@blamejs/exceptd-skills 0.13.78 → 0.13.79

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (13) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +8 -8
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +736 -0
  6. package/data/attack-techniques.json +2 -0
  7. package/data/cve-catalog.json +201 -1
  8. package/data/cwe-catalog.json +2 -0
  9. package/data/framework-control-gaps.json +20 -3
  10. package/data/zeroday-lessons.json +100 -0
  11. package/manifest.json +44 -44
  12. package/package.json +2 -2
  13. package/sbom.cdx.json +23 -23
package/data/_indexes/chains.json CHANGED
@@ -21933,6 +21933,698 @@
21933
21933
  ]
21934
21934
  }
21935
21935
  },
21936
+ "CVE-2026-24207": {
21937
+ "name": "NVIDIA Triton Inference Server Authentication Bypass (Alternate Path) RCE",
21938
+ "rwep": 31,
21939
+ "cvss": 9.8,
21940
+ "cisa_kev": false,
21941
+ "epss_score": null,
21942
+ "referencing_skills": [
21943
+ "kernel-lpe-triage",
21944
+ "ai-attack-surface",
21945
+ "compliance-theater",
21946
+ "attack-surface-pentest",
21947
+ "ot-ics-security",
21948
+ "sector-energy"
21949
+ ],
21950
+ "chain": {
21951
+ "cwes": [
21952
+ {
21953
+ "id": "CWE-1037",
21954
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
21955
+ "category": "Hardware / Side Channel"
21956
+ },
21957
+ {
21958
+ "id": "CWE-1039",
21959
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
21960
+ "category": "AI/ML"
21961
+ },
21962
+ {
21963
+ "id": "CWE-125",
21964
+ "name": "Out-of-bounds Read",
21965
+ "category": "Memory Safety"
21966
+ },
21967
+ {
21968
+ "id": "CWE-1395",
21969
+ "name": "Dependency on Vulnerable Third-Party Component",
21970
+ "category": "Supply Chain"
21971
+ },
21972
+ {
21973
+ "id": "CWE-1426",
21974
+ "name": "Improper Validation of Generative AI Output",
21975
+ "category": "AI/ML"
21976
+ },
21977
+ {
21978
+ "id": "CWE-22",
21979
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
21980
+ "category": "Path/Resource"
21981
+ },
21982
+ {
21983
+ "id": "CWE-269",
21984
+ "name": "Improper Privilege Management",
21985
+ "category": "Authorization"
21986
+ },
21987
+ {
21988
+ "id": "CWE-287",
21989
+ "name": "Improper Authentication",
21990
+ "category": "Authentication"
21991
+ },
21992
+ {
21993
+ "id": "CWE-306",
21994
+ "name": "Missing Authentication for Critical Function",
21995
+ "category": "Authentication"
21996
+ },
21997
+ {
21998
+ "id": "CWE-352",
21999
+ "name": "Cross-Site Request Forgery (CSRF)",
22000
+ "category": "Session"
22001
+ },
22002
+ {
22003
+ "id": "CWE-362",
22004
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
22005
+ "category": "Concurrency"
22006
+ },
22007
+ {
22008
+ "id": "CWE-416",
22009
+ "name": "Use After Free",
22010
+ "category": "Memory Safety"
22011
+ },
22012
+ {
22013
+ "id": "CWE-434",
22014
+ "name": "Unrestricted Upload of File with Dangerous Type",
22015
+ "category": "File Handling"
22016
+ },
22017
+ {
22018
+ "id": "CWE-672",
22019
+ "name": "Operation on a Resource after Expiration or Release",
22020
+ "category": "Memory Safety"
22021
+ },
22022
+ {
22023
+ "id": "CWE-732",
22024
+ "name": "Incorrect Permission Assignment for Critical Resource",
22025
+ "category": "Authorization"
22026
+ },
22027
+ {
22028
+ "id": "CWE-78",
22029
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
22030
+ "category": "Injection"
22031
+ },
22032
+ {
22033
+ "id": "CWE-787",
22034
+ "name": "Out-of-bounds Write",
22035
+ "category": "Memory Safety"
22036
+ },
22037
+ {
22038
+ "id": "CWE-79",
22039
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
22040
+ "category": "Injection"
22041
+ },
22042
+ {
22043
+ "id": "CWE-798",
22044
+ "name": "Use of Hard-coded Credentials",
22045
+ "category": "Credentials"
22046
+ },
22047
+ {
22048
+ "id": "CWE-89",
22049
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
22050
+ "category": "Injection"
22051
+ },
22052
+ {
22053
+ "id": "CWE-918",
22054
+ "name": "Server-Side Request Forgery (SSRF)",
22055
+ "category": "Network"
22056
+ },
22057
+ {
22058
+ "id": "CWE-94",
22059
+ "name": "Improper Control of Generation of Code (Code Injection)",
22060
+ "category": "Injection"
22061
+ }
22062
+ ],
22063
+ "atlas": [
22064
+ {
22065
+ "id": "AML.T0010",
22066
+ "name": "ML Supply Chain Compromise",
22067
+ "tactic": "Initial Access"
22068
+ },
22069
+ {
22070
+ "id": "AML.T0016",
22071
+ "name": "Obtain Capabilities: Develop Capabilities",
22072
+ "tactic": "Resource Development"
22073
+ },
22074
+ {
22075
+ "id": "AML.T0017",
22076
+ "name": "Discover ML Model Ontology",
22077
+ "tactic": "Discovery"
22078
+ },
22079
+ {
22080
+ "id": "AML.T0018",
22081
+ "name": "Backdoor ML Model",
22082
+ "tactic": "Persistence"
22083
+ },
22084
+ {
22085
+ "id": "AML.T0020",
22086
+ "name": "Poison Training Data",
22087
+ "tactic": "ML Attack Staging"
22088
+ },
22089
+ {
22090
+ "id": "AML.T0043",
22091
+ "name": "Craft Adversarial Data",
22092
+ "tactic": "ML Attack Staging"
22093
+ },
22094
+ {
22095
+ "id": "AML.T0051",
22096
+ "name": "LLM Prompt Injection",
22097
+ "tactic": "Execution"
22098
+ },
22099
+ {
22100
+ "id": "AML.T0054",
22101
+ "name": "LLM Jailbreak",
22102
+ "tactic": "Defense Evasion"
22103
+ },
22104
+ {
22105
+ "id": "AML.T0096",
22106
+ "name": "AI API as Covert C2 Channel",
22107
+ "tactic": "Command and Control"
22108
+ }
22109
+ ],
22110
+ "d3fend": [
22111
+ {
22112
+ "id": "D3-ASLR",
22113
+ "name": "Address Space Layout Randomization",
22114
+ "tactic": "Harden"
22115
+ },
22116
+ {
22117
+ "id": "D3-CSPP",
22118
+ "name": "Client-server Payload Profiling",
22119
+ "tactic": "Detect"
22120
+ },
22121
+ {
22122
+ "id": "D3-EAL",
22123
+ "name": "Executable Allowlisting",
22124
+ "tactic": "Harden"
22125
+ },
22126
+ {
22127
+ "id": "D3-IOPR",
22128
+ "name": "Input/Output Profiling Resource",
22129
+ "tactic": "Detect"
22130
+ },
22131
+ {
22132
+ "id": "D3-NTA",
22133
+ "name": "Network Traffic Analysis",
22134
+ "tactic": "Detect"
22135
+ },
22136
+ {
22137
+ "id": "D3-PHRA",
22138
+ "name": "Process Hardware Resource Access",
22139
+ "tactic": "Isolate"
22140
+ },
22141
+ {
22142
+ "id": "D3-PSEP",
22143
+ "name": "Process Segment Execution Prevention",
22144
+ "tactic": "Harden"
22145
+ }
22146
+ ],
22147
+ "framework_gaps": [
22148
+ {
22149
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
22150
+ "framework": "ALL",
22151
+ "control_name": "AI Pipeline Integrity"
22152
+ },
22153
+ {
22154
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
22155
+ "framework": "ALL",
22156
+ "control_name": "Prompt Injection as Access Control Failure"
22157
+ },
22158
+ {
22159
+ "id": "CIS-Controls-v8-Control7",
22160
+ "framework": "CIS Controls v8",
22161
+ "control_name": "Continuous Vulnerability Management"
22162
+ },
22163
+ {
22164
+ "id": "CMMC-2.0-Level-2",
22165
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
22166
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
22167
+ },
22168
+ {
22169
+ "id": "FedRAMP-Rev5-Moderate",
22170
+ "framework": "FedRAMP Rev 5 Moderate",
22171
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
22172
+ },
22173
+ {
22174
+ "id": "IEC-62443-3-3",
22175
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
22176
+ "control_name": "System security requirements and security levels"
22177
+ },
22178
+ {
22179
+ "id": "ISO-27001-2022-A.8.28",
22180
+ "framework": "ISO/IEC 27001:2022",
22181
+ "control_name": "Secure coding"
22182
+ },
22183
+ {
22184
+ "id": "ISO-27001-2022-A.8.8",
22185
+ "framework": "ISO/IEC 27001:2022",
22186
+ "control_name": "Management of technical vulnerabilities"
22187
+ },
22188
+ {
22189
+ "id": "ISO-IEC-23894-2023-clause-7",
22190
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
22191
+ "control_name": "AI risk management process"
22192
+ },
22193
+ {
22194
+ "id": "NERC-CIP-007-6-R4",
22195
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
22196
+ "control_name": "Security event monitoring"
22197
+ },
22198
+ {
22199
+ "id": "NIS2-Art21-patch-management",
22200
+ "framework": "EU NIS2 Directive",
22201
+ "control_name": "Vulnerability handling and disclosure"
22202
+ },
22203
+ {
22204
+ "id": "NIST-800-115",
22205
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
22206
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
22207
+ },
22208
+ {
22209
+ "id": "NIST-800-53-AC-2",
22210
+ "framework": "NIST SP 800-53 Rev 5",
22211
+ "control_name": "Account Management"
22212
+ },
22213
+ {
22214
+ "id": "NIST-800-53-SC-8",
22215
+ "framework": "NIST SP 800-53 Rev 5",
22216
+ "control_name": "Transmission Confidentiality and Integrity"
22217
+ },
22218
+ {
22219
+ "id": "NIST-800-53-SI-2",
22220
+ "framework": "NIST SP 800-53 Rev 5",
22221
+ "control_name": "Flaw Remediation"
22222
+ },
22223
+ {
22224
+ "id": "NIST-800-53-SI-3",
22225
+ "framework": "NIST SP 800-53 Rev 5",
22226
+ "control_name": "Malicious Code Protection"
22227
+ },
22228
+ {
22229
+ "id": "NIST-800-82r3",
22230
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
22231
+ "control_name": "Guide to Operational Technology (OT) Security"
22232
+ },
22233
+ {
22234
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
22235
+ "framework": "OWASP Top 10 for LLM Applications 2025",
22236
+ "control_name": "Prompt Injection"
22237
+ },
22238
+ {
22239
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
22240
+ "framework": "OWASP Top 10 for LLM Applications 2025",
22241
+ "control_name": "Sensitive Information Disclosure"
22242
+ },
22243
+ {
22244
+ "id": "OWASP-Pen-Testing-Guide-v5",
22245
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
22246
+ "control_name": "Web application penetration testing methodology"
22247
+ },
22248
+ {
22249
+ "id": "PCI-DSS-4.0-6.3.3",
22250
+ "framework": "PCI DSS 4.0",
22251
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
22252
+ },
22253
+ {
22254
+ "id": "PTES-Pre-engagement",
22255
+ "framework": "Penetration Testing Execution Standard (PTES)",
22256
+ "control_name": "Pre-engagement Interactions"
22257
+ },
22258
+ {
22259
+ "id": "SOC2-CC6-logical-access",
22260
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
22261
+ "control_name": "Logical and Physical Access Controls"
22262
+ }
22263
+ ],
22264
+ "attack_refs": [
22265
+ "T0855",
22266
+ "T0883",
22267
+ "T1059",
22268
+ "T1068",
22269
+ "T1078",
22270
+ "T1133",
22271
+ "T1190",
22272
+ "T1548.001",
22273
+ "T1566"
22274
+ ],
22275
+ "rfc_refs": [
22276
+ "RFC-4301",
22277
+ "RFC-4303",
22278
+ "RFC-7296"
22279
+ ]
22280
+ }
22281
+ },
22282
+ "CVE-2026-24206": {
22283
+ "name": "NVIDIA Triton Inference Server Authentication Bypass (Alternate Channel)",
22284
+ "rwep": 31,
22285
+ "cvss": 9.8,
22286
+ "cisa_kev": false,
22287
+ "epss_score": null,
22288
+ "referencing_skills": [
22289
+ "kernel-lpe-triage",
22290
+ "ai-attack-surface",
22291
+ "compliance-theater",
22292
+ "attack-surface-pentest",
22293
+ "ot-ics-security",
22294
+ "sector-energy"
22295
+ ],
22296
+ "chain": {
22297
+ "cwes": [
22298
+ {
22299
+ "id": "CWE-1037",
22300
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
22301
+ "category": "Hardware / Side Channel"
22302
+ },
22303
+ {
22304
+ "id": "CWE-1039",
22305
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
22306
+ "category": "AI/ML"
22307
+ },
22308
+ {
22309
+ "id": "CWE-125",
22310
+ "name": "Out-of-bounds Read",
22311
+ "category": "Memory Safety"
22312
+ },
22313
+ {
22314
+ "id": "CWE-1395",
22315
+ "name": "Dependency on Vulnerable Third-Party Component",
22316
+ "category": "Supply Chain"
22317
+ },
22318
+ {
22319
+ "id": "CWE-1426",
22320
+ "name": "Improper Validation of Generative AI Output",
22321
+ "category": "AI/ML"
22322
+ },
22323
+ {
22324
+ "id": "CWE-22",
22325
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
22326
+ "category": "Path/Resource"
22327
+ },
22328
+ {
22329
+ "id": "CWE-269",
22330
+ "name": "Improper Privilege Management",
22331
+ "category": "Authorization"
22332
+ },
22333
+ {
22334
+ "id": "CWE-287",
22335
+ "name": "Improper Authentication",
22336
+ "category": "Authentication"
22337
+ },
22338
+ {
22339
+ "id": "CWE-306",
22340
+ "name": "Missing Authentication for Critical Function",
22341
+ "category": "Authentication"
22342
+ },
22343
+ {
22344
+ "id": "CWE-352",
22345
+ "name": "Cross-Site Request Forgery (CSRF)",
22346
+ "category": "Session"
22347
+ },
22348
+ {
22349
+ "id": "CWE-362",
22350
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
22351
+ "category": "Concurrency"
22352
+ },
22353
+ {
22354
+ "id": "CWE-416",
22355
+ "name": "Use After Free",
22356
+ "category": "Memory Safety"
22357
+ },
22358
+ {
22359
+ "id": "CWE-434",
22360
+ "name": "Unrestricted Upload of File with Dangerous Type",
22361
+ "category": "File Handling"
22362
+ },
22363
+ {
22364
+ "id": "CWE-672",
22365
+ "name": "Operation on a Resource after Expiration or Release",
22366
+ "category": "Memory Safety"
22367
+ },
22368
+ {
22369
+ "id": "CWE-732",
22370
+ "name": "Incorrect Permission Assignment for Critical Resource",
22371
+ "category": "Authorization"
22372
+ },
22373
+ {
22374
+ "id": "CWE-78",
22375
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
22376
+ "category": "Injection"
22377
+ },
22378
+ {
22379
+ "id": "CWE-787",
22380
+ "name": "Out-of-bounds Write",
22381
+ "category": "Memory Safety"
22382
+ },
22383
+ {
22384
+ "id": "CWE-79",
22385
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
22386
+ "category": "Injection"
22387
+ },
22388
+ {
22389
+ "id": "CWE-798",
22390
+ "name": "Use of Hard-coded Credentials",
22391
+ "category": "Credentials"
22392
+ },
22393
+ {
22394
+ "id": "CWE-89",
22395
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
22396
+ "category": "Injection"
22397
+ },
22398
+ {
22399
+ "id": "CWE-918",
22400
+ "name": "Server-Side Request Forgery (SSRF)",
22401
+ "category": "Network"
22402
+ },
22403
+ {
22404
+ "id": "CWE-94",
22405
+ "name": "Improper Control of Generation of Code (Code Injection)",
22406
+ "category": "Injection"
22407
+ }
22408
+ ],
22409
+ "atlas": [
22410
+ {
22411
+ "id": "AML.T0010",
22412
+ "name": "ML Supply Chain Compromise",
22413
+ "tactic": "Initial Access"
22414
+ },
22415
+ {
22416
+ "id": "AML.T0016",
22417
+ "name": "Obtain Capabilities: Develop Capabilities",
22418
+ "tactic": "Resource Development"
22419
+ },
22420
+ {
22421
+ "id": "AML.T0017",
22422
+ "name": "Discover ML Model Ontology",
22423
+ "tactic": "Discovery"
22424
+ },
22425
+ {
22426
+ "id": "AML.T0018",
22427
+ "name": "Backdoor ML Model",
22428
+ "tactic": "Persistence"
22429
+ },
22430
+ {
22431
+ "id": "AML.T0020",
22432
+ "name": "Poison Training Data",
22433
+ "tactic": "ML Attack Staging"
22434
+ },
22435
+ {
22436
+ "id": "AML.T0043",
22437
+ "name": "Craft Adversarial Data",
22438
+ "tactic": "ML Attack Staging"
22439
+ },
22440
+ {
22441
+ "id": "AML.T0051",
22442
+ "name": "LLM Prompt Injection",
22443
+ "tactic": "Execution"
22444
+ },
22445
+ {
22446
+ "id": "AML.T0054",
22447
+ "name": "LLM Jailbreak",
22448
+ "tactic": "Defense Evasion"
22449
+ },
22450
+ {
22451
+ "id": "AML.T0096",
22452
+ "name": "AI API as Covert C2 Channel",
22453
+ "tactic": "Command and Control"
22454
+ }
22455
+ ],
22456
+ "d3fend": [
22457
+ {
22458
+ "id": "D3-ASLR",
22459
+ "name": "Address Space Layout Randomization",
22460
+ "tactic": "Harden"
22461
+ },
22462
+ {
22463
+ "id": "D3-CSPP",
22464
+ "name": "Client-server Payload Profiling",
22465
+ "tactic": "Detect"
22466
+ },
22467
+ {
22468
+ "id": "D3-EAL",
22469
+ "name": "Executable Allowlisting",
22470
+ "tactic": "Harden"
22471
+ },
22472
+ {
22473
+ "id": "D3-IOPR",
22474
+ "name": "Input/Output Profiling Resource",
22475
+ "tactic": "Detect"
22476
+ },
22477
+ {
22478
+ "id": "D3-NTA",
22479
+ "name": "Network Traffic Analysis",
22480
+ "tactic": "Detect"
22481
+ },
22482
+ {
22483
+ "id": "D3-PHRA",
22484
+ "name": "Process Hardware Resource Access",
22485
+ "tactic": "Isolate"
22486
+ },
22487
+ {
22488
+ "id": "D3-PSEP",
22489
+ "name": "Process Segment Execution Prevention",
22490
+ "tactic": "Harden"
22491
+ }
22492
+ ],
22493
+ "framework_gaps": [
22494
+ {
22495
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
22496
+ "framework": "ALL",
22497
+ "control_name": "AI Pipeline Integrity"
22498
+ },
22499
+ {
22500
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
22501
+ "framework": "ALL",
22502
+ "control_name": "Prompt Injection as Access Control Failure"
22503
+ },
22504
+ {
22505
+ "id": "CIS-Controls-v8-Control7",
22506
+ "framework": "CIS Controls v8",
22507
+ "control_name": "Continuous Vulnerability Management"
22508
+ },
22509
+ {
22510
+ "id": "CMMC-2.0-Level-2",
22511
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
22512
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
22513
+ },
22514
+ {
22515
+ "id": "FedRAMP-Rev5-Moderate",
22516
+ "framework": "FedRAMP Rev 5 Moderate",
22517
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
22518
+ },
22519
+ {
22520
+ "id": "IEC-62443-3-3",
22521
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
22522
+ "control_name": "System security requirements and security levels"
22523
+ },
22524
+ {
22525
+ "id": "ISO-27001-2022-A.8.28",
22526
+ "framework": "ISO/IEC 27001:2022",
22527
+ "control_name": "Secure coding"
22528
+ },
22529
+ {
22530
+ "id": "ISO-27001-2022-A.8.8",
22531
+ "framework": "ISO/IEC 27001:2022",
22532
+ "control_name": "Management of technical vulnerabilities"
22533
+ },
22534
+ {
22535
+ "id": "ISO-IEC-23894-2023-clause-7",
22536
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
22537
+ "control_name": "AI risk management process"
22538
+ },
22539
+ {
22540
+ "id": "NERC-CIP-007-6-R4",
22541
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
22542
+ "control_name": "Security event monitoring"
22543
+ },
22544
+ {
22545
+ "id": "NIS2-Art21-patch-management",
22546
+ "framework": "EU NIS2 Directive",
22547
+ "control_name": "Vulnerability handling and disclosure"
22548
+ },
22549
+ {
22550
+ "id": "NIST-800-115",
22551
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
22552
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
22553
+ },
22554
+ {
22555
+ "id": "NIST-800-53-AC-2",
22556
+ "framework": "NIST SP 800-53 Rev 5",
22557
+ "control_name": "Account Management"
22558
+ },
22559
+ {
22560
+ "id": "NIST-800-53-SC-8",
22561
+ "framework": "NIST SP 800-53 Rev 5",
22562
+ "control_name": "Transmission Confidentiality and Integrity"
22563
+ },
22564
+ {
22565
+ "id": "NIST-800-53-SI-2",
22566
+ "framework": "NIST SP 800-53 Rev 5",
22567
+ "control_name": "Flaw Remediation"
22568
+ },
22569
+ {
22570
+ "id": "NIST-800-53-SI-3",
22571
+ "framework": "NIST SP 800-53 Rev 5",
22572
+ "control_name": "Malicious Code Protection"
22573
+ },
22574
+ {
22575
+ "id": "NIST-800-82r3",
22576
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
22577
+ "control_name": "Guide to Operational Technology (OT) Security"
22578
+ },
22579
+ {
22580
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
22581
+ "framework": "OWASP Top 10 for LLM Applications 2025",
22582
+ "control_name": "Prompt Injection"
22583
+ },
22584
+ {
22585
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
22586
+ "framework": "OWASP Top 10 for LLM Applications 2025",
22587
+ "control_name": "Sensitive Information Disclosure"
22588
+ },
22589
+ {
22590
+ "id": "OWASP-Pen-Testing-Guide-v5",
22591
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
22592
+ "control_name": "Web application penetration testing methodology"
22593
+ },
22594
+ {
22595
+ "id": "PCI-DSS-4.0-6.3.3",
22596
+ "framework": "PCI DSS 4.0",
22597
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
22598
+ },
22599
+ {
22600
+ "id": "PTES-Pre-engagement",
22601
+ "framework": "Penetration Testing Execution Standard (PTES)",
22602
+ "control_name": "Pre-engagement Interactions"
22603
+ },
22604
+ {
22605
+ "id": "SOC2-CC6-logical-access",
22606
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
22607
+ "control_name": "Logical and Physical Access Controls"
22608
+ }
22609
+ ],
22610
+ "attack_refs": [
22611
+ "T0855",
22612
+ "T0883",
22613
+ "T1059",
22614
+ "T1068",
22615
+ "T1078",
22616
+ "T1133",
22617
+ "T1190",
22618
+ "T1548.001",
22619
+ "T1566"
22620
+ ],
22621
+ "rfc_refs": [
22622
+ "RFC-4301",
22623
+ "RFC-4303",
22624
+ "RFC-7296"
22625
+ ]
22626
+ }
22627
+ },
21936
22628
  "CVE-2026-41091": {
21937
22629
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
21938
22630
  "rwep": 45,
@@ -48329,6 +49021,8 @@
48329
49021
  "CVE-2025-6965",
48330
49022
  "CVE-2026-22252",
48331
49023
  "CVE-2026-22688",
49024
+ "CVE-2026-24206",
49025
+ "CVE-2026-24207",
48332
49026
  "CVE-2026-25592",
48333
49027
  "CVE-2026-26015",
48334
49028
  "CVE-2026-30615",
@@ -48689,6 +49383,8 @@
48689
49383
  "CVE-2025-6965",
48690
49384
  "CVE-2026-22252",
48691
49385
  "CVE-2026-22688",
49386
+ "CVE-2026-24206",
49387
+ "CVE-2026-24207",
48692
49388
  "CVE-2026-25592",
48693
49389
  "CVE-2026-26015",
48694
49390
  "CVE-2026-30616",
@@ -48844,6 +49540,8 @@
48844
49540
  "CVE-2025-6965",
48845
49541
  "CVE-2026-22252",
48846
49542
  "CVE-2026-22688",
49543
+ "CVE-2026-24206",
49544
+ "CVE-2026-24207",
48847
49545
  "CVE-2026-25592",
48848
49546
  "CVE-2026-26015",
48849
49547
  "CVE-2026-30616",
@@ -49013,6 +49711,8 @@
49013
49711
  "CVE-2025-6965",
49014
49712
  "CVE-2026-22252",
49015
49713
  "CVE-2026-22688",
49714
+ "CVE-2026-24206",
49715
+ "CVE-2026-24207",
49016
49716
  "CVE-2026-25592",
49017
49717
  "CVE-2026-26015",
49018
49718
  "CVE-2026-30616",
@@ -49288,6 +49988,8 @@
49288
49988
  "CVE-2026-22252",
49289
49989
  "CVE-2026-22688",
49290
49990
  "CVE-2026-22778",
49991
+ "CVE-2026-24206",
49992
+ "CVE-2026-24207",
49291
49993
  "CVE-2026-25592",
49292
49994
  "CVE-2026-26015",
49293
49995
  "CVE-2026-30615",
@@ -49692,6 +50394,8 @@
49692
50394
  "CVE-2026-22769",
49693
50395
  "CVE-2026-23760",
49694
50396
  "CVE-2026-24061",
50397
+ "CVE-2026-24206",
50398
+ "CVE-2026-24207",
49695
50399
  "CVE-2026-2441",
49696
50400
  "CVE-2026-24423",
49697
50401
  "CVE-2026-24858",
@@ -50324,6 +51028,8 @@
50324
51028
  "CVE-2025-6965",
50325
51029
  "CVE-2026-22252",
50326
51030
  "CVE-2026-22688",
51031
+ "CVE-2026-24206",
51032
+ "CVE-2026-24207",
50327
51033
  "CVE-2026-25592",
50328
51034
  "CVE-2026-26015",
50329
51035
  "CVE-2026-30615",
@@ -50918,6 +51624,8 @@
50918
51624
  "CVE-2025-6965",
50919
51625
  "CVE-2026-22252",
50920
51626
  "CVE-2026-22688",
51627
+ "CVE-2026-24206",
51628
+ "CVE-2026-24207",
50921
51629
  "CVE-2026-25592",
50922
51630
  "CVE-2026-26015",
50923
51631
  "CVE-2026-30615",
@@ -51146,6 +51854,8 @@
51146
51854
  "CVE-2025-60455",
51147
51855
  "CVE-2026-22252",
51148
51856
  "CVE-2026-22688",
51857
+ "CVE-2026-24206",
51858
+ "CVE-2026-24207",
51149
51859
  "CVE-2026-25592",
51150
51860
  "CVE-2026-26015",
51151
51861
  "CVE-2026-30615",
@@ -51808,6 +52518,8 @@
51808
52518
  "CVE-2025-6965",
51809
52519
  "CVE-2026-22252",
51810
52520
  "CVE-2026-22688",
52521
+ "CVE-2026-24206",
52522
+ "CVE-2026-24207",
51811
52523
  "CVE-2026-25592",
51812
52524
  "CVE-2026-26015",
51813
52525
  "CVE-2026-30615",
@@ -52217,6 +52929,8 @@
52217
52929
  "CVE-2026-22769",
52218
52930
  "CVE-2026-23760",
52219
52931
  "CVE-2026-24061",
52932
+ "CVE-2026-24206",
52933
+ "CVE-2026-24207",
52220
52934
  "CVE-2026-2441",
52221
52935
  "CVE-2026-24423",
52222
52936
  "CVE-2026-24858",
@@ -52632,6 +53346,8 @@
52632
53346
  "CVE-2026-22769",
52633
53347
  "CVE-2026-23760",
52634
53348
  "CVE-2026-24061",
53349
+ "CVE-2026-24206",
53350
+ "CVE-2026-24207",
52635
53351
  "CVE-2026-2441",
52636
53352
  "CVE-2026-24423",
52637
53353
  "CVE-2026-24858",
@@ -52905,6 +53621,8 @@
52905
53621
  "CVE-2025-6965",
52906
53622
  "CVE-2026-22252",
52907
53623
  "CVE-2026-22688",
53624
+ "CVE-2026-24206",
53625
+ "CVE-2026-24207",
52908
53626
  "CVE-2026-25592",
52909
53627
  "CVE-2026-26015",
52910
53628
  "CVE-2026-30615",
@@ -53866,6 +54584,8 @@
53866
54584
  "CVE-2026-22769",
53867
54585
  "CVE-2026-23760",
53868
54586
  "CVE-2026-24061",
54587
+ "CVE-2026-24206",
54588
+ "CVE-2026-24207",
53869
54589
  "CVE-2026-2441",
53870
54590
  "CVE-2026-24423",
53871
54591
  "CVE-2026-24858",
@@ -54203,6 +54923,8 @@
54203
54923
  "CVE-2025-6965",
54204
54924
  "CVE-2026-22252",
54205
54925
  "CVE-2026-22688",
54926
+ "CVE-2026-24206",
54927
+ "CVE-2026-24207",
54206
54928
  "CVE-2026-25592",
54207
54929
  "CVE-2026-26015",
54208
54930
  "CVE-2026-30615",
@@ -54695,6 +55417,8 @@
54695
55417
  "CVE-2026-22769",
54696
55418
  "CVE-2026-23760",
54697
55419
  "CVE-2026-24061",
55420
+ "CVE-2026-24206",
55421
+ "CVE-2026-24207",
54698
55422
  "CVE-2026-2441",
54699
55423
  "CVE-2026-24423",
54700
55424
  "CVE-2026-24858",
@@ -55044,6 +55768,8 @@
55044
55768
  "CVE-2025-60455",
55045
55769
  "CVE-2026-22252",
55046
55770
  "CVE-2026-22688",
55771
+ "CVE-2026-24206",
55772
+ "CVE-2026-24207",
55047
55773
  "CVE-2026-25592",
55048
55774
  "CVE-2026-26015",
55049
55775
  "CVE-2026-30615",
@@ -55975,6 +56701,8 @@
55975
56701
  "CVE-2025-6965",
55976
56702
  "CVE-2026-22252",
55977
56703
  "CVE-2026-22688",
56704
+ "CVE-2026-24206",
56705
+ "CVE-2026-24207",
55978
56706
  "CVE-2026-25592",
55979
56707
  "CVE-2026-26015",
55980
56708
  "CVE-2026-30615",
@@ -56062,6 +56790,8 @@
56062
56790
  "CVE-2025-60455",
56063
56791
  "CVE-2026-22252",
56064
56792
  "CVE-2026-22688",
56793
+ "CVE-2026-24206",
56794
+ "CVE-2026-24207",
56065
56795
  "CVE-2026-25592",
56066
56796
  "CVE-2026-26015",
56067
56797
  "CVE-2026-30616",
@@ -56226,6 +56956,8 @@
56226
56956
  "CVE-2026-22252",
56227
56957
  "CVE-2026-22688",
56228
56958
  "CVE-2026-22778",
56959
+ "CVE-2026-24206",
56960
+ "CVE-2026-24207",
56229
56961
  "CVE-2026-25592",
56230
56962
  "CVE-2026-26015",
56231
56963
  "CVE-2026-30616",
@@ -57084,6 +57816,8 @@
57084
57816
  "CVE-2025-6965",
57085
57817
  "CVE-2026-22252",
57086
57818
  "CVE-2026-22688",
57819
+ "CVE-2026-24206",
57820
+ "CVE-2026-24207",
57087
57821
  "CVE-2026-25592",
57088
57822
  "CVE-2026-26015",
57089
57823
  "CVE-2026-30615",
@@ -57370,6 +58104,8 @@
57370
58104
  "CVE-2026-22252",
57371
58105
  "CVE-2026-22688",
57372
58106
  "CVE-2026-22778",
58107
+ "CVE-2026-24206",
58108
+ "CVE-2026-24207",
57373
58109
  "CVE-2026-25592",
57374
58110
  "CVE-2026-26015",
57375
58111
  "CVE-2026-30615",