@blamejs/exceptd-skills 0.13.78 → 0.13.79

package/data/attack-techniques.json

@@ -965,6 +965,8 @@
       "CVE-2026-22769",
       "CVE-2026-22778",
       "CVE-2026-23760",
+      "CVE-2026-24206",
+      "CVE-2026-24207",
       "CVE-2026-25108",
       "CVE-2026-26015",
       "CVE-2026-30616",

package/data/cve-catalog.json

@@ -55,7 +55,7 @@
     "ai_discovery_methodology": {
       "field_added": "2026-05-15",
       "agents_md_target": "Hard Rule #7 — '41% of 2025 zero-days were AI-discovered'. Catalog target rate floor: 0.40.",
-      "current_rate": 0.036,
+      "current_rate": 0.035,
       "current_floor_enforced_by_test": 0.03,
       "ladder_to_target": [
         0.03,
@@ -11096,6 +11096,206 @@
     "_intake_method": "manual-verified-curation",
     "_kev_short_description": "Modular Max Server deserializes untrusted data when the experimental KVCache agent is enabled, allowing code execution; part of the ShadowMQ code-reuse family; fixed in 25.6.0."
   },
+  "CVE-2026-24207": {
+    "name": "NVIDIA Triton Inference Server Authentication Bypass (Alternate Path) RCE",
+    "type": "AUTH-BYPASS",
+    "cvss_score": 9.8,
+    "cvss_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+    "cvss_note": "NVD/NIST CVSS v3.1 base 9.8 (CRITICAL). Unauthenticated, network-reachable authentication bypass via an alternate path or channel (CWE-288); a successful bypass can lead to code execution, privilege escalation, data tampering, DoS, or information disclosure.",
+    "cisa_kev": false,
+    "poc_available": true,
+    "poc_description": "Documented in NVIDIA's May 2026 Triton Inference Server security bulletin and follow-on security reporting: an unauthenticated network request reaches Triton's control plane via an alternate path/channel that the authentication layer does not cover (CWE-288).",
+    "ai_discovered": false,
+    "ai_discovery_source": "human_researcher",
+    "ai_discovery_notes": "Disclosed through NVIDIA's coordinated security bulletin (May 2026). The abused surface is the authentication layer of a widely deployed AI inference server.",
+    "ai_assisted_weaponization": false,
+    "ai_assisted_notes": "No AI-assisted weaponization reported; an authentication-bypass design flaw in the inference server control plane.",
+    "active_exploitation": "none",
+    "active_exploitation_notes": "Vendor bulletin disclosure with a coordinated fix; no confirmed in-the-wild exploitation reported as of curation.",
+    "affected": "NVIDIA Triton Inference Server versions prior to r26.03.",
+    "affected_versions": [
+      "NVIDIA Triton Inference Server < 26.03"
+    ],
+    "vector": "NVIDIA Triton Inference Server exposes a control-plane path that bypasses the authentication layer (CWE-288, authentication bypass using an alternate path or channel). An unauthenticated network attacker reaches privileged functionality without credentials.",
+    "complexity": "low",
+    "complexity_notes": "NVD AV:N / AC:L / PR:N / UI:N — network-reachable, unauthenticated, low-complexity.",
+    "patch_available": true,
+    "patch_required_reboot": false,
+    "live_patch_available": false,
+    "live_patch_tools": [],
+    "live_patch_notes": "Remediation is an application upgrade to Triton Inference Server r26.03 or later; redeploy, no host reboot.",
+    "vendor_update_paths": [
+      "Upgrade NVIDIA Triton Inference Server to r26.03 or later. Until then, do not expose Triton's HTTP/gRPC endpoints to untrusted networks and place it behind an authenticating reverse proxy."
+    ],
+    "framework_control_gaps": {
+      "NIST-800-53-IA-2": "Identification-and-authentication control is asserted for the application but not verified to cover every control-plane path of the AI inference server; an alternate path bypasses it.",
+      "NIST-800-53-SI-2": "Flaw-remediation cadence does not track AI inference servers as managed, network-exposed control planes requiring rapid patching.",
+      "ISO-27001-2022-A.5.15": "Access-control policy does not enumerate the inference server's alternate request paths as in-scope, so an alternate path bypasses authentication.",
+      "NIS2-Art21-patch-management": "Article 21 measures do not reach the AI inference server's authentication layer as a privileged control plane.",
+      "DORA-Art-9": "ICT protection measures do not model an unauthenticated bypass of an AI inference server's control plane as an ICT-risk event.",
+      "UK-CAF-B2": "Identity and Access Control objective has no objective for proving authentication covers every path into the inference server.",
+      "AU-ISM-1546": "Patch-application control does not single out network-exposed AI inference servers.",
+      "ALL-AI-PIPELINE-INTEGRITY": "No framework requires the AI inference server's authentication to be proven complete across all request paths; an alternate-path bypass exposes the model control plane unauthenticated."
+    },
+    "atlas_refs": [],
+    "attack_refs": [
+      "T1190"
+    ],
+    "rwep_score": 31,
+    "rwep_factors": {
+      "cisa_kev": 0,
+      "poc_available": 20,
+      "ai_factor": 0,
+      "active_exploitation": 0,
+      "blast_radius": 26,
+      "patch_available": -15,
+      "live_patch_available": 0,
+      "reboot_required": 0
+    },
+    "rwep_notes": "Standard (RWEP 31, \"patch within 30 days\" band per lib/scoring.js timeline). Not KEV, no confirmed in-the-wild exploitation, patched at disclosure (Hard Rule #3). poc_available=20 + blast_radius=26 (Triton is among the most widely deployed inference servers) minus patch 15. Note: unauthenticated network reachability on a critical AI control plane raises operational urgency beyond the RWEP number.",
+    "epss_score": null,
+    "epss_date": "2026-05-25",
+    "epss_note": "EPSS not pulled for this entry; retrieve via FIRST EPSS API in a future refresh.",
+    "epss_source": "https://api.first.org/data/v1/epss?cve=CVE-2026-24207",
+    "cwe_refs": [
+      "CWE-288"
+    ],
+    "iocs": {
+      "behavioral": [
+        "Triton HTTP/gRPC requests reaching privileged control-plane endpoints (model load/unload, repository management) without a valid authentication context.",
+        "Model repository changes or inference-config changes not attributable to an authenticated operator.",
+        "Triton Inference Server below r26.03 exposed to a network reachable by untrusted clients — the exposed precondition.",
+        "Unexpected processes or model artifacts appearing on the Triton host following anomalous control-plane traffic."
+      ],
+      "_ioc_source_note": "Behavioral signatures derived from NVD CVE-2026-24207 (CWE-288 authentication bypass) and NVIDIA's May 2026 Triton Inference Server security bulletin (https://nvidia.custhelp.com/app/answers/detail/a_id/5828)."
+    },
+    "source_verified": "2026-05-25",
+    "verification_sources": [
+      "https://nvd.nist.gov/vuln/detail/CVE-2026-24207",
+      "https://nvidia.custhelp.com/app/answers/detail/a_id/5828"
+    ],
+    "vendor_advisories": [
+      {
+        "vendor": "NVIDIA Product Security",
+        "advisory_id": "NVIDIA-5828",
+        "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5828",
+        "severity": "critical",
+        "published_date": "2026-05-20"
+      },
+      {
+        "vendor": "NVD",
+        "advisory_id": "CVE-2026-24207",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24207",
+        "severity": "critical",
+        "published_date": "2026-05-20"
+      }
+    ],
+    "last_updated": "2026-05-25",
+    "discovery_attribution_note": "Manually curated from NVD (CWE-288; NIST CVSS 9.8) + NVIDIA's May 2026 Triton Inference Server security bulletin. One of two authentication-bypass CVEs (with CVE-2026-24206) patched in r26.03.",
+    "_auto_imported": false,
+    "_intake_method": "manual-verified-curation",
+    "_kev_short_description": "NVIDIA Triton Inference Server lets an unauthenticated network attacker bypass authentication via an alternate path (CWE-288), enabling code execution and full compromise; fixed in r26.03."
+  },
+  "CVE-2026-24206": {
+    "name": "NVIDIA Triton Inference Server Authentication Bypass (Alternate Channel)",
+    "type": "AUTH-BYPASS",
+    "cvss_score": 9.8,
+    "cvss_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+    "cvss_note": "NVD/NIST CVSS v3.1 base 9.8 (CRITICAL); NVIDIA as CNA scored it 7.3 (HIGH, CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L) — a documented scoring dispute. Unauthenticated, network-reachable authentication bypass via an alternate path or channel (CWE-288).",
+    "cisa_kev": false,
+    "poc_available": true,
+    "poc_description": "Documented in NVIDIA's May 2026 Triton Inference Server security bulletin and follow-on security reporting: an unauthenticated network request reaches Triton's control plane via an alternate path/channel that the authentication layer does not cover (CWE-288).",
+    "ai_discovered": false,
+    "ai_discovery_source": "human_researcher",
+    "ai_discovery_notes": "Disclosed through NVIDIA's coordinated security bulletin (May 2026). The abused surface is the authentication layer of a widely deployed AI inference server.",
+    "ai_assisted_weaponization": false,
+    "ai_assisted_notes": "No AI-assisted weaponization reported; an authentication-bypass design flaw in the inference server control plane.",
+    "active_exploitation": "none",
+    "active_exploitation_notes": "Vendor bulletin disclosure with a coordinated fix; no confirmed in-the-wild exploitation reported as of curation.",
+    "affected": "NVIDIA Triton Inference Server versions prior to r26.03.",
+    "affected_versions": [
+      "NVIDIA Triton Inference Server < 26.03"
+    ],
+    "vector": "NVIDIA Triton Inference Server exposes a control-plane path that bypasses the authentication layer (CWE-288, authentication bypass using an alternate path or channel). An unauthenticated network attacker reaches privileged functionality without credentials.",
+    "complexity": "low",
+    "complexity_notes": "NVD AV:N / AC:L / PR:N / UI:N — network-reachable, unauthenticated, low-complexity.",
+    "patch_available": true,
+    "patch_required_reboot": false,
+    "live_patch_available": false,
+    "live_patch_tools": [],
+    "live_patch_notes": "Remediation is an application upgrade to Triton Inference Server r26.03 or later; redeploy, no host reboot.",
+    "vendor_update_paths": [
+      "Upgrade NVIDIA Triton Inference Server to r26.03 or later. Until then, do not expose Triton's HTTP/gRPC endpoints to untrusted networks and place it behind an authenticating reverse proxy."
+    ],
+    "framework_control_gaps": {
+      "NIST-800-53-IA-2": "Identification-and-authentication control is asserted for the application but not verified to cover every control-plane path of the AI inference server; an alternate path bypasses it.",
+      "NIST-800-53-SI-2": "Flaw-remediation cadence does not track AI inference servers as managed, network-exposed control planes requiring rapid patching.",
+      "ISO-27001-2022-A.5.15": "Access-control policy does not enumerate the inference server's alternate request paths as in-scope, so an alternate path bypasses authentication.",
+      "NIS2-Art21-patch-management": "Article 21 measures do not reach the AI inference server's authentication layer as a privileged control plane.",
+      "DORA-Art-9": "ICT protection measures do not model an unauthenticated bypass of an AI inference server's control plane as an ICT-risk event.",
+      "UK-CAF-B2": "Identity and Access Control objective has no objective for proving authentication covers every path into the inference server.",
+      "AU-ISM-1546": "Patch-application control does not single out network-exposed AI inference servers.",
+      "ALL-AI-PIPELINE-INTEGRITY": "No framework requires the AI inference server's authentication to be proven complete across all request paths; an alternate-path bypass exposes the model control plane unauthenticated."
+    },
+    "atlas_refs": [],
+    "attack_refs": [
+      "T1190"
+    ],
+    "rwep_score": 31,
+    "rwep_factors": {
+      "cisa_kev": 0,
+      "poc_available": 20,
+      "ai_factor": 0,
+      "active_exploitation": 0,
+      "blast_radius": 26,
+      "patch_available": -15,
+      "live_patch_available": 0,
+      "reboot_required": 0
+    },
+    "rwep_notes": "Standard (RWEP 31, \"patch within 30 days\" band per lib/scoring.js timeline). Not KEV, no confirmed in-the-wild exploitation, patched at disclosure (Hard Rule #3). poc_available=20 + blast_radius=26 (Triton is among the most widely deployed inference servers) minus patch 15. Note: unauthenticated network reachability on a critical AI control plane raises operational urgency beyond the RWEP number.",
+    "epss_score": null,
+    "epss_date": "2026-05-25",
+    "epss_note": "EPSS not pulled for this entry; retrieve via FIRST EPSS API in a future refresh.",
+    "epss_source": "https://api.first.org/data/v1/epss?cve=CVE-2026-24206",
+    "cwe_refs": [
+      "CWE-288"
+    ],
+    "iocs": {
+      "behavioral": [
+        "Triton HTTP/gRPC requests reaching privileged control-plane endpoints (model load/unload, repository management) without a valid authentication context.",
+        "Model repository changes or inference-config changes not attributable to an authenticated operator.",
+        "Triton Inference Server below r26.03 exposed to a network reachable by untrusted clients — the exposed precondition.",
+        "Unexpected processes or model artifacts appearing on the Triton host following anomalous control-plane traffic."
+      ],
+      "_ioc_source_note": "Behavioral signatures derived from NVD CVE-2026-24206 (CWE-288 authentication bypass) and NVIDIA's May 2026 Triton Inference Server security bulletin (https://nvidia.custhelp.com/app/answers/detail/a_id/5828)."
+    },
+    "source_verified": "2026-05-25",
+    "verification_sources": [
+      "https://nvd.nist.gov/vuln/detail/CVE-2026-24206",
+      "https://nvidia.custhelp.com/app/answers/detail/a_id/5828"
+    ],
+    "vendor_advisories": [
+      {
+        "vendor": "NVIDIA Product Security",
+        "advisory_id": "NVIDIA-5828",
+        "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5828",
+        "severity": "critical",
+        "published_date": "2026-05-20"
+      },
+      {
+        "vendor": "NVD",
+        "advisory_id": "CVE-2026-24206",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24206",
+        "severity": "critical",
+        "published_date": "2026-05-20"
+      }
+    ],
+    "last_updated": "2026-05-25",
+    "discovery_attribution_note": "Manually curated from NVD (CWE-288; NIST CVSS 9.8) + NVIDIA's May 2026 Triton Inference Server security bulletin. One of two authentication-bypass CVEs (with CVE-2026-24207) patched in r26.03.",
+    "_auto_imported": false,
+    "_intake_method": "manual-verified-curation",
+    "_kev_short_description": "NVIDIA Triton Inference Server has a second authentication bypass (CWE-288) reachable unauthenticated over the network, enabling privilege escalation and information disclosure; fixed in r26.03. NVD scores 9.8; NVIDIA scores 7.3."
+  },
   "CVE-2026-41091": {
     "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
     "type": "LPE",

package/data/cwe-catalog.json

@@ -2412,6 +2412,8 @@
       "CVE-2025-57819",
       "CVE-2026-1603",
       "CVE-2026-23760",
+      "CVE-2026-24206",
+      "CVE-2026-24207",
       "CVE-2026-24858"
     ],
     "last_verified": "2026-05-18",

package/data/framework-control-gaps.json

@@ -43,6 +43,8 @@
       "CVE-2025-60455",
       "CVE-2026-22252",
       "CVE-2026-22688",
+      "CVE-2026-24206",
+      "CVE-2026-24207",
       "CVE-2026-26015",
       "CVE-2026-30616",
       "CVE-2026-30617",
@@ -1760,6 +1762,8 @@
       "CVE-2025-60455",
       "CVE-2026-22252",
       "CVE-2026-22688",
+      "CVE-2026-24206",
+      "CVE-2026-24207",
       "CVE-2026-25592",
       "CVE-2026-26015",
       "CVE-2026-30616",
@@ -2501,6 +2505,8 @@
       "CVE-2026-22769",
       "CVE-2026-23760",
       "CVE-2026-24061",
+      "CVE-2026-24206",
+      "CVE-2026-24207",
       "CVE-2026-2441",
       "CVE-2026-24423",
       "CVE-2026-24858",
@@ -3568,7 +3574,10 @@
     "real_requirement": "Identity controls treat AI agents as distinct principals where they execute tools; MCP plugin invocations log model decision + tool name + arguments + user identity; AI-provider service credentials are short-lived, rotated, and excluded from cleartext storage policy exceptions; passkeys/WebAuthn for human-operator-to-AI authentication where supported.",
     "status": "open",
     "opened_date": "2026-05-13",
-    "evidence_cves": [],
+    "evidence_cves": [
+      "CVE-2026-24206",
+      "CVE-2026-24207"
+    ],
     "atlas_refs": [
       "AML.T0010",
       "AML.T0051"
@@ -4787,6 +4796,8 @@
       "CVE-2026-20182",
       "CVE-2026-22252",
       "CVE-2026-22688",
+      "CVE-2026-24206",
+      "CVE-2026-24207",
       "CVE-2026-25592",
       "CVE-2026-26015",
       "CVE-2026-30616",
@@ -5351,6 +5362,8 @@
       "CVE-2025-60455",
       "CVE-2026-22252",
       "CVE-2026-22688",
+      "CVE-2026-24206",
+      "CVE-2026-24207",
       "CVE-2026-25592",
       "CVE-2026-26015",
       "CVE-2026-30616",
@@ -5566,7 +5579,9 @@
     "opened_date": "2026-05-18",
     "evidence_cves": [
       "CVE-2020-10148",
-      "CVE-2025-55241"
+      "CVE-2025-55241",
+      "CVE-2026-24206",
+      "CVE-2026-24207"
     ],
     "atlas_refs": [],
     "attack_refs": [
@@ -5632,7 +5647,9 @@
     "evidence_cves": [
       "CVE-2020-10148",
       "CVE-2024-1709",
-      "CVE-2026-20182"
+      "CVE-2026-20182",
+      "CVE-2026-24206",
+      "CVE-2026-24207"
     ],
     "atlas_refs": [],
     "attack_refs": [

package/data/zeroday-lessons.json

@@ -6733,6 +6733,106 @@
     "_auto_imported": false,
     "_intake_method": "manual-verified-curation"
   },
+  "CVE-2026-24207": {
+    "name": "NVIDIA Triton Inference Server Authentication Bypass (Alternate Path) RCE",
+    "lesson_date": "2026-05-25",
+    "attack_vector": {
+      "description": "NVIDIA Triton Inference Server exposes a control-plane path that bypasses its authentication layer (CWE-288), so an unauthenticated network attacker reaches privileged model-control functionality without credentials.",
+      "privileges_required": "none (NVD AV:N / PR:N) — unauthenticated over the network",
+      "complexity": "low (NVD AC:L)",
+      "ai_factor": "The abused surface is the authentication layer of a widely deployed AI inference server. The lesson: authentication on an AI model control plane must be proven complete across every request path — an alternate path that skips the auth layer exposes model load/unload and repository management to anyone on the network. NVD scored 9.8 (NIST)."
+    },
+    "framework_coverage": {
+      "NIST-800-53-IA-2": {
+        "covered": true,
+        "adequate": false,
+        "gap": "Authentication is asserted for the application but not verified to cover every control-plane path of the inference server; an alternate path bypasses it."
+      },
+      "NIST-800-53-SI-2": {
+        "covered": true,
+        "adequate": false,
+        "gap": "Flaw-remediation cadence does not track AI inference servers as network-exposed control planes requiring rapid patching."
+      },
+      "ALL-AI-PIPELINE-INTEGRITY": {
+        "covered": false,
+        "adequate": false,
+        "gap": "No framework requires the inference server's authentication to be proven complete across all request paths."
+      }
+    },
+    "compliance_exposure_score": {
+      "percent_audit_passing_orgs_still_exposed": 66,
+      "basis": "Organizations assert authentication coverage for the inference API but do not test every alternate path into the model control plane; inference servers are rarely in the managed vulnerability program.",
+      "theater_pattern": "authentication_assumed_complete"
+    },
+    "ai_discovered_zeroday": false,
+    "ai_discovery_source": "human_researcher",
+    "ai_assist_factor": "none",
+    "new_control_requirements": [
+      {
+        "id": "NEW-CTRL-087",
+        "name": "AI-INFERENCE-SERVER-AUTH-ENFORCEMENT",
+        "description": "Authentication on an AI inference server's control plane (model load/unload, repository and config management) must be enforced on every request path and proven complete, not assumed from the primary API. Upgrade NVIDIA Triton to r26.03 or later, do not expose Triton HTTP/gRPC endpoints to untrusted networks, and front it with an authenticating reverse proxy. The distinguishing test: from an unauthenticated client on a staging instance, attempt to reach each control-plane endpoint via alternate paths and confirm all are rejected.",
+        "evidence": "https://nvidia.custhelp.com/app/answers/detail/a_id/5828",
+        "gap_closes": [
+          "NIST-800-53-IA-2",
+          "NIST-800-53-SI-2",
+          "ALL-AI-PIPELINE-INTEGRITY"
+        ]
+      }
+    ],
+    "_auto_imported": false,
+    "_intake_method": "manual-verified-curation"
+  },
+  "CVE-2026-24206": {
+    "name": "NVIDIA Triton Inference Server Authentication Bypass (Alternate Channel)",
+    "lesson_date": "2026-05-25",
+    "attack_vector": {
+      "description": "NVIDIA Triton Inference Server exposes a control-plane path that bypasses its authentication layer (CWE-288), so an unauthenticated network attacker reaches privileged model-control functionality without credentials.",
+      "privileges_required": "none (NVD AV:N / PR:N) — unauthenticated over the network",
+      "complexity": "low (NVD AC:L)",
+      "ai_factor": "The abused surface is the authentication layer of a widely deployed AI inference server. The lesson: authentication on an AI model control plane must be proven complete across every request path — an alternate path that skips the auth layer exposes model load/unload and repository management to anyone on the network. NVD scored 9.8 NIST / 7.3 NVIDIA."
+    },
+    "framework_coverage": {
+      "NIST-800-53-IA-2": {
+        "covered": true,
+        "adequate": false,
+        "gap": "Authentication is asserted for the application but not verified to cover every control-plane path of the inference server; an alternate path bypasses it."
+      },
+      "NIST-800-53-SI-2": {
+        "covered": true,
+        "adequate": false,
+        "gap": "Flaw-remediation cadence does not track AI inference servers as network-exposed control planes requiring rapid patching."
+      },
+      "ALL-AI-PIPELINE-INTEGRITY": {
+        "covered": false,
+        "adequate": false,
+        "gap": "No framework requires the inference server's authentication to be proven complete across all request paths."
+      }
+    },
+    "compliance_exposure_score": {
+      "percent_audit_passing_orgs_still_exposed": 66,
+      "basis": "Organizations assert authentication coverage for the inference API but do not test every alternate path into the model control plane; inference servers are rarely in the managed vulnerability program.",
+      "theater_pattern": "authentication_assumed_complete"
+    },
+    "ai_discovered_zeroday": false,
+    "ai_discovery_source": "human_researcher",
+    "ai_assist_factor": "none",
+    "new_control_requirements": [
+      {
+        "id": "NEW-CTRL-087",
+        "name": "AI-INFERENCE-SERVER-AUTH-ENFORCEMENT",
+        "description": "Authentication on an AI inference server's control plane (model load/unload, repository and config management) must be enforced on every request path and proven complete, not assumed from the primary API. Upgrade NVIDIA Triton to r26.03 or later, do not expose Triton HTTP/gRPC endpoints to untrusted networks, and front it with an authenticating reverse proxy. The distinguishing test: from an unauthenticated client on a staging instance, attempt to reach each control-plane endpoint via alternate paths and confirm all are rejected.",
+        "evidence": "https://nvidia.custhelp.com/app/answers/detail/a_id/5828",
+        "gap_closes": [
+          "NIST-800-53-IA-2",
+          "NIST-800-53-SI-2",
+          "ALL-AI-PIPELINE-INTEGRITY"
+        ]
+      }
+    ],
+    "_auto_imported": false,
+    "_intake_method": "manual-verified-curation"
+  },
   "CVE-2025-34291": {
     "name": "Langflow Account Takeover + RCE (CORS / refresh-token chain)",
     "lesson_date": "2026-05-24",