+ "control_name": "Vulnerability handling and disclosure"
20144
+ },
20145
+ {
20146
+ "id": "NIST-800-115",
20147
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
20148
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
20149
+ },
20150
+ {
20151
+ "id": "NIST-800-218-SSDF",
20152
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
20153
+ "control_name": "Secure Software Development Framework"
20154
+ },
20155
+ {
20156
+ "id": "NIST-800-53-AC-2",
20157
+ "framework": "NIST SP 800-53 Rev 5",
20158
+ "control_name": "Account Management"
20159
+ },
20160
+ {
20161
+ "id": "NIST-800-53-SC-8",
20162
+ "framework": "NIST SP 800-53 Rev 5",
20163
+ "control_name": "Transmission Confidentiality and Integrity"
20164
+ },
20165
+ {
20166
+ "id": "NIST-800-53-SI-2",
20167
+ "framework": "NIST SP 800-53 Rev 5",
20168
+ "control_name": "Flaw Remediation"
20169
+ },
20170
+ {
20171
+ "id": "NIST-800-53-SI-3",
20172
+ "framework": "NIST SP 800-53 Rev 5",
20173
+ "control_name": "Malicious Code Protection"
20174
+ },
20175
+ {
20176
+ "id": "NIST-800-82r3",
20177
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
20178
+ "control_name": "Guide to Operational Technology (OT) Security"
20179
+ },
20180
+ {
20181
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
20182
+ "framework": "OWASP Top 10 for LLM Applications 2025",
20183
+ "control_name": "Prompt Injection"
20184
+ },
20185
+ {
20186
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
20187
+ "framework": "OWASP Top 10 for LLM Applications 2025",
20188
+ "control_name": "Sensitive Information Disclosure"
20189
+ },
20190
+ {
20191
+ "id": "OWASP-Pen-Testing-Guide-v5",
20192
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
20193
+ "control_name": "Web application penetration testing methodology"
20194
+ },
20195
+ {
20196
+ "id": "PCI-DSS-4.0-6.3.3",
20197
+ "framework": "PCI DSS 4.0",
20198
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
20199
+ },
20200
+ {
20201
+ "id": "PTES-Pre-engagement",
20202
+ "framework": "Penetration Testing Execution Standard (PTES)",
20203
+ "control_name": "Pre-engagement Interactions"
20204
+ },
20205
+ {
20206
+ "id": "SOC2-CC6-logical-access",
20207
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
20208
+ "control_name": "Logical and Physical Access Controls"
20209
+ },
20210
+ {
20211
+ "id": "SOC2-CC9-vendor-management",
20212
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
20213
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
20214
+ }
20215
+ ],
20216
+ "attack_refs": [
20217
+ "T0855",
20218
+ "T0883",
20219
+ "T1059",
20220
+ "T1068",
20221
+ "T1078",
20222
+ "T1133",
20223
+ "T1190",
20224
+ "T1548.001",
20225
+ "T1566"
20226
+ ],
20227
+ "rfc_refs": [
20228
+ "RFC-4301",
20229
+ "RFC-4303",
20230
+ "RFC-7296"
20231
+ ]
20232
+ }
20233
+ },
20234
+ "CVE-2026-9082": {
20235
+ "name": "Drupal Core Database API Unauthenticated SQL Injection (SA-CORE-2026-004)",
20236
+ "rwep": 78,
20237
+ "cvss": 9.8,
20238
+ "cisa_kev": true,
20239
+ "epss_score": null,
20240
+ "referencing_skills": [
20241
+ "kernel-lpe-triage",
20242
+ "attack-surface-pentest",
20243
+ "ot-ics-security",
20244
+ "coordinated-vuln-disclosure",
20245
+ "sector-energy"
20246
+ ],
20247
+ "chain": {
20248
+ "cwes": [
20249
+ {
20250
+ "id": "CWE-1037",
20251
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
20252
+ "category": "Hardware / Side Channel"
20253
+ },
20254
+ {
20255
+ "id": "CWE-125",
20256
+ "name": "Out-of-bounds Read",
20257
+ "category": "Memory Safety"
20258
+ },
20259
+ {
20260
+ "id": "CWE-1357",
20261
+ "name": "Reliance on Insufficiently Trustworthy Component",
20262
+ "category": "Supply Chain"
20263
+ },
20264
+ {
20265
+ "id": "CWE-1395",
20266
+ "name": "Dependency on Vulnerable Third-Party Component",
20267
+ "category": "Supply Chain"
20268
+ },
20269
+ {
20270
+ "id": "CWE-22",
20271
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
20272
+ "category": "Path/Resource"
20273
+ },
20274
+ {
20275
+ "id": "CWE-269",
20276
+ "name": "Improper Privilege Management",
20277
+ "category": "Authorization"
20278
+ },
20279
+ {
20280
+ "id": "CWE-287",
20281
+ "name": "Improper Authentication",
20282
+ "category": "Authentication"
20283
+ },
20284
+ {
20285
+ "id": "CWE-306",
20286
+ "name": "Missing Authentication for Critical Function",
20287
+ "category": "Authentication"
20288
+ },
20289
+ {
20290
+ "id": "CWE-352",
20291
+ "name": "Cross-Site Request Forgery (CSRF)",
20292
+ "category": "Session"
20293
+ },
20294
+ {
20295
+ "id": "CWE-362",
20296
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
20297
+ "category": "Concurrency"
20298
+ },
20299
+ {
20300
+ "id": "CWE-416",
20301
+ "name": "Use After Free",
20302
+ "category": "Memory Safety"
20303
+ },
20304
+ {
20305
+ "id": "CWE-434",
20306
+ "name": "Unrestricted Upload of File with Dangerous Type",
20307
+ "category": "File Handling"
20308
+ },
20309
+ {
20310
+ "id": "CWE-672",
20311
+ "name": "Operation on a Resource after Expiration or Release",
20312
+ "category": "Memory Safety"
20313
+ },
20314
+ {
20315
+ "id": "CWE-732",
20316
+ "name": "Incorrect Permission Assignment for Critical Resource",
20317
+ "category": "Authorization"
20318
+ },
20319
+ {
20320
+ "id": "CWE-78",
20321
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
20322
+ "category": "Injection"
20323
+ },
20324
+ {
20325
+ "id": "CWE-787",
20326
+ "name": "Out-of-bounds Write",
20327
+ "category": "Memory Safety"
20328
+ },
20329
+ {
20330
+ "id": "CWE-79",
20331
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
20332
+ "category": "Injection"
20333
+ },
20334
+ {
20335
+ "id": "CWE-798",
20336
+ "name": "Use of Hard-coded Credentials",
20337
+ "category": "Credentials"
20338
+ },
20339
+ {
20340
+ "id": "CWE-89",
20341
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
20342
+ "category": "Injection"
20343
+ },
20344
+ {
20345
+ "id": "CWE-918",
20346
+ "name": "Server-Side Request Forgery (SSRF)",
20347
+ "category": "Network"
20348
+ }
20349
+ ],
20350
+ "atlas": [
20351
+ {
20352
+ "id": "AML.T0010",
20353
+ "name": "ML Supply Chain Compromise",
20354
+ "tactic": "Initial Access"
20355
+ },
20356
+ {
20357
+ "id": "AML.T0043",
20358
+ "name": "Craft Adversarial Data",
20359
+ "tactic": "ML Attack Staging"
20360
+ },
20361
+ {
20362
+ "id": "AML.T0051",
20363
+ "name": "LLM Prompt Injection",
20364
+ "tactic": "Execution"
20365
+ }
20366
+ ],
20367
+ "d3fend": [
20368
+ {
20369
+ "id": "D3-ASLR",
20370
+ "name": "Address Space Layout Randomization",
20371
+ "tactic": "Harden"
20372
+ },
20373
+ {
20374
+ "id": "D3-CSPP",
20375
+ "name": "Client-server Payload Profiling",
20376
+ "tactic": "Detect"
20377
+ },
20378
+ {
20379
+ "id": "D3-EAL",
20380
+ "name": "Executable Allowlisting",
20381
+ "tactic": "Harden"
20382
+ },
20383
+ {
20384
+ "id": "D3-NTA",
20385
+ "name": "Network Traffic Analysis",
20386
+ "tactic": "Detect"
20387
+ },
20388
+ {
20389
+ "id": "D3-PHRA",
20390
+ "name": "Process Hardware Resource Access",
20391
+ "tactic": "Isolate"
20392
+ },
20393
+ {
20394
+ "id": "D3-PSEP",
20395
+ "name": "Process Segment Execution Prevention",
20396
+ "tactic": "Harden"
20397
+ }
20398
+ ],
20399
+ "framework_gaps": [
20400
+ {
20401
+ "id": "CIS-Controls-v8-Control7",
20402
+ "framework": "CIS Controls v8",
20403
+ "control_name": "Continuous Vulnerability Management"
20404
+ },
20405
+ {
20406
+ "id": "IEC-62443-3-3",
20407
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
20408
+ "control_name": "System security requirements and security levels"
20409
+ },
20410
+ {
20411
+ "id": "ISO-27001-2022-A.8.8",
20412
+ "framework": "ISO/IEC 27001:2022",
20413
+ "control_name": "Management of technical vulnerabilities"
20414
+ },
20415
+ {
20416
+ "id": "NERC-CIP-007-6-R4",
20417
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
20418
+ "control_name": "Security event monitoring"
20419
+ },
20420
+ {
20421
+ "id": "NIS2-Art21-patch-management",
20422
+ "framework": "EU NIS2 Directive",
20423
+ "control_name": "Vulnerability handling and disclosure"
20424
+ },
20425
+ {
20426
+ "id": "NIST-800-115",
20427
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
20428
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
20429
+ },
20430
+ {
20431
+ "id": "NIST-800-218-SSDF",
20432
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
20433
+ "control_name": "Secure Software Development Framework"
20434
+ },
20435
+ {
20436
+ "id": "NIST-800-53-SC-8",
20437
+ "framework": "NIST SP 800-53 Rev 5",
20438
+ "control_name": "Transmission Confidentiality and Integrity"
20439
+ },
20440
+ {
20441
+ "id": "NIST-800-53-SI-2",
20442
+ "framework": "NIST SP 800-53 Rev 5",
20443
+ "control_name": "Flaw Remediation"
20444
+ },
20445
+ {
20446
+ "id": "NIST-800-82r3",
20447
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
20448
+ "control_name": "Guide to Operational Technology (OT) Security"
20449
+ },
20450
+ {
20451
+ "id": "OWASP-Pen-Testing-Guide-v5",
20452
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
20453
+ "control_name": "Web application penetration testing methodology"
20454
+ },
20455
+ {
20456
+ "id": "PCI-DSS-4.0-6.3.3",
20457
+ "framework": "PCI DSS 4.0",
20458
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
20459
+ },
20460
+ {
20461
+ "id": "PTES-Pre-engagement",
20462
+ "framework": "Penetration Testing Execution Standard (PTES)",
20463
+ "control_name": "Pre-engagement Interactions"
20464
+ },
20465
+ {
20466
+ "id": "SOC2-CC9-vendor-management",
20467
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
20468
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
20469
+ }
20470
+ ],
20471
+ "attack_refs": [
20472
+ "T0855",
20473
+ "T0883",
20474
+ "T1059",
20475
+ "T1068",
20476
+ "T1078",
20477
+ "T1133",
20478
+ "T1190",
20479
+ "T1548.001"
20480
+ ],
20481
+ "rfc_refs": [
20482
+ "RFC-4301",
20483
+ "RFC-4303",
20484
+ "RFC-7296"
20485
+ ]
20486
+ }
20487
+ },
19872
20488
  "CVE-2026-41091": {
19873
20489
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
19874
20490
  "rwep": 45,
@@ -46262,6 +46878,7 @@
46262
46878
  "CVE-2026-22252",
46263
46879
  "CVE-2026-22688",
46264
46880
  "CVE-2026-25592",
46881
+ "CVE-2026-26015",
46265
46882
  "CVE-2026-30615",
46266
46883
  "CVE-2026-30616",
46267
46884
  "CVE-2026-30617",
@@ -46278,6 +46895,7 @@
46278
46895
  "CVE-2026-45498",
46279
46896
  "CVE-2026-46300",
46280
46897
  "CVE-2026-46333",
46898
+ "CVE-2026-9082",
46281
46899
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
46282
46900
  "MAL-2026-3083",
46283
46901
  "MAL-2026-NODE-IPC-STEALER"
@@ -46616,6 +47234,7 @@
46616
47234
  "CVE-2026-22252",
46617
47235
  "CVE-2026-22688",
46618
47236
  "CVE-2026-25592",
47237
+ "CVE-2026-26015",
46619
47238
  "CVE-2026-30616",
46620
47239
  "CVE-2026-30617",
46621
47240
  "CVE-2026-30623",
@@ -46631,6 +47250,7 @@
46631
47250
  "CVE-2026-45498",
46632
47251
  "CVE-2026-46300",
46633
47252
  "CVE-2026-46333",
47253
+ "CVE-2026-9082",
46634
47254
  "MAL-2026-3083",
46635
47255
  "MAL-2026-NODE-IPC-STEALER"
46636
47256
  ]
@@ -46765,6 +47385,7 @@
46765
47385
  "CVE-2026-22252",
46766
47386
  "CVE-2026-22688",
46767
47387
  "CVE-2026-25592",
47388
+ "CVE-2026-26015",
46768
47389
  "CVE-2026-30616",
46769
47390
  "CVE-2026-30617",
46770
47391
  "CVE-2026-30623",
@@ -46780,6 +47401,7 @@
46780
47401
  "CVE-2026-45498",
46781
47402
  "CVE-2026-46300",
46782
47403
  "CVE-2026-46333",
47404
+ "CVE-2026-9082",
46783
47405
  "MAL-2026-3083",
46784
47406
  "MAL-2026-NODE-IPC-STEALER"
46785
47407
  ]
@@ -46928,6 +47550,7 @@
46928
47550
  "CVE-2026-22252",
46929
47551
  "CVE-2026-22688",
46930
47552
  "CVE-2026-25592",
47553
+ "CVE-2026-26015",
46931
47554
  "CVE-2026-30616",
46932
47555
  "CVE-2026-30617",
46933
47556
  "CVE-2026-30623",
@@ -46943,6 +47566,7 @@
46943
47566
  "CVE-2026-45498",
46944
47567
  "CVE-2026-46300",
46945
47568
  "CVE-2026-46333",
47569
+ "CVE-2026-9082",
46946
47570
  "MAL-2026-3083",
46947
47571
  "MAL-2026-NODE-IPC-STEALER"
46948
47572
  ]
@@ -47197,6 +47821,7 @@
47197
47821
  "CVE-2026-22688",
47198
47822
  "CVE-2026-22778",
47199
47823
  "CVE-2026-25592",
47824
+ "CVE-2026-26015",
47200
47825
  "CVE-2026-30615",
47201
47826
  "CVE-2026-30616",
47202
47827
  "CVE-2026-30617",
@@ -47600,6 +48225,7 @@
47600
48225
  "CVE-2026-24858",
47601
48226
  "CVE-2026-25108",
47602
48227
  "CVE-2026-25592",
48228
+ "CVE-2026-26015",
47603
48229
  "CVE-2026-3055",
47604
48230
  "CVE-2026-30616",
47605
48231
  "CVE-2026-30617",
@@ -47633,6 +48259,7 @@
47633
48259
  "CVE-2026-46333",
47634
48260
  "CVE-2026-5281",
47635
48261
  "CVE-2026-6973",
48262
+ "CVE-2026-9082",
47636
48263
  "MAL-2026-3083",
47637
48264
  "MAL-2026-NODE-IPC-STEALER"
47638
48265
  ]
@@ -48222,6 +48849,7 @@
48222
48849
  "CVE-2026-22252",
48223
48850
  "CVE-2026-22688",
48224
48851
  "CVE-2026-25592",
48852
+ "CVE-2026-26015",
48225
48853
  "CVE-2026-30615",
48226
48854
  "CVE-2026-30616",
48227
48855
  "CVE-2026-30617",
@@ -48238,6 +48866,7 @@
48238
48866
  "CVE-2026-45498",
48239
48867
  "CVE-2026-46300",
48240
48868
  "CVE-2026-46333",
48869
+ "CVE-2026-9082",
48241
48870
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
48242
48871
  "MAL-2026-3083",
48243
48872
  "MAL-2026-NODE-IPC-STEALER",
@@ -48810,6 +49439,7 @@
48810
49439
  "CVE-2026-22252",
48811
49440
  "CVE-2026-22688",
48812
49441
  "CVE-2026-25592",
49442
+ "CVE-2026-26015",
48813
49443
  "CVE-2026-30615",
48814
49444
  "CVE-2026-30616",
48815
49445
  "CVE-2026-30617",
@@ -48826,6 +49456,7 @@
48826
49456
  "CVE-2026-45498",
48827
49457
  "CVE-2026-46300",
48828
49458
  "CVE-2026-46333",
49459
+ "CVE-2026-9082",
48829
49460
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
48830
49461
  "MAL-2026-3083",
48831
49462
  "MAL-2026-NODE-IPC-STEALER"
@@ -49032,6 +49663,7 @@
49032
49663
  "CVE-2026-22252",
49033
49664
  "CVE-2026-22688",
49034
49665
  "CVE-2026-25592",
49666
+ "CVE-2026-26015",
49035
49667
  "CVE-2026-30615",
49036
49668
  "CVE-2026-30616",
49037
49669
  "CVE-2026-30617",
@@ -49046,6 +49678,7 @@
49046
49678
  "CVE-2026-45498",
49047
49679
  "CVE-2026-46300",
49048
49680
  "CVE-2026-46333",
49681
+ "CVE-2026-9082",
49049
49682
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
49050
49683
  "MAL-2026-3083"
49051
49684
  ]
@@ -49688,6 +50321,7 @@
49688
50321
  "CVE-2026-22252",
49689
50322
  "CVE-2026-22688",
49690
50323
  "CVE-2026-25592",
50324
+ "CVE-2026-26015",
49691
50325
  "CVE-2026-30615",
49692
50326
  "CVE-2026-30616",
49693
50327
  "CVE-2026-30617",
@@ -49704,6 +50338,7 @@
49704
50338
  "CVE-2026-45498",
49705
50339
  "CVE-2026-46300",
49706
50340
  "CVE-2026-46333",
50341
+ "CVE-2026-9082",
49707
50342
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
49708
50343
  "MAL-2026-3083",
49709
50344
  "MAL-2026-NODE-IPC-STEALER"
@@ -50095,6 +50730,7 @@
50095
50730
  "CVE-2026-24858",
50096
50731
  "CVE-2026-25108",
50097
50732
  "CVE-2026-25592",
50733
+ "CVE-2026-26015",
50098
50734
  "CVE-2026-3055",
50099
50735
  "CVE-2026-30616",
50100
50736
  "CVE-2026-30617",
@@ -50128,6 +50764,7 @@
50128
50764
  "CVE-2026-46333",
50129
50765
  "CVE-2026-5281",
50130
50766
  "CVE-2026-6973",
50767
+ "CVE-2026-9082",
50131
50768
  "MAL-2026-3083",
50132
50769
  "MAL-2026-NODE-IPC-STEALER"
50133
50770
  ]
@@ -50504,6 +51141,7 @@
50504
51141
  "CVE-2026-24858",
50505
51142
  "CVE-2026-25108",
50506
51143
  "CVE-2026-25592",
51144
+ "CVE-2026-26015",
50507
51145
  "CVE-2026-3055",
50508
51146
  "CVE-2026-30616",
50509
51147
  "CVE-2026-30617",
@@ -50537,6 +51175,7 @@
50537
51175
  "CVE-2026-46333",
50538
51176
  "CVE-2026-5281",
50539
51177
  "CVE-2026-6973",
51178
+ "CVE-2026-9082",
50540
51179
  "MAL-2026-3083",
50541
51180
  "MAL-2026-NODE-IPC-STEALER"
50542
51181
  ]
@@ -50767,6 +51406,7 @@
50767
51406
  "CVE-2026-22252",
50768
51407
  "CVE-2026-22688",
50769
51408
  "CVE-2026-25592",
51409
+ "CVE-2026-26015",
50770
51410
  "CVE-2026-30615",
50771
51411
  "CVE-2026-30616",
50772
51412
  "CVE-2026-30617",
@@ -50783,6 +51423,7 @@
50783
51423
  "CVE-2026-45498",
50784
51424
  "CVE-2026-46300",
50785
51425
  "CVE-2026-46333",
51426
+ "CVE-2026-9082",
50786
51427
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
50787
51428
  "MAL-2026-3083",
50788
51429
  "MAL-2026-NODE-IPC-STEALER"
@@ -51726,6 +52367,7 @@
51726
52367
  "CVE-2026-24858",
51727
52368
  "CVE-2026-25108",
51728
52369
  "CVE-2026-25592",
52370
+ "CVE-2026-26015",
51729
52371
  "CVE-2026-3055",
51730
52372
  "CVE-2026-30616",
51731
52373
  "CVE-2026-30617",
@@ -51759,6 +52401,7 @@
51759
52401
  "CVE-2026-46333",
51760
52402
  "CVE-2026-5281",
51761
52403
  "CVE-2026-6973",
52404
+ "CVE-2026-9082",
51762
52405
  "MAL-2026-3083"
51763
52406
  ]
51764
52407
  },
@@ -52053,6 +52696,7 @@
52053
52696
  "CVE-2026-22252",
52054
52697
  "CVE-2026-22688",
52055
52698
  "CVE-2026-25592",
52699
+ "CVE-2026-26015",
52056
52700
  "CVE-2026-30615",
52057
52701
  "CVE-2026-30616",
52058
52702
  "CVE-2026-30617",
@@ -52069,6 +52713,7 @@
52069
52713
  "CVE-2026-45498",
52070
52714
  "CVE-2026-46300",
52071
52715
  "CVE-2026-46333",
52716
+ "CVE-2026-9082",
52072
52717
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
52073
52718
  "MAL-2026-3083",
52074
52719
  "MAL-2026-NODE-IPC-STEALER",
@@ -52543,6 +53188,7 @@
52543
53188
  "CVE-2026-24858",
52544
53189
  "CVE-2026-25108",
52545
53190
  "CVE-2026-25592",
53191
+ "CVE-2026-26015",
52546
53192
  "CVE-2026-3055",
52547
53193
  "CVE-2026-30615",
52548
53194
  "CVE-2026-30616",
@@ -52578,6 +53224,7 @@
52578
53224
  "CVE-2026-46333",
52579
53225
  "CVE-2026-5281",
52580
53226
  "CVE-2026-6973",
53227
+ "CVE-2026-9082",
52581
53228
  "MAL-2026-3083",
52582
53229
  "MAL-2026-NODE-IPC-STEALER",
52583
53230
  "MAL-2026-SHAI-HULUD-OSS"
@@ -52882,6 +53529,7 @@
52882
53529
  "CVE-2026-22252",
52883
53530
  "CVE-2026-22688",
52884
53531
  "CVE-2026-25592",
53532
+ "CVE-2026-26015",
52885
53533
  "CVE-2026-30615",
52886
53534
  "CVE-2026-30616",
52887
53535
  "CVE-2026-30617",
@@ -52896,6 +53544,7 @@
52896
53544
  "CVE-2026-45498",
52897
53545
  "CVE-2026-46300",
52898
53546
  "CVE-2026-46333",
53547
+ "CVE-2026-9082",
52899
53548
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
52900
53549
  "MAL-2026-3083"
52901
53550
  ]
@@ -53807,6 +54456,7 @@
53807
54456
  "CVE-2026-22252",
53808
54457
  "CVE-2026-22688",
53809
54458
  "CVE-2026-25592",
54459
+ "CVE-2026-26015",
53810
54460
  "CVE-2026-30615",
53811
54461
  "CVE-2026-30616",
53812
54462
  "CVE-2026-30617",
@@ -53823,6 +54473,7 @@
53823
54473
  "CVE-2026-45498",
53824
54474
  "CVE-2026-46300",
53825
54475
  "CVE-2026-46333",
54476
+ "CVE-2026-9082",
53826
54477
  "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
53827
54478
  "MAL-2026-3083",
53828
54479
  "MAL-2026-NODE-IPC-STEALER"
@@ -53888,6 +54539,7 @@
53888
54539
  "CVE-2026-22252",
53889
54540
  "CVE-2026-22688",
53890
54541
  "CVE-2026-25592",
54542
+ "CVE-2026-26015",
53891
54543
  "CVE-2026-30616",
53892
54544
  "CVE-2026-30617",
53893
54545
  "CVE-2026-30624",
@@ -53901,6 +54553,7 @@
53901
54553
  "CVE-2026-45498",
53902
54554
  "CVE-2026-46300",
53903
54555
  "CVE-2026-46333",
54556
+ "CVE-2026-9082",
53904
54557
  "MAL-2026-3083"
53905
54558
  ]
53906
54559
  },
@@ -54046,6 +54699,7 @@
54046
54699
  "CVE-2026-22688",
54047
54700
  "CVE-2026-22778",
54048
54701
  "CVE-2026-25592",
54702
+ "CVE-2026-26015",
54049
54703
  "CVE-2026-30616",
54050
54704
  "CVE-2026-30617",
54051
54705
  "CVE-2026-30623",
@@ -54631,6 +55285,7 @@
54631
55285
  "CVE-2026-24858",
54632
55286
  "CVE-2026-25108",
54633
55287
  "CVE-2026-25592",
55288
+ "CVE-2026-26015",
54634
55289
  "CVE-2026-3055",
54635
55290
  "CVE-2026-30615",
54636
55291
  "CVE-2026-30616",
@@ -54658,6 +55313,7 @@
54658
55313
  "CVE-2026-46300",
54659
55314
  "CVE-2026-46333",
54660
55315
  "CVE-2026-5281",
55316
+ "CVE-2026-9082",
54661
55317
  "MAL-2026-3083",
54662
55318
  "MAL-2026-NODE-IPC-STEALER",
54663
55319
  "MAL-2026-SHAI-HULUD-OSS"
@@ -54893,6 +55549,7 @@
54893
55549
  "CVE-2026-22252",
54894
55550
  "CVE-2026-22688",
54895
55551
  "CVE-2026-25592",
55552
+ "CVE-2026-26015",
54896
55553
  "CVE-2026-30615",
54897
55554
  "CVE-2026-30616",
54898
55555
  "CVE-2026-30617",
@@ -54908,6 +55565,7 @@
54908
55565
  "CVE-2026-45498",
54909
55566
  "CVE-2026-46300",
54910
55567
  "CVE-2026-46333",
55568
+ "CVE-2026-9082",
54911
55569
  "MAL-2026-3083",
54912
55570
  "MAL-2026-NODE-IPC-STEALER",
54913
55571
  "MAL-2026-SHAI-HULUD-OSS"
@@ -55173,6 +55831,7 @@
55173
55831
  "CVE-2026-22688",
55174
55832
  "CVE-2026-22778",
55175
55833
  "CVE-2026-25592",
55834
+ "CVE-2026-26015",
55176
55835
  "CVE-2026-30615",
55177
55836
  "CVE-2026-30616",
55178
55837
  "CVE-2026-30617",