@blamejs/exceptd-skills 0.13.79 → 0.13.81

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +8 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +1209 -0
  6. package/data/atlas-ttps.json +19 -4
  7. package/data/attack-techniques.json +7 -0
  8. package/data/cve-catalog.json +321 -0
  9. package/data/cwe-catalog.json +8 -1
  10. package/data/framework-control-gaps.json +24 -0
  11. package/data/zeroday-lessons.json +150 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -22625,6 +22625,1146 @@
22625
22625
  ]
22626
22626
  }
22627
22627
  },
22628
+ "CVE-2023-48022": {
22629
+ "name": "Anyscale Ray Job Submission API Unauthenticated RCE (ShadowRay)",
22630
+ "rwep": 68,
22631
+ "cvss": 9.8,
22632
+ "cisa_kev": false,
22633
+ "epss_score": null,
22634
+ "referencing_skills": [
22635
+ "kernel-lpe-triage",
22636
+ "ai-attack-surface",
22637
+ "compliance-theater",
22638
+ "ai-c2-detection",
22639
+ "attack-surface-pentest",
22640
+ "dlp-gap-analysis",
22641
+ "ot-ics-security",
22642
+ "sector-energy"
22643
+ ],
22644
+ "chain": {
22645
+ "cwes": [
22646
+ {
22647
+ "id": "CWE-1037",
22648
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
22649
+ "category": "Hardware / Side Channel"
22650
+ },
22651
+ {
22652
+ "id": "CWE-1039",
22653
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
22654
+ "category": "AI/ML"
22655
+ },
22656
+ {
22657
+ "id": "CWE-125",
22658
+ "name": "Out-of-bounds Read",
22659
+ "category": "Memory Safety"
22660
+ },
22661
+ {
22662
+ "id": "CWE-1395",
22663
+ "name": "Dependency on Vulnerable Third-Party Component",
22664
+ "category": "Supply Chain"
22665
+ },
22666
+ {
22667
+ "id": "CWE-1426",
22668
+ "name": "Improper Validation of Generative AI Output",
22669
+ "category": "AI/ML"
22670
+ },
22671
+ {
22672
+ "id": "CWE-200",
22673
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
22674
+ "category": "Information Exposure"
22675
+ },
22676
+ {
22677
+ "id": "CWE-22",
22678
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
22679
+ "category": "Path/Resource"
22680
+ },
22681
+ {
22682
+ "id": "CWE-269",
22683
+ "name": "Improper Privilege Management",
22684
+ "category": "Authorization"
22685
+ },
22686
+ {
22687
+ "id": "CWE-287",
22688
+ "name": "Improper Authentication",
22689
+ "category": "Authentication"
22690
+ },
22691
+ {
22692
+ "id": "CWE-306",
22693
+ "name": "Missing Authentication for Critical Function",
22694
+ "category": "Authentication"
22695
+ },
22696
+ {
22697
+ "id": "CWE-352",
22698
+ "name": "Cross-Site Request Forgery (CSRF)",
22699
+ "category": "Session"
22700
+ },
22701
+ {
22702
+ "id": "CWE-362",
22703
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
22704
+ "category": "Concurrency"
22705
+ },
22706
+ {
22707
+ "id": "CWE-416",
22708
+ "name": "Use After Free",
22709
+ "category": "Memory Safety"
22710
+ },
22711
+ {
22712
+ "id": "CWE-434",
22713
+ "name": "Unrestricted Upload of File with Dangerous Type",
22714
+ "category": "File Handling"
22715
+ },
22716
+ {
22717
+ "id": "CWE-672",
22718
+ "name": "Operation on a Resource after Expiration or Release",
22719
+ "category": "Memory Safety"
22720
+ },
22721
+ {
22722
+ "id": "CWE-732",
22723
+ "name": "Incorrect Permission Assignment for Critical Resource",
22724
+ "category": "Authorization"
22725
+ },
22726
+ {
22727
+ "id": "CWE-78",
22728
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
22729
+ "category": "Injection"
22730
+ },
22731
+ {
22732
+ "id": "CWE-787",
22733
+ "name": "Out-of-bounds Write",
22734
+ "category": "Memory Safety"
22735
+ },
22736
+ {
22737
+ "id": "CWE-79",
22738
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
22739
+ "category": "Injection"
22740
+ },
22741
+ {
22742
+ "id": "CWE-798",
22743
+ "name": "Use of Hard-coded Credentials",
22744
+ "category": "Credentials"
22745
+ },
22746
+ {
22747
+ "id": "CWE-89",
22748
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
22749
+ "category": "Injection"
22750
+ },
22751
+ {
22752
+ "id": "CWE-918",
22753
+ "name": "Server-Side Request Forgery (SSRF)",
22754
+ "category": "Network"
22755
+ },
22756
+ {
22757
+ "id": "CWE-94",
22758
+ "name": "Improper Control of Generation of Code (Code Injection)",
22759
+ "category": "Injection"
22760
+ }
22761
+ ],
22762
+ "atlas": [
22763
+ {
22764
+ "id": "AML.T0010",
22765
+ "name": "ML Supply Chain Compromise",
22766
+ "tactic": "Initial Access"
22767
+ },
22768
+ {
22769
+ "id": "AML.T0016",
22770
+ "name": "Obtain Capabilities: Develop Capabilities",
22771
+ "tactic": "Resource Development"
22772
+ },
22773
+ {
22774
+ "id": "AML.T0017",
22775
+ "name": "Discover ML Model Ontology",
22776
+ "tactic": "Discovery"
22777
+ },
22778
+ {
22779
+ "id": "AML.T0018",
22780
+ "name": "Backdoor ML Model",
22781
+ "tactic": "Persistence"
22782
+ },
22783
+ {
22784
+ "id": "AML.T0020",
22785
+ "name": "Poison Training Data",
22786
+ "tactic": "ML Attack Staging"
22787
+ },
22788
+ {
22789
+ "id": "AML.T0043",
22790
+ "name": "Craft Adversarial Data",
22791
+ "tactic": "ML Attack Staging"
22792
+ },
22793
+ {
22794
+ "id": "AML.T0051",
22795
+ "name": "LLM Prompt Injection",
22796
+ "tactic": "Execution"
22797
+ },
22798
+ {
22799
+ "id": "AML.T0054",
22800
+ "name": "LLM Jailbreak",
22801
+ "tactic": "Defense Evasion"
22802
+ },
22803
+ {
22804
+ "id": "AML.T0096",
22805
+ "name": "AI API as Covert C2 Channel",
22806
+ "tactic": "Command and Control"
22807
+ }
22808
+ ],
22809
+ "d3fend": [
22810
+ {
22811
+ "id": "D3-ASLR",
22812
+ "name": "Address Space Layout Randomization",
22813
+ "tactic": "Harden"
22814
+ },
22815
+ {
22816
+ "id": "D3-CA",
22817
+ "name": "Certificate Analysis",
22818
+ "tactic": "Detect"
22819
+ },
22820
+ {
22821
+ "id": "D3-CSPP",
22822
+ "name": "Client-server Payload Profiling",
22823
+ "tactic": "Detect"
22824
+ },
22825
+ {
22826
+ "id": "D3-DA",
22827
+ "name": "Domain Analysis",
22828
+ "tactic": "Detect"
22829
+ },
22830
+ {
22831
+ "id": "D3-EAL",
22832
+ "name": "Executable Allowlisting",
22833
+ "tactic": "Harden"
22834
+ },
22835
+ {
22836
+ "id": "D3-IOPR",
22837
+ "name": "Input/Output Profiling Resource",
22838
+ "tactic": "Detect"
22839
+ },
22840
+ {
22841
+ "id": "D3-NI",
22842
+ "name": "Network Isolation",
22843
+ "tactic": "Isolate"
22844
+ },
22845
+ {
22846
+ "id": "D3-NTA",
22847
+ "name": "Network Traffic Analysis",
22848
+ "tactic": "Detect"
22849
+ },
22850
+ {
22851
+ "id": "D3-NTPM",
22852
+ "name": "Network Traffic Policy Mapping",
22853
+ "tactic": "Model"
22854
+ },
22855
+ {
22856
+ "id": "D3-PHRA",
22857
+ "name": "Process Hardware Resource Access",
22858
+ "tactic": "Isolate"
22859
+ },
22860
+ {
22861
+ "id": "D3-PSEP",
22862
+ "name": "Process Segment Execution Prevention",
22863
+ "tactic": "Harden"
22864
+ }
22865
+ ],
22866
+ "framework_gaps": [
22867
+ {
22868
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
22869
+ "framework": "ALL",
22870
+ "control_name": "AI Pipeline Integrity"
22871
+ },
22872
+ {
22873
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
22874
+ "framework": "ALL",
22875
+ "control_name": "Prompt Injection as Access Control Failure"
22876
+ },
22877
+ {
22878
+ "id": "CIS-Controls-v8-Control7",
22879
+ "framework": "CIS Controls v8",
22880
+ "control_name": "Continuous Vulnerability Management"
22881
+ },
22882
+ {
22883
+ "id": "CMMC-2.0-Level-2",
22884
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
22885
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
22886
+ },
22887
+ {
22888
+ "id": "FedRAMP-Rev5-Moderate",
22889
+ "framework": "FedRAMP Rev 5 Moderate",
22890
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
22891
+ },
22892
+ {
22893
+ "id": "HIPAA-Security-Rule-164.312(a)(1)",
22894
+ "framework": "HIPAA Security Rule (45 CFR § 164.312)",
22895
+ "control_name": "Access control standard (technical safeguards)"
22896
+ },
22897
+ {
22898
+ "id": "IEC-62443-3-3",
22899
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
22900
+ "control_name": "System security requirements and security levels"
22901
+ },
22902
+ {
22903
+ "id": "ISO-27001-2022-A.8.16",
22904
+ "framework": "ISO/IEC 27001:2022",
22905
+ "control_name": "Monitoring activities"
22906
+ },
22907
+ {
22908
+ "id": "ISO-27001-2022-A.8.28",
22909
+ "framework": "ISO/IEC 27001:2022",
22910
+ "control_name": "Secure coding"
22911
+ },
22912
+ {
22913
+ "id": "ISO-27001-2022-A.8.8",
22914
+ "framework": "ISO/IEC 27001:2022",
22915
+ "control_name": "Management of technical vulnerabilities"
22916
+ },
22917
+ {
22918
+ "id": "ISO-IEC-23894-2023-clause-7",
22919
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
22920
+ "control_name": "AI risk management process"
22921
+ },
22922
+ {
22923
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
22924
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
22925
+ "control_name": "AI risk assessment"
22926
+ },
22927
+ {
22928
+ "id": "NERC-CIP-007-6-R4",
22929
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
22930
+ "control_name": "Security event monitoring"
22931
+ },
22932
+ {
22933
+ "id": "NIS2-Art21-patch-management",
22934
+ "framework": "EU NIS2 Directive",
22935
+ "control_name": "Vulnerability handling and disclosure"
22936
+ },
22937
+ {
22938
+ "id": "NIST-800-115",
22939
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
22940
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
22941
+ },
22942
+ {
22943
+ "id": "NIST-800-53-AC-2",
22944
+ "framework": "NIST SP 800-53 Rev 5",
22945
+ "control_name": "Account Management"
22946
+ },
22947
+ {
22948
+ "id": "NIST-800-53-SC-28",
22949
+ "framework": "NIST SP 800-53 Rev 5",
22950
+ "control_name": "Protection of Information at Rest"
22951
+ },
22952
+ {
22953
+ "id": "NIST-800-53-SC-7",
22954
+ "framework": "NIST SP 800-53 Rev 5",
22955
+ "control_name": "Boundary Protection"
22956
+ },
22957
+ {
22958
+ "id": "NIST-800-53-SC-8",
22959
+ "framework": "NIST SP 800-53 Rev 5",
22960
+ "control_name": "Transmission Confidentiality and Integrity"
22961
+ },
22962
+ {
22963
+ "id": "NIST-800-53-SI-2",
22964
+ "framework": "NIST SP 800-53 Rev 5",
22965
+ "control_name": "Flaw Remediation"
22966
+ },
22967
+ {
22968
+ "id": "NIST-800-53-SI-3",
22969
+ "framework": "NIST SP 800-53 Rev 5",
22970
+ "control_name": "Malicious Code Protection"
22971
+ },
22972
+ {
22973
+ "id": "NIST-800-82r3",
22974
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
22975
+ "control_name": "Guide to Operational Technology (OT) Security"
22976
+ },
22977
+ {
22978
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
22979
+ "framework": "OWASP Top 10 for LLM Applications 2025",
22980
+ "control_name": "Prompt Injection"
22981
+ },
22982
+ {
22983
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
22984
+ "framework": "OWASP Top 10 for LLM Applications 2025",
22985
+ "control_name": "Sensitive Information Disclosure"
22986
+ },
22987
+ {
22988
+ "id": "OWASP-Pen-Testing-Guide-v5",
22989
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
22990
+ "control_name": "Web application penetration testing methodology"
22991
+ },
22992
+ {
22993
+ "id": "PCI-DSS-4.0-6.3.3",
22994
+ "framework": "PCI DSS 4.0",
22995
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
22996
+ },
22997
+ {
22998
+ "id": "PTES-Pre-engagement",
22999
+ "framework": "Penetration Testing Execution Standard (PTES)",
23000
+ "control_name": "Pre-engagement Interactions"
23001
+ },
23002
+ {
23003
+ "id": "SOC2-CC6-logical-access",
23004
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
23005
+ "control_name": "Logical and Physical Access Controls"
23006
+ },
23007
+ {
23008
+ "id": "SOC2-CC7-anomaly-detection",
23009
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
23010
+ "control_name": "System Operations — Threat and Vulnerability Management"
23011
+ }
23012
+ ],
23013
+ "attack_refs": [
23014
+ "T0855",
23015
+ "T0883",
23016
+ "T1041",
23017
+ "T1059",
23018
+ "T1068",
23019
+ "T1071",
23020
+ "T1078",
23021
+ "T1102",
23022
+ "T1133",
23023
+ "T1190",
23024
+ "T1213",
23025
+ "T1530",
23026
+ "T1548.001",
23027
+ "T1566",
23028
+ "T1567",
23029
+ "T1568"
23030
+ ],
23031
+ "rfc_refs": [
23032
+ "RFC-4301",
23033
+ "RFC-4303",
23034
+ "RFC-7296",
23035
+ "RFC-8446",
23036
+ "RFC-9000",
23037
+ "RFC-9114",
23038
+ "RFC-9180",
23039
+ "RFC-9421",
23040
+ "RFC-9458"
23041
+ ]
23042
+ }
23043
+ },
23044
+ "CVE-2026-0766": {
23045
+ "name": "Open WebUI Tool Module Code Injection RCE",
23046
+ "rwep": 29,
23047
+ "cvss": 8.8,
23048
+ "cisa_kev": false,
23049
+ "epss_score": null,
23050
+ "referencing_skills": [
23051
+ "kernel-lpe-triage",
23052
+ "ai-attack-surface",
23053
+ "compliance-theater",
23054
+ "attack-surface-pentest",
23055
+ "ot-ics-security",
23056
+ "coordinated-vuln-disclosure",
23057
+ "sector-energy"
23058
+ ],
23059
+ "chain": {
23060
+ "cwes": [
23061
+ {
23062
+ "id": "CWE-1037",
23063
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
23064
+ "category": "Hardware / Side Channel"
23065
+ },
23066
+ {
23067
+ "id": "CWE-1039",
23068
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
23069
+ "category": "AI/ML"
23070
+ },
23071
+ {
23072
+ "id": "CWE-125",
23073
+ "name": "Out-of-bounds Read",
23074
+ "category": "Memory Safety"
23075
+ },
23076
+ {
23077
+ "id": "CWE-1357",
23078
+ "name": "Reliance on Insufficiently Trustworthy Component",
23079
+ "category": "Supply Chain"
23080
+ },
23081
+ {
23082
+ "id": "CWE-1395",
23083
+ "name": "Dependency on Vulnerable Third-Party Component",
23084
+ "category": "Supply Chain"
23085
+ },
23086
+ {
23087
+ "id": "CWE-1426",
23088
+ "name": "Improper Validation of Generative AI Output",
23089
+ "category": "AI/ML"
23090
+ },
23091
+ {
23092
+ "id": "CWE-22",
23093
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
23094
+ "category": "Path/Resource"
23095
+ },
23096
+ {
23097
+ "id": "CWE-269",
23098
+ "name": "Improper Privilege Management",
23099
+ "category": "Authorization"
23100
+ },
23101
+ {
23102
+ "id": "CWE-287",
23103
+ "name": "Improper Authentication",
23104
+ "category": "Authentication"
23105
+ },
23106
+ {
23107
+ "id": "CWE-306",
23108
+ "name": "Missing Authentication for Critical Function",
23109
+ "category": "Authentication"
23110
+ },
23111
+ {
23112
+ "id": "CWE-352",
23113
+ "name": "Cross-Site Request Forgery (CSRF)",
23114
+ "category": "Session"
23115
+ },
23116
+ {
23117
+ "id": "CWE-362",
23118
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
23119
+ "category": "Concurrency"
23120
+ },
23121
+ {
23122
+ "id": "CWE-416",
23123
+ "name": "Use After Free",
23124
+ "category": "Memory Safety"
23125
+ },
23126
+ {
23127
+ "id": "CWE-434",
23128
+ "name": "Unrestricted Upload of File with Dangerous Type",
23129
+ "category": "File Handling"
23130
+ },
23131
+ {
23132
+ "id": "CWE-672",
23133
+ "name": "Operation on a Resource after Expiration or Release",
23134
+ "category": "Memory Safety"
23135
+ },
23136
+ {
23137
+ "id": "CWE-732",
23138
+ "name": "Incorrect Permission Assignment for Critical Resource",
23139
+ "category": "Authorization"
23140
+ },
23141
+ {
23142
+ "id": "CWE-78",
23143
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
23144
+ "category": "Injection"
23145
+ },
23146
+ {
23147
+ "id": "CWE-787",
23148
+ "name": "Out-of-bounds Write",
23149
+ "category": "Memory Safety"
23150
+ },
23151
+ {
23152
+ "id": "CWE-79",
23153
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
23154
+ "category": "Injection"
23155
+ },
23156
+ {
23157
+ "id": "CWE-798",
23158
+ "name": "Use of Hard-coded Credentials",
23159
+ "category": "Credentials"
23160
+ },
23161
+ {
23162
+ "id": "CWE-89",
23163
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
23164
+ "category": "Injection"
23165
+ },
23166
+ {
23167
+ "id": "CWE-918",
23168
+ "name": "Server-Side Request Forgery (SSRF)",
23169
+ "category": "Network"
23170
+ },
23171
+ {
23172
+ "id": "CWE-94",
23173
+ "name": "Improper Control of Generation of Code (Code Injection)",
23174
+ "category": "Injection"
23175
+ }
23176
+ ],
23177
+ "atlas": [
23178
+ {
23179
+ "id": "AML.T0010",
23180
+ "name": "ML Supply Chain Compromise",
23181
+ "tactic": "Initial Access"
23182
+ },
23183
+ {
23184
+ "id": "AML.T0016",
23185
+ "name": "Obtain Capabilities: Develop Capabilities",
23186
+ "tactic": "Resource Development"
23187
+ },
23188
+ {
23189
+ "id": "AML.T0017",
23190
+ "name": "Discover ML Model Ontology",
23191
+ "tactic": "Discovery"
23192
+ },
23193
+ {
23194
+ "id": "AML.T0018",
23195
+ "name": "Backdoor ML Model",
23196
+ "tactic": "Persistence"
23197
+ },
23198
+ {
23199
+ "id": "AML.T0020",
23200
+ "name": "Poison Training Data",
23201
+ "tactic": "ML Attack Staging"
23202
+ },
23203
+ {
23204
+ "id": "AML.T0043",
23205
+ "name": "Craft Adversarial Data",
23206
+ "tactic": "ML Attack Staging"
23207
+ },
23208
+ {
23209
+ "id": "AML.T0051",
23210
+ "name": "LLM Prompt Injection",
23211
+ "tactic": "Execution"
23212
+ },
23213
+ {
23214
+ "id": "AML.T0054",
23215
+ "name": "LLM Jailbreak",
23216
+ "tactic": "Defense Evasion"
23217
+ },
23218
+ {
23219
+ "id": "AML.T0096",
23220
+ "name": "AI API as Covert C2 Channel",
23221
+ "tactic": "Command and Control"
23222
+ }
23223
+ ],
23224
+ "d3fend": [
23225
+ {
23226
+ "id": "D3-ASLR",
23227
+ "name": "Address Space Layout Randomization",
23228
+ "tactic": "Harden"
23229
+ },
23230
+ {
23231
+ "id": "D3-CSPP",
23232
+ "name": "Client-server Payload Profiling",
23233
+ "tactic": "Detect"
23234
+ },
23235
+ {
23236
+ "id": "D3-EAL",
23237
+ "name": "Executable Allowlisting",
23238
+ "tactic": "Harden"
23239
+ },
23240
+ {
23241
+ "id": "D3-IOPR",
23242
+ "name": "Input/Output Profiling Resource",
23243
+ "tactic": "Detect"
23244
+ },
23245
+ {
23246
+ "id": "D3-NTA",
23247
+ "name": "Network Traffic Analysis",
23248
+ "tactic": "Detect"
23249
+ },
23250
+ {
23251
+ "id": "D3-PHRA",
23252
+ "name": "Process Hardware Resource Access",
23253
+ "tactic": "Isolate"
23254
+ },
23255
+ {
23256
+ "id": "D3-PSEP",
23257
+ "name": "Process Segment Execution Prevention",
23258
+ "tactic": "Harden"
23259
+ }
23260
+ ],
23261
+ "framework_gaps": [
23262
+ {
23263
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
23264
+ "framework": "ALL",
23265
+ "control_name": "AI Pipeline Integrity"
23266
+ },
23267
+ {
23268
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
23269
+ "framework": "ALL",
23270
+ "control_name": "Prompt Injection as Access Control Failure"
23271
+ },
23272
+ {
23273
+ "id": "CIS-Controls-v8-Control7",
23274
+ "framework": "CIS Controls v8",
23275
+ "control_name": "Continuous Vulnerability Management"
23276
+ },
23277
+ {
23278
+ "id": "CMMC-2.0-Level-2",
23279
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
23280
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
23281
+ },
23282
+ {
23283
+ "id": "FedRAMP-Rev5-Moderate",
23284
+ "framework": "FedRAMP Rev 5 Moderate",
23285
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
23286
+ },
23287
+ {
23288
+ "id": "IEC-62443-3-3",
23289
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
23290
+ "control_name": "System security requirements and security levels"
23291
+ },
23292
+ {
23293
+ "id": "ISO-27001-2022-A.8.28",
23294
+ "framework": "ISO/IEC 27001:2022",
23295
+ "control_name": "Secure coding"
23296
+ },
23297
+ {
23298
+ "id": "ISO-27001-2022-A.8.8",
23299
+ "framework": "ISO/IEC 27001:2022",
23300
+ "control_name": "Management of technical vulnerabilities"
23301
+ },
23302
+ {
23303
+ "id": "ISO-IEC-23894-2023-clause-7",
23304
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
23305
+ "control_name": "AI risk management process"
23306
+ },
23307
+ {
23308
+ "id": "NERC-CIP-007-6-R4",
23309
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
23310
+ "control_name": "Security event monitoring"
23311
+ },
23312
+ {
23313
+ "id": "NIS2-Art21-patch-management",
23314
+ "framework": "EU NIS2 Directive",
23315
+ "control_name": "Vulnerability handling and disclosure"
23316
+ },
23317
+ {
23318
+ "id": "NIST-800-115",
23319
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
23320
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
23321
+ },
23322
+ {
23323
+ "id": "NIST-800-218-SSDF",
23324
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
23325
+ "control_name": "Secure Software Development Framework"
23326
+ },
23327
+ {
23328
+ "id": "NIST-800-53-AC-2",
23329
+ "framework": "NIST SP 800-53 Rev 5",
23330
+ "control_name": "Account Management"
23331
+ },
23332
+ {
23333
+ "id": "NIST-800-53-SC-8",
23334
+ "framework": "NIST SP 800-53 Rev 5",
23335
+ "control_name": "Transmission Confidentiality and Integrity"
23336
+ },
23337
+ {
23338
+ "id": "NIST-800-53-SI-2",
23339
+ "framework": "NIST SP 800-53 Rev 5",
23340
+ "control_name": "Flaw Remediation"
23341
+ },
23342
+ {
23343
+ "id": "NIST-800-53-SI-3",
23344
+ "framework": "NIST SP 800-53 Rev 5",
23345
+ "control_name": "Malicious Code Protection"
23346
+ },
23347
+ {
23348
+ "id": "NIST-800-82r3",
23349
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
23350
+ "control_name": "Guide to Operational Technology (OT) Security"
23351
+ },
23352
+ {
23353
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
23354
+ "framework": "OWASP Top 10 for LLM Applications 2025",
23355
+ "control_name": "Prompt Injection"
23356
+ },
23357
+ {
23358
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
23359
+ "framework": "OWASP Top 10 for LLM Applications 2025",
23360
+ "control_name": "Sensitive Information Disclosure"
23361
+ },
23362
+ {
23363
+ "id": "OWASP-Pen-Testing-Guide-v5",
23364
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
23365
+ "control_name": "Web application penetration testing methodology"
23366
+ },
23367
+ {
23368
+ "id": "PCI-DSS-4.0-6.3.3",
23369
+ "framework": "PCI DSS 4.0",
23370
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
23371
+ },
23372
+ {
23373
+ "id": "PTES-Pre-engagement",
23374
+ "framework": "Penetration Testing Execution Standard (PTES)",
23375
+ "control_name": "Pre-engagement Interactions"
23376
+ },
23377
+ {
23378
+ "id": "SOC2-CC6-logical-access",
23379
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
23380
+ "control_name": "Logical and Physical Access Controls"
23381
+ },
23382
+ {
23383
+ "id": "SOC2-CC9-vendor-management",
23384
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
23385
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
23386
+ }
23387
+ ],
23388
+ "attack_refs": [
23389
+ "T0855",
23390
+ "T0883",
23391
+ "T1059",
23392
+ "T1068",
23393
+ "T1078",
23394
+ "T1133",
23395
+ "T1190",
23396
+ "T1548.001",
23397
+ "T1566"
23398
+ ],
23399
+ "rfc_refs": [
23400
+ "RFC-4301",
23401
+ "RFC-4303",
23402
+ "RFC-7296"
23403
+ ]
23404
+ }
23405
+ },
23406
+ "CVE-2025-64496": {
23407
+ "name": "Open WebUI Malicious Model Server Code Injection (Account Takeover to RCE)",
23408
+ "rwep": 29,
23409
+ "cvss": 8,
23410
+ "cisa_kev": false,
23411
+ "epss_score": null,
23412
+ "referencing_skills": [
23413
+ "kernel-lpe-triage",
23414
+ "ai-attack-surface",
23415
+ "compliance-theater",
23416
+ "attack-surface-pentest",
23417
+ "ot-ics-security",
23418
+ "coordinated-vuln-disclosure",
23419
+ "sector-energy"
23420
+ ],
23421
+ "chain": {
23422
+ "cwes": [
23423
+ {
23424
+ "id": "CWE-1037",
23425
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
23426
+ "category": "Hardware / Side Channel"
23427
+ },
23428
+ {
23429
+ "id": "CWE-1039",
23430
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
23431
+ "category": "AI/ML"
23432
+ },
23433
+ {
23434
+ "id": "CWE-125",
23435
+ "name": "Out-of-bounds Read",
23436
+ "category": "Memory Safety"
23437
+ },
23438
+ {
23439
+ "id": "CWE-1357",
23440
+ "name": "Reliance on Insufficiently Trustworthy Component",
23441
+ "category": "Supply Chain"
23442
+ },
23443
+ {
23444
+ "id": "CWE-1395",
23445
+ "name": "Dependency on Vulnerable Third-Party Component",
23446
+ "category": "Supply Chain"
23447
+ },
23448
+ {
23449
+ "id": "CWE-1426",
23450
+ "name": "Improper Validation of Generative AI Output",
23451
+ "category": "AI/ML"
23452
+ },
23453
+ {
23454
+ "id": "CWE-22",
23455
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
23456
+ "category": "Path/Resource"
23457
+ },
23458
+ {
23459
+ "id": "CWE-269",
23460
+ "name": "Improper Privilege Management",
23461
+ "category": "Authorization"
23462
+ },
23463
+ {
23464
+ "id": "CWE-287",
23465
+ "name": "Improper Authentication",
23466
+ "category": "Authentication"
23467
+ },
23468
+ {
23469
+ "id": "CWE-306",
23470
+ "name": "Missing Authentication for Critical Function",
23471
+ "category": "Authentication"
23472
+ },
23473
+ {
23474
+ "id": "CWE-352",
23475
+ "name": "Cross-Site Request Forgery (CSRF)",
23476
+ "category": "Session"
23477
+ },
23478
+ {
23479
+ "id": "CWE-362",
23480
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
23481
+ "category": "Concurrency"
23482
+ },
23483
+ {
23484
+ "id": "CWE-416",
23485
+ "name": "Use After Free",
23486
+ "category": "Memory Safety"
23487
+ },
23488
+ {
23489
+ "id": "CWE-434",
23490
+ "name": "Unrestricted Upload of File with Dangerous Type",
23491
+ "category": "File Handling"
23492
+ },
23493
+ {
23494
+ "id": "CWE-672",
23495
+ "name": "Operation on a Resource after Expiration or Release",
23496
+ "category": "Memory Safety"
23497
+ },
23498
+ {
23499
+ "id": "CWE-732",
23500
+ "name": "Incorrect Permission Assignment for Critical Resource",
23501
+ "category": "Authorization"
23502
+ },
23503
+ {
23504
+ "id": "CWE-78",
23505
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
23506
+ "category": "Injection"
23507
+ },
23508
+ {
23509
+ "id": "CWE-787",
23510
+ "name": "Out-of-bounds Write",
23511
+ "category": "Memory Safety"
23512
+ },
23513
+ {
23514
+ "id": "CWE-79",
23515
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
23516
+ "category": "Injection"
23517
+ },
23518
+ {
23519
+ "id": "CWE-798",
23520
+ "name": "Use of Hard-coded Credentials",
23521
+ "category": "Credentials"
23522
+ },
23523
+ {
23524
+ "id": "CWE-89",
23525
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
23526
+ "category": "Injection"
23527
+ },
23528
+ {
23529
+ "id": "CWE-918",
23530
+ "name": "Server-Side Request Forgery (SSRF)",
23531
+ "category": "Network"
23532
+ },
23533
+ {
23534
+ "id": "CWE-94",
23535
+ "name": "Improper Control of Generation of Code (Code Injection)",
23536
+ "category": "Injection"
23537
+ }
23538
+ ],
23539
+ "atlas": [
23540
+ {
23541
+ "id": "AML.T0010",
23542
+ "name": "ML Supply Chain Compromise",
23543
+ "tactic": "Initial Access"
23544
+ },
23545
+ {
23546
+ "id": "AML.T0016",
23547
+ "name": "Obtain Capabilities: Develop Capabilities",
23548
+ "tactic": "Resource Development"
23549
+ },
23550
+ {
23551
+ "id": "AML.T0017",
23552
+ "name": "Discover ML Model Ontology",
23553
+ "tactic": "Discovery"
23554
+ },
23555
+ {
23556
+ "id": "AML.T0018",
23557
+ "name": "Backdoor ML Model",
23558
+ "tactic": "Persistence"
23559
+ },
23560
+ {
23561
+ "id": "AML.T0020",
23562
+ "name": "Poison Training Data",
23563
+ "tactic": "ML Attack Staging"
23564
+ },
23565
+ {
23566
+ "id": "AML.T0043",
23567
+ "name": "Craft Adversarial Data",
23568
+ "tactic": "ML Attack Staging"
23569
+ },
23570
+ {
23571
+ "id": "AML.T0051",
23572
+ "name": "LLM Prompt Injection",
23573
+ "tactic": "Execution"
23574
+ },
23575
+ {
23576
+ "id": "AML.T0054",
23577
+ "name": "LLM Jailbreak",
23578
+ "tactic": "Defense Evasion"
23579
+ },
23580
+ {
23581
+ "id": "AML.T0096",
23582
+ "name": "AI API as Covert C2 Channel",
23583
+ "tactic": "Command and Control"
23584
+ }
23585
+ ],
23586
+ "d3fend": [
23587
+ {
23588
+ "id": "D3-ASLR",
23589
+ "name": "Address Space Layout Randomization",
23590
+ "tactic": "Harden"
23591
+ },
23592
+ {
23593
+ "id": "D3-CSPP",
23594
+ "name": "Client-server Payload Profiling",
23595
+ "tactic": "Detect"
23596
+ },
23597
+ {
23598
+ "id": "D3-EAL",
23599
+ "name": "Executable Allowlisting",
23600
+ "tactic": "Harden"
23601
+ },
23602
+ {
23603
+ "id": "D3-IOPR",
23604
+ "name": "Input/Output Profiling Resource",
23605
+ "tactic": "Detect"
23606
+ },
23607
+ {
23608
+ "id": "D3-NTA",
23609
+ "name": "Network Traffic Analysis",
23610
+ "tactic": "Detect"
23611
+ },
23612
+ {
23613
+ "id": "D3-PHRA",
23614
+ "name": "Process Hardware Resource Access",
23615
+ "tactic": "Isolate"
23616
+ },
23617
+ {
23618
+ "id": "D3-PSEP",
23619
+ "name": "Process Segment Execution Prevention",
23620
+ "tactic": "Harden"
23621
+ }
23622
+ ],
23623
+ "framework_gaps": [
23624
+ {
23625
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
23626
+ "framework": "ALL",
23627
+ "control_name": "AI Pipeline Integrity"
23628
+ },
23629
+ {
23630
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
23631
+ "framework": "ALL",
23632
+ "control_name": "Prompt Injection as Access Control Failure"
23633
+ },
23634
+ {
23635
+ "id": "CIS-Controls-v8-Control7",
23636
+ "framework": "CIS Controls v8",
23637
+ "control_name": "Continuous Vulnerability Management"
23638
+ },
23639
+ {
23640
+ "id": "CMMC-2.0-Level-2",
23641
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
23642
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
23643
+ },
23644
+ {
23645
+ "id": "FedRAMP-Rev5-Moderate",
23646
+ "framework": "FedRAMP Rev 5 Moderate",
23647
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
23648
+ },
23649
+ {
23650
+ "id": "IEC-62443-3-3",
23651
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
23652
+ "control_name": "System security requirements and security levels"
23653
+ },
23654
+ {
23655
+ "id": "ISO-27001-2022-A.8.28",
23656
+ "framework": "ISO/IEC 27001:2022",
23657
+ "control_name": "Secure coding"
23658
+ },
23659
+ {
23660
+ "id": "ISO-27001-2022-A.8.8",
23661
+ "framework": "ISO/IEC 27001:2022",
23662
+ "control_name": "Management of technical vulnerabilities"
23663
+ },
23664
+ {
23665
+ "id": "ISO-IEC-23894-2023-clause-7",
23666
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
23667
+ "control_name": "AI risk management process"
23668
+ },
23669
+ {
23670
+ "id": "NERC-CIP-007-6-R4",
23671
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
23672
+ "control_name": "Security event monitoring"
23673
+ },
23674
+ {
23675
+ "id": "NIS2-Art21-patch-management",
23676
+ "framework": "EU NIS2 Directive",
23677
+ "control_name": "Vulnerability handling and disclosure"
23678
+ },
23679
+ {
23680
+ "id": "NIST-800-115",
23681
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
23682
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
23683
+ },
23684
+ {
23685
+ "id": "NIST-800-218-SSDF",
23686
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
23687
+ "control_name": "Secure Software Development Framework"
23688
+ },
23689
+ {
23690
+ "id": "NIST-800-53-AC-2",
23691
+ "framework": "NIST SP 800-53 Rev 5",
23692
+ "control_name": "Account Management"
23693
+ },
23694
+ {
23695
+ "id": "NIST-800-53-SC-8",
23696
+ "framework": "NIST SP 800-53 Rev 5",
23697
+ "control_name": "Transmission Confidentiality and Integrity"
23698
+ },
23699
+ {
23700
+ "id": "NIST-800-53-SI-2",
23701
+ "framework": "NIST SP 800-53 Rev 5",
23702
+ "control_name": "Flaw Remediation"
23703
+ },
23704
+ {
23705
+ "id": "NIST-800-53-SI-3",
23706
+ "framework": "NIST SP 800-53 Rev 5",
23707
+ "control_name": "Malicious Code Protection"
23708
+ },
23709
+ {
23710
+ "id": "NIST-800-82r3",
23711
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
23712
+ "control_name": "Guide to Operational Technology (OT) Security"
23713
+ },
23714
+ {
23715
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
23716
+ "framework": "OWASP Top 10 for LLM Applications 2025",
23717
+ "control_name": "Prompt Injection"
23718
+ },
23719
+ {
23720
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
23721
+ "framework": "OWASP Top 10 for LLM Applications 2025",
23722
+ "control_name": "Sensitive Information Disclosure"
23723
+ },
23724
+ {
23725
+ "id": "OWASP-Pen-Testing-Guide-v5",
23726
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
23727
+ "control_name": "Web application penetration testing methodology"
23728
+ },
23729
+ {
23730
+ "id": "PCI-DSS-4.0-6.3.3",
23731
+ "framework": "PCI DSS 4.0",
23732
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
23733
+ },
23734
+ {
23735
+ "id": "PTES-Pre-engagement",
23736
+ "framework": "Penetration Testing Execution Standard (PTES)",
23737
+ "control_name": "Pre-engagement Interactions"
23738
+ },
23739
+ {
23740
+ "id": "SOC2-CC6-logical-access",
23741
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
23742
+ "control_name": "Logical and Physical Access Controls"
23743
+ },
23744
+ {
23745
+ "id": "SOC2-CC9-vendor-management",
23746
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
23747
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
23748
+ }
23749
+ ],
23750
+ "attack_refs": [
23751
+ "T0855",
23752
+ "T0883",
23753
+ "T1059",
23754
+ "T1068",
23755
+ "T1078",
23756
+ "T1133",
23757
+ "T1190",
23758
+ "T1548.001",
23759
+ "T1566"
23760
+ ],
23761
+ "rfc_refs": [
23762
+ "RFC-4301",
23763
+ "RFC-4303",
23764
+ "RFC-7296"
23765
+ ]
23766
+ }
23767
+ },
22628
23768
  "CVE-2026-41091": {
22629
23769
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
22630
23770
  "rwep": 45,
@@ -49001,6 +50141,7 @@
49001
50141
  "related_cves": [
49002
50142
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
49003
50143
  "CVE-2023-43472",
50144
+ "CVE-2023-48022",
49004
50145
  "CVE-2024-3094",
49005
50146
  "CVE-2024-3154",
49006
50147
  "CVE-2024-50050",
@@ -49018,7 +50159,9 @@
49018
50159
  "CVE-2025-53773",
49019
50160
  "CVE-2025-54136",
49020
50161
  "CVE-2025-60455",
50162
+ "CVE-2025-64496",
49021
50163
  "CVE-2025-6965",
50164
+ "CVE-2026-0766",
49022
50165
  "CVE-2026-22252",
49023
50166
  "CVE-2026-22688",
49024
50167
  "CVE-2026-24206",
@@ -49367,6 +50510,7 @@
49367
50510
  },
49368
50511
  "related_cves": [
49369
50512
  "CVE-2023-43472",
50513
+ "CVE-2023-48022",
49370
50514
  "CVE-2024-50050",
49371
50515
  "CVE-2025-0133",
49372
50516
  "CVE-2025-10585",
@@ -49380,7 +50524,9 @@
49380
50524
  "CVE-2025-49596",
49381
50525
  "CVE-2025-54136",
49382
50526
  "CVE-2025-60455",
50527
+ "CVE-2025-64496",
49383
50528
  "CVE-2025-6965",
50529
+ "CVE-2026-0766",
49384
50530
  "CVE-2026-22252",
49385
50531
  "CVE-2026-22688",
49386
50532
  "CVE-2026-24206",
@@ -49524,6 +50670,7 @@
49524
50670
  },
49525
50671
  "related_cves": [
49526
50672
  "CVE-2023-43472",
50673
+ "CVE-2023-48022",
49527
50674
  "CVE-2024-50050",
49528
50675
  "CVE-2025-0133",
49529
50676
  "CVE-2025-10585",
@@ -49537,7 +50684,9 @@
49537
50684
  "CVE-2025-49596",
49538
50685
  "CVE-2025-54136",
49539
50686
  "CVE-2025-60455",
50687
+ "CVE-2025-64496",
49540
50688
  "CVE-2025-6965",
50689
+ "CVE-2026-0766",
49541
50690
  "CVE-2026-22252",
49542
50691
  "CVE-2026-22688",
49543
50692
  "CVE-2026-24206",
@@ -49695,6 +50844,7 @@
49695
50844
  },
49696
50845
  "related_cves": [
49697
50846
  "CVE-2023-43472",
50847
+ "CVE-2023-48022",
49698
50848
  "CVE-2024-50050",
49699
50849
  "CVE-2025-0133",
49700
50850
  "CVE-2025-10585",
@@ -49708,7 +50858,9 @@
49708
50858
  "CVE-2025-49596",
49709
50859
  "CVE-2025-54136",
49710
50860
  "CVE-2025-60455",
50861
+ "CVE-2025-64496",
49711
50862
  "CVE-2025-6965",
50863
+ "CVE-2026-0766",
49712
50864
  "CVE-2026-22252",
49713
50865
  "CVE-2026-22688",
49714
50866
  "CVE-2026-24206",
@@ -49970,6 +51122,7 @@
49970
51122
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
49971
51123
  "BUG-2026-NIGHTMARE-ECLIPSE-UNDEFEND",
49972
51124
  "CVE-2023-43472",
51125
+ "CVE-2023-48022",
49973
51126
  "CVE-2024-3094",
49974
51127
  "CVE-2024-3154",
49975
51128
  "CVE-2024-50050",
@@ -49984,7 +51137,9 @@
49984
51137
  "CVE-2025-53773",
49985
51138
  "CVE-2025-54136",
49986
51139
  "CVE-2025-60455",
51140
+ "CVE-2025-64496",
49987
51141
  "CVE-2025-6965",
51142
+ "CVE-2026-0766",
49988
51143
  "CVE-2026-22252",
49989
51144
  "CVE-2026-22688",
49990
51145
  "CVE-2026-22778",
@@ -50199,6 +51354,7 @@
50199
51354
  "CVE-2023-39780",
50200
51355
  "CVE-2023-41974",
50201
51356
  "CVE-2023-43000",
51357
+ "CVE-2023-48022",
50202
51358
  "CVE-2023-50224",
50203
51359
  "CVE-2023-52163",
50204
51360
  "CVE-2024-0769",
@@ -50350,6 +51506,7 @@
50350
51506
  "CVE-2025-62849",
50351
51507
  "CVE-2025-64328",
50352
51508
  "CVE-2025-64446",
51509
+ "CVE-2025-64496",
50353
51510
  "CVE-2025-6543",
50354
51511
  "CVE-2025-6554",
50355
51512
  "CVE-2025-6558",
@@ -50366,6 +51523,7 @@
50366
51523
  "CVE-2025-9242",
50367
51524
  "CVE-2025-9377",
50368
51525
  "CVE-2026-0300",
51526
+ "CVE-2026-0766",
50369
51527
  "CVE-2026-1281",
50370
51528
  "CVE-2026-1340",
50371
51529
  "CVE-2026-1603",
@@ -50652,6 +51810,7 @@
50652
51810
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
50653
51811
  "BUG-2026-NIGHTMARE-ECLIPSE-YELLOWKEY",
50654
51812
  "CVE-2023-43472",
51813
+ "CVE-2023-48022",
50655
51814
  "CVE-2024-3094",
50656
51815
  "CVE-2024-3154",
50657
51816
  "CVE-2024-40635",
@@ -51008,6 +52167,7 @@
51008
52167
  "related_cves": [
51009
52168
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
51010
52169
  "CVE-2023-43472",
52170
+ "CVE-2023-48022",
51011
52171
  "CVE-2024-3094",
51012
52172
  "CVE-2024-3154",
51013
52173
  "CVE-2024-50050",
@@ -51025,7 +52185,9 @@
51025
52185
  "CVE-2025-53773",
51026
52186
  "CVE-2025-54136",
51027
52187
  "CVE-2025-60455",
52188
+ "CVE-2025-64496",
51028
52189
  "CVE-2025-6965",
52190
+ "CVE-2026-0766",
51029
52191
  "CVE-2026-22252",
51030
52192
  "CVE-2026-22688",
51031
52193
  "CVE-2026-24206",
@@ -51604,6 +52766,7 @@
51604
52766
  "related_cves": [
51605
52767
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
51606
52768
  "CVE-2023-43472",
52769
+ "CVE-2023-48022",
51607
52770
  "CVE-2024-3094",
51608
52771
  "CVE-2024-3154",
51609
52772
  "CVE-2024-50050",
@@ -51621,7 +52784,9 @@
51621
52784
  "CVE-2025-53773",
51622
52785
  "CVE-2025-54136",
51623
52786
  "CVE-2025-60455",
52787
+ "CVE-2025-64496",
51624
52788
  "CVE-2025-6965",
52789
+ "CVE-2026-0766",
51625
52790
  "CVE-2026-22252",
51626
52791
  "CVE-2026-22688",
51627
52792
  "CVE-2026-24206",
@@ -51838,6 +53003,7 @@
51838
53003
  ]
51839
53004
  },
51840
53005
  "related_cves": [
53006
+ "CVE-2023-48022",
51841
53007
  "CVE-2024-3094",
51842
53008
  "CVE-2024-50050",
51843
53009
  "CVE-2025-10585",
@@ -51852,6 +53018,8 @@
51852
53018
  "CVE-2025-53773",
51853
53019
  "CVE-2025-54136",
51854
53020
  "CVE-2025-60455",
53021
+ "CVE-2025-64496",
53022
+ "CVE-2026-0766",
51855
53023
  "CVE-2026-22252",
51856
53024
  "CVE-2026-22688",
51857
53025
  "CVE-2026-24206",
@@ -52498,6 +53666,7 @@
52498
53666
  "related_cves": [
52499
53667
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
52500
53668
  "CVE-2023-43472",
53669
+ "CVE-2023-48022",
52501
53670
  "CVE-2024-3094",
52502
53671
  "CVE-2024-3154",
52503
53672
  "CVE-2024-50050",
@@ -52515,7 +53684,9 @@
52515
53684
  "CVE-2025-53773",
52516
53685
  "CVE-2025-54136",
52517
53686
  "CVE-2025-60455",
53687
+ "CVE-2025-64496",
52518
53688
  "CVE-2025-6965",
53689
+ "CVE-2026-0766",
52519
53690
  "CVE-2026-22252",
52520
53691
  "CVE-2026-22688",
52521
53692
  "CVE-2026-24206",
@@ -52734,6 +53905,7 @@
52734
53905
  "CVE-2023-39780",
52735
53906
  "CVE-2023-41974",
52736
53907
  "CVE-2023-43000",
53908
+ "CVE-2023-48022",
52737
53909
  "CVE-2023-50224",
52738
53910
  "CVE-2023-52163",
52739
53911
  "CVE-2024-0769",
@@ -52885,6 +54057,7 @@
52885
54057
  "CVE-2025-62849",
52886
54058
  "CVE-2025-64328",
52887
54059
  "CVE-2025-64446",
54060
+ "CVE-2025-64496",
52888
54061
  "CVE-2025-6543",
52889
54062
  "CVE-2025-6554",
52890
54063
  "CVE-2025-6558",
@@ -52901,6 +54074,7 @@
52901
54074
  "CVE-2025-9242",
52902
54075
  "CVE-2025-9377",
52903
54076
  "CVE-2026-0300",
54077
+ "CVE-2026-0766",
52904
54078
  "CVE-2026-1281",
52905
54079
  "CVE-2026-1340",
52906
54080
  "CVE-2026-1603",
@@ -53151,6 +54325,7 @@
53151
54325
  "CVE-2023-39780",
53152
54326
  "CVE-2023-41974",
53153
54327
  "CVE-2023-43000",
54328
+ "CVE-2023-48022",
53154
54329
  "CVE-2023-50224",
53155
54330
  "CVE-2023-52163",
53156
54331
  "CVE-2024-0769",
@@ -53302,6 +54477,7 @@
53302
54477
  "CVE-2025-62849",
53303
54478
  "CVE-2025-64328",
53304
54479
  "CVE-2025-64446",
54480
+ "CVE-2025-64496",
53305
54481
  "CVE-2025-6543",
53306
54482
  "CVE-2025-6554",
53307
54483
  "CVE-2025-6558",
@@ -53318,6 +54494,7 @@
53318
54494
  "CVE-2025-9242",
53319
54495
  "CVE-2025-9377",
53320
54496
  "CVE-2026-0300",
54497
+ "CVE-2026-0766",
53321
54498
  "CVE-2026-1281",
53322
54499
  "CVE-2026-1340",
53323
54500
  "CVE-2026-1603",
@@ -53601,6 +54778,7 @@
53601
54778
  "related_cves": [
53602
54779
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
53603
54780
  "CVE-2023-43472",
54781
+ "CVE-2023-48022",
53604
54782
  "CVE-2024-3094",
53605
54783
  "CVE-2024-3154",
53606
54784
  "CVE-2024-50050",
@@ -53618,7 +54796,9 @@
53618
54796
  "CVE-2025-53773",
53619
54797
  "CVE-2025-54136",
53620
54798
  "CVE-2025-60455",
54799
+ "CVE-2025-64496",
53621
54800
  "CVE-2025-6965",
54801
+ "CVE-2026-0766",
53622
54802
  "CVE-2026-22252",
53623
54803
  "CVE-2026-22688",
53624
54804
  "CVE-2026-24206",
@@ -54389,6 +55569,7 @@
54389
55569
  "CVE-2023-39780",
54390
55570
  "CVE-2023-41974",
54391
55571
  "CVE-2023-43000",
55572
+ "CVE-2023-48022",
54392
55573
  "CVE-2023-50224",
54393
55574
  "CVE-2023-52163",
54394
55575
  "CVE-2024-0769",
@@ -54540,6 +55721,7 @@
54540
55721
  "CVE-2025-62849",
54541
55722
  "CVE-2025-64328",
54542
55723
  "CVE-2025-64446",
55724
+ "CVE-2025-64496",
54543
55725
  "CVE-2025-6543",
54544
55726
  "CVE-2025-6554",
54545
55727
  "CVE-2025-6558",
@@ -54556,6 +55738,7 @@
54556
55738
  "CVE-2025-9242",
54557
55739
  "CVE-2025-9377",
54558
55740
  "CVE-2026-0300",
55741
+ "CVE-2026-0766",
54559
55742
  "CVE-2026-1281",
54560
55743
  "CVE-2026-1340",
54561
55744
  "CVE-2026-1603",
@@ -54903,6 +56086,7 @@
54903
56086
  "related_cves": [
54904
56087
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
54905
56088
  "CVE-2023-43472",
56089
+ "CVE-2023-48022",
54906
56090
  "CVE-2024-3094",
54907
56091
  "CVE-2024-3154",
54908
56092
  "CVE-2024-50050",
@@ -54920,7 +56104,9 @@
54920
56104
  "CVE-2025-53773",
54921
56105
  "CVE-2025-54136",
54922
56106
  "CVE-2025-60455",
56107
+ "CVE-2025-64496",
54923
56108
  "CVE-2025-6965",
56109
+ "CVE-2026-0766",
54924
56110
  "CVE-2026-22252",
54925
56111
  "CVE-2026-22688",
54926
56112
  "CVE-2026-24206",
@@ -55217,6 +56403,7 @@
55217
56403
  "CVE-2023-41974",
55218
56404
  "CVE-2023-43000",
55219
56405
  "CVE-2023-43472",
56406
+ "CVE-2023-48022",
55220
56407
  "CVE-2023-50224",
55221
56408
  "CVE-2023-52163",
55222
56409
  "CVE-2024-0769",
@@ -55372,6 +56559,7 @@
55372
56559
  "CVE-2025-62849",
55373
56560
  "CVE-2025-64328",
55374
56561
  "CVE-2025-64446",
56562
+ "CVE-2025-64496",
55375
56563
  "CVE-2025-6543",
55376
56564
  "CVE-2025-6554",
55377
56565
  "CVE-2025-6558",
@@ -55389,6 +56577,7 @@
55389
56577
  "CVE-2025-9242",
55390
56578
  "CVE-2025-9377",
55391
56579
  "CVE-2026-0300",
56580
+ "CVE-2026-0766",
55392
56581
  "CVE-2026-1281",
55393
56582
  "CVE-2026-1340",
55394
56583
  "CVE-2026-1603",
@@ -55750,6 +56939,7 @@
55750
56939
  },
55751
56940
  "related_cves": [
55752
56941
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
56942
+ "CVE-2023-48022",
55753
56943
  "CVE-2024-3094",
55754
56944
  "CVE-2024-3154",
55755
56945
  "CVE-2024-50050",
@@ -55766,6 +56956,8 @@
55766
56956
  "CVE-2025-53773",
55767
56957
  "CVE-2025-54136",
55768
56958
  "CVE-2025-60455",
56959
+ "CVE-2025-64496",
56960
+ "CVE-2026-0766",
55769
56961
  "CVE-2026-22252",
55770
56962
  "CVE-2026-22688",
55771
56963
  "CVE-2026-24206",
@@ -56681,6 +57873,7 @@
56681
57873
  "related_cves": [
56682
57874
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
56683
57875
  "CVE-2023-43472",
57876
+ "CVE-2023-48022",
56684
57877
  "CVE-2024-3094",
56685
57878
  "CVE-2024-3154",
56686
57879
  "CVE-2024-50050",
@@ -56698,7 +57891,9 @@
56698
57891
  "CVE-2025-53773",
56699
57892
  "CVE-2025-54136",
56700
57893
  "CVE-2025-60455",
57894
+ "CVE-2025-64496",
56701
57895
  "CVE-2025-6965",
57896
+ "CVE-2026-0766",
56702
57897
  "CVE-2026-22252",
56703
57898
  "CVE-2026-22688",
56704
57899
  "CVE-2026-24206",
@@ -56776,6 +57971,7 @@
56776
57971
  "rfc_refs": []
56777
57972
  },
56778
57973
  "related_cves": [
57974
+ "CVE-2023-48022",
56779
57975
  "CVE-2024-50050",
56780
57976
  "CVE-2025-10585",
56781
57977
  "CVE-2025-1094",
@@ -56788,6 +57984,8 @@
56788
57984
  "CVE-2025-49596",
56789
57985
  "CVE-2025-54136",
56790
57986
  "CVE-2025-60455",
57987
+ "CVE-2025-64496",
57988
+ "CVE-2026-0766",
56791
57989
  "CVE-2026-22252",
56792
57990
  "CVE-2026-22688",
56793
57991
  "CVE-2026-24206",
@@ -56941,6 +58139,7 @@
56941
58139
  "related_cves": [
56942
58140
  "BUG-2026-NIGHTMARE-ECLIPSE-UNDEFEND",
56943
58141
  "CVE-2023-43472",
58142
+ "CVE-2023-48022",
56944
58143
  "CVE-2024-50050",
56945
58144
  "CVE-2025-0133",
56946
58145
  "CVE-2025-1094",
@@ -56952,7 +58151,9 @@
56952
58151
  "CVE-2025-53773",
56953
58152
  "CVE-2025-54136",
56954
58153
  "CVE-2025-60455",
58154
+ "CVE-2025-64496",
56955
58155
  "CVE-2025-6965",
58156
+ "CVE-2026-0766",
56956
58157
  "CVE-2026-22252",
56957
58158
  "CVE-2026-22688",
56958
58159
  "CVE-2026-22778",
@@ -57500,6 +58701,7 @@
57500
58701
  "CVE-2025-62221",
57501
58702
  "CVE-2025-64328",
57502
58703
  "CVE-2025-64446",
58704
+ "CVE-2025-64496",
57503
58705
  "CVE-2025-6543",
57504
58706
  "CVE-2025-6554",
57505
58707
  "CVE-2025-6558",
@@ -57516,6 +58718,7 @@
57516
58718
  "CVE-2025-9242",
57517
58719
  "CVE-2025-9377",
57518
58720
  "CVE-2026-0300",
58721
+ "CVE-2026-0766",
57519
58722
  "CVE-2026-1281",
57520
58723
  "CVE-2026-1340",
57521
58724
  "CVE-2026-1603",
@@ -57796,6 +58999,7 @@
57796
58999
  "related_cves": [
57797
59000
  "BUG-2026-NIGHTMARE-ECLIPSE-GREENPLASMA",
57798
59001
  "CVE-2023-43472",
59002
+ "CVE-2023-48022",
57799
59003
  "CVE-2024-3094",
57800
59004
  "CVE-2024-3154",
57801
59005
  "CVE-2024-50050",
@@ -57813,7 +59017,9 @@
57813
59017
  "CVE-2025-53773",
57814
59018
  "CVE-2025-54136",
57815
59019
  "CVE-2025-60455",
59020
+ "CVE-2025-64496",
57816
59021
  "CVE-2025-6965",
59022
+ "CVE-2026-0766",
57817
59023
  "CVE-2026-22252",
57818
59024
  "CVE-2026-22688",
57819
59025
  "CVE-2026-24206",
@@ -58084,6 +59290,7 @@
58084
59290
  "BUG-2026-NIGHTMARE-ECLIPSE-UNDEFEND",
58085
59291
  "BUG-2026-NIGHTMARE-ECLIPSE-YELLOWKEY",
58086
59292
  "CVE-2023-43472",
59293
+ "CVE-2023-48022",
58087
59294
  "CVE-2024-3094",
58088
59295
  "CVE-2024-40635",
58089
59296
  "CVE-2024-50050",
@@ -58100,7 +59307,9 @@
58100
59307
  "CVE-2025-53773",
58101
59308
  "CVE-2025-54136",
58102
59309
  "CVE-2025-60455",
59310
+ "CVE-2025-64496",
58103
59311
  "CVE-2025-6965",
59312
+ "CVE-2026-0766",
58104
59313
  "CVE-2026-22252",
58105
59314
  "CVE-2026-22688",
58106
59315
  "CVE-2026-22778",