@blamejs/exceptd-skills 0.13.82 → 0.13.83

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +770 -0
  6. package/data/atlas-ttps.json +9 -1
  7. package/data/attack-techniques.json +9 -1
  8. package/data/cve-catalog.json +214 -0
  9. package/data/cwe-catalog.json +2 -0
  10. package/data/framework-control-gaps.json +16 -0
  11. package/data/zeroday-lessons.json +100 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -24597,6 +24597,730 @@
24597
24597
  ]
24598
24598
  }
24599
24599
  },
24600
+ "CVE-2025-1550": {
24601
+ "name": "Keras .keras Model Deserialization Arbitrary Code Execution",
24602
+ "rwep": 31,
24603
+ "cvss": 9.8,
24604
+ "cisa_kev": false,
24605
+ "epss_score": null,
24606
+ "referencing_skills": [
24607
+ "kernel-lpe-triage",
24608
+ "ai-attack-surface",
24609
+ "compliance-theater",
24610
+ "attack-surface-pentest",
24611
+ "ot-ics-security",
24612
+ "coordinated-vuln-disclosure",
24613
+ "sector-energy"
24614
+ ],
24615
+ "chain": {
24616
+ "cwes": [
24617
+ {
24618
+ "id": "CWE-1037",
24619
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
24620
+ "category": "Hardware / Side Channel"
24621
+ },
24622
+ {
24623
+ "id": "CWE-1039",
24624
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
24625
+ "category": "AI/ML"
24626
+ },
24627
+ {
24628
+ "id": "CWE-125",
24629
+ "name": "Out-of-bounds Read",
24630
+ "category": "Memory Safety"
24631
+ },
24632
+ {
24633
+ "id": "CWE-1357",
24634
+ "name": "Reliance on Insufficiently Trustworthy Component",
24635
+ "category": "Supply Chain"
24636
+ },
24637
+ {
24638
+ "id": "CWE-1395",
24639
+ "name": "Dependency on Vulnerable Third-Party Component",
24640
+ "category": "Supply Chain"
24641
+ },
24642
+ {
24643
+ "id": "CWE-1426",
24644
+ "name": "Improper Validation of Generative AI Output",
24645
+ "category": "AI/ML"
24646
+ },
24647
+ {
24648
+ "id": "CWE-22",
24649
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
24650
+ "category": "Path/Resource"
24651
+ },
24652
+ {
24653
+ "id": "CWE-269",
24654
+ "name": "Improper Privilege Management",
24655
+ "category": "Authorization"
24656
+ },
24657
+ {
24658
+ "id": "CWE-287",
24659
+ "name": "Improper Authentication",
24660
+ "category": "Authentication"
24661
+ },
24662
+ {
24663
+ "id": "CWE-306",
24664
+ "name": "Missing Authentication for Critical Function",
24665
+ "category": "Authentication"
24666
+ },
24667
+ {
24668
+ "id": "CWE-352",
24669
+ "name": "Cross-Site Request Forgery (CSRF)",
24670
+ "category": "Session"
24671
+ },
24672
+ {
24673
+ "id": "CWE-362",
24674
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
24675
+ "category": "Concurrency"
24676
+ },
24677
+ {
24678
+ "id": "CWE-416",
24679
+ "name": "Use After Free",
24680
+ "category": "Memory Safety"
24681
+ },
24682
+ {
24683
+ "id": "CWE-434",
24684
+ "name": "Unrestricted Upload of File with Dangerous Type",
24685
+ "category": "File Handling"
24686
+ },
24687
+ {
24688
+ "id": "CWE-672",
24689
+ "name": "Operation on a Resource after Expiration or Release",
24690
+ "category": "Memory Safety"
24691
+ },
24692
+ {
24693
+ "id": "CWE-732",
24694
+ "name": "Incorrect Permission Assignment for Critical Resource",
24695
+ "category": "Authorization"
24696
+ },
24697
+ {
24698
+ "id": "CWE-78",
24699
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
24700
+ "category": "Injection"
24701
+ },
24702
+ {
24703
+ "id": "CWE-787",
24704
+ "name": "Out-of-bounds Write",
24705
+ "category": "Memory Safety"
24706
+ },
24707
+ {
24708
+ "id": "CWE-79",
24709
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
24710
+ "category": "Injection"
24711
+ },
24712
+ {
24713
+ "id": "CWE-798",
24714
+ "name": "Use of Hard-coded Credentials",
24715
+ "category": "Credentials"
24716
+ },
24717
+ {
24718
+ "id": "CWE-89",
24719
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
24720
+ "category": "Injection"
24721
+ },
24722
+ {
24723
+ "id": "CWE-918",
24724
+ "name": "Server-Side Request Forgery (SSRF)",
24725
+ "category": "Network"
24726
+ },
24727
+ {
24728
+ "id": "CWE-94",
24729
+ "name": "Improper Control of Generation of Code (Code Injection)",
24730
+ "category": "Injection"
24731
+ }
24732
+ ],
24733
+ "atlas": [
24734
+ {
24735
+ "id": "AML.T0010",
24736
+ "name": "ML Supply Chain Compromise",
24737
+ "tactic": "Initial Access"
24738
+ },
24739
+ {
24740
+ "id": "AML.T0016",
24741
+ "name": "Obtain Capabilities: Develop Capabilities",
24742
+ "tactic": "Resource Development"
24743
+ },
24744
+ {
24745
+ "id": "AML.T0017",
24746
+ "name": "Discover ML Model Ontology",
24747
+ "tactic": "Discovery"
24748
+ },
24749
+ {
24750
+ "id": "AML.T0018",
24751
+ "name": "Backdoor ML Model",
24752
+ "tactic": "Persistence"
24753
+ },
24754
+ {
24755
+ "id": "AML.T0020",
24756
+ "name": "Poison Training Data",
24757
+ "tactic": "ML Attack Staging"
24758
+ },
24759
+ {
24760
+ "id": "AML.T0043",
24761
+ "name": "Craft Adversarial Data",
24762
+ "tactic": "ML Attack Staging"
24763
+ },
24764
+ {
24765
+ "id": "AML.T0051",
24766
+ "name": "LLM Prompt Injection",
24767
+ "tactic": "Execution"
24768
+ },
24769
+ {
24770
+ "id": "AML.T0054",
24771
+ "name": "LLM Jailbreak",
24772
+ "tactic": "Defense Evasion"
24773
+ },
24774
+ {
24775
+ "id": "AML.T0096",
24776
+ "name": "AI API as Covert C2 Channel",
24777
+ "tactic": "Command and Control"
24778
+ }
24779
+ ],
24780
+ "d3fend": [
24781
+ {
24782
+ "id": "D3-ASLR",
24783
+ "name": "Address Space Layout Randomization",
24784
+ "tactic": "Harden"
24785
+ },
24786
+ {
24787
+ "id": "D3-CSPP",
24788
+ "name": "Client-server Payload Profiling",
24789
+ "tactic": "Detect"
24790
+ },
24791
+ {
24792
+ "id": "D3-EAL",
24793
+ "name": "Executable Allowlisting",
24794
+ "tactic": "Harden"
24795
+ },
24796
+ {
24797
+ "id": "D3-IOPR",
24798
+ "name": "Input/Output Profiling Resource",
24799
+ "tactic": "Detect"
24800
+ },
24801
+ {
24802
+ "id": "D3-NTA",
24803
+ "name": "Network Traffic Analysis",
24804
+ "tactic": "Detect"
24805
+ },
24806
+ {
24807
+ "id": "D3-PHRA",
24808
+ "name": "Process Hardware Resource Access",
24809
+ "tactic": "Isolate"
24810
+ },
24811
+ {
24812
+ "id": "D3-PSEP",
24813
+ "name": "Process Segment Execution Prevention",
24814
+ "tactic": "Harden"
24815
+ }
24816
+ ],
24817
+ "framework_gaps": [
24818
+ {
24819
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
24820
+ "framework": "ALL",
24821
+ "control_name": "AI Pipeline Integrity"
24822
+ },
24823
+ {
24824
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
24825
+ "framework": "ALL",
24826
+ "control_name": "Prompt Injection as Access Control Failure"
24827
+ },
24828
+ {
24829
+ "id": "CIS-Controls-v8-Control7",
24830
+ "framework": "CIS Controls v8",
24831
+ "control_name": "Continuous Vulnerability Management"
24832
+ },
24833
+ {
24834
+ "id": "CMMC-2.0-Level-2",
24835
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
24836
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
24837
+ },
24838
+ {
24839
+ "id": "FedRAMP-Rev5-Moderate",
24840
+ "framework": "FedRAMP Rev 5 Moderate",
24841
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
24842
+ },
24843
+ {
24844
+ "id": "IEC-62443-3-3",
24845
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
24846
+ "control_name": "System security requirements and security levels"
24847
+ },
24848
+ {
24849
+ "id": "ISO-27001-2022-A.8.28",
24850
+ "framework": "ISO/IEC 27001:2022",
24851
+ "control_name": "Secure coding"
24852
+ },
24853
+ {
24854
+ "id": "ISO-27001-2022-A.8.8",
24855
+ "framework": "ISO/IEC 27001:2022",
24856
+ "control_name": "Management of technical vulnerabilities"
24857
+ },
24858
+ {
24859
+ "id": "ISO-IEC-23894-2023-clause-7",
24860
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
24861
+ "control_name": "AI risk management process"
24862
+ },
24863
+ {
24864
+ "id": "NERC-CIP-007-6-R4",
24865
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
24866
+ "control_name": "Security event monitoring"
24867
+ },
24868
+ {
24869
+ "id": "NIS2-Art21-patch-management",
24870
+ "framework": "EU NIS2 Directive",
24871
+ "control_name": "Vulnerability handling and disclosure"
24872
+ },
24873
+ {
24874
+ "id": "NIST-800-115",
24875
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
24876
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
24877
+ },
24878
+ {
24879
+ "id": "NIST-800-218-SSDF",
24880
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
24881
+ "control_name": "Secure Software Development Framework"
24882
+ },
24883
+ {
24884
+ "id": "NIST-800-53-AC-2",
24885
+ "framework": "NIST SP 800-53 Rev 5",
24886
+ "control_name": "Account Management"
24887
+ },
24888
+ {
24889
+ "id": "NIST-800-53-SC-8",
24890
+ "framework": "NIST SP 800-53 Rev 5",
24891
+ "control_name": "Transmission Confidentiality and Integrity"
24892
+ },
24893
+ {
24894
+ "id": "NIST-800-53-SI-2",
24895
+ "framework": "NIST SP 800-53 Rev 5",
24896
+ "control_name": "Flaw Remediation"
24897
+ },
24898
+ {
24899
+ "id": "NIST-800-53-SI-3",
24900
+ "framework": "NIST SP 800-53 Rev 5",
24901
+ "control_name": "Malicious Code Protection"
24902
+ },
24903
+ {
24904
+ "id": "NIST-800-82r3",
24905
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
24906
+ "control_name": "Guide to Operational Technology (OT) Security"
24907
+ },
24908
+ {
24909
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
24910
+ "framework": "OWASP Top 10 for LLM Applications 2025",
24911
+ "control_name": "Prompt Injection"
24912
+ },
24913
+ {
24914
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
24915
+ "framework": "OWASP Top 10 for LLM Applications 2025",
24916
+ "control_name": "Sensitive Information Disclosure"
24917
+ },
24918
+ {
24919
+ "id": "OWASP-Pen-Testing-Guide-v5",
24920
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
24921
+ "control_name": "Web application penetration testing methodology"
24922
+ },
24923
+ {
24924
+ "id": "PCI-DSS-4.0-6.3.3",
24925
+ "framework": "PCI DSS 4.0",
24926
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
24927
+ },
24928
+ {
24929
+ "id": "PTES-Pre-engagement",
24930
+ "framework": "Penetration Testing Execution Standard (PTES)",
24931
+ "control_name": "Pre-engagement Interactions"
24932
+ },
24933
+ {
24934
+ "id": "SOC2-CC6-logical-access",
24935
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
24936
+ "control_name": "Logical and Physical Access Controls"
24937
+ },
24938
+ {
24939
+ "id": "SOC2-CC9-vendor-management",
24940
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
24941
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
24942
+ }
24943
+ ],
24944
+ "attack_refs": [
24945
+ "T0855",
24946
+ "T0883",
24947
+ "T1059",
24948
+ "T1068",
24949
+ "T1078",
24950
+ "T1133",
24951
+ "T1190",
24952
+ "T1548.001",
24953
+ "T1566"
24954
+ ],
24955
+ "rfc_refs": [
24956
+ "RFC-4301",
24957
+ "RFC-4303",
24958
+ "RFC-7296"
24959
+ ]
24960
+ }
24961
+ },
24962
+ "CVE-2025-8747": {
24963
+ "name": "Keras safe_mode Bypass Model Deserialization Code Execution",
24964
+ "rwep": 31,
24965
+ "cvss": 7.8,
24966
+ "cisa_kev": false,
24967
+ "epss_score": null,
24968
+ "referencing_skills": [
24969
+ "kernel-lpe-triage",
24970
+ "ai-attack-surface",
24971
+ "compliance-theater",
24972
+ "attack-surface-pentest",
24973
+ "ot-ics-security",
24974
+ "coordinated-vuln-disclosure",
24975
+ "sector-energy"
24976
+ ],
24977
+ "chain": {
24978
+ "cwes": [
24979
+ {
24980
+ "id": "CWE-1037",
24981
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
24982
+ "category": "Hardware / Side Channel"
24983
+ },
24984
+ {
24985
+ "id": "CWE-1039",
24986
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
24987
+ "category": "AI/ML"
24988
+ },
24989
+ {
24990
+ "id": "CWE-125",
24991
+ "name": "Out-of-bounds Read",
24992
+ "category": "Memory Safety"
24993
+ },
24994
+ {
24995
+ "id": "CWE-1357",
24996
+ "name": "Reliance on Insufficiently Trustworthy Component",
24997
+ "category": "Supply Chain"
24998
+ },
24999
+ {
25000
+ "id": "CWE-1395",
25001
+ "name": "Dependency on Vulnerable Third-Party Component",
25002
+ "category": "Supply Chain"
25003
+ },
25004
+ {
25005
+ "id": "CWE-1426",
25006
+ "name": "Improper Validation of Generative AI Output",
25007
+ "category": "AI/ML"
25008
+ },
25009
+ {
25010
+ "id": "CWE-22",
25011
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
25012
+ "category": "Path/Resource"
25013
+ },
25014
+ {
25015
+ "id": "CWE-269",
25016
+ "name": "Improper Privilege Management",
25017
+ "category": "Authorization"
25018
+ },
25019
+ {
25020
+ "id": "CWE-287",
25021
+ "name": "Improper Authentication",
25022
+ "category": "Authentication"
25023
+ },
25024
+ {
25025
+ "id": "CWE-306",
25026
+ "name": "Missing Authentication for Critical Function",
25027
+ "category": "Authentication"
25028
+ },
25029
+ {
25030
+ "id": "CWE-352",
25031
+ "name": "Cross-Site Request Forgery (CSRF)",
25032
+ "category": "Session"
25033
+ },
25034
+ {
25035
+ "id": "CWE-362",
25036
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
25037
+ "category": "Concurrency"
25038
+ },
25039
+ {
25040
+ "id": "CWE-416",
25041
+ "name": "Use After Free",
25042
+ "category": "Memory Safety"
25043
+ },
25044
+ {
25045
+ "id": "CWE-434",
25046
+ "name": "Unrestricted Upload of File with Dangerous Type",
25047
+ "category": "File Handling"
25048
+ },
25049
+ {
25050
+ "id": "CWE-672",
25051
+ "name": "Operation on a Resource after Expiration or Release",
25052
+ "category": "Memory Safety"
25053
+ },
25054
+ {
25055
+ "id": "CWE-732",
25056
+ "name": "Incorrect Permission Assignment for Critical Resource",
25057
+ "category": "Authorization"
25058
+ },
25059
+ {
25060
+ "id": "CWE-78",
25061
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
25062
+ "category": "Injection"
25063
+ },
25064
+ {
25065
+ "id": "CWE-787",
25066
+ "name": "Out-of-bounds Write",
25067
+ "category": "Memory Safety"
25068
+ },
25069
+ {
25070
+ "id": "CWE-79",
25071
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
25072
+ "category": "Injection"
25073
+ },
25074
+ {
25075
+ "id": "CWE-798",
25076
+ "name": "Use of Hard-coded Credentials",
25077
+ "category": "Credentials"
25078
+ },
25079
+ {
25080
+ "id": "CWE-89",
25081
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
25082
+ "category": "Injection"
25083
+ },
25084
+ {
25085
+ "id": "CWE-918",
25086
+ "name": "Server-Side Request Forgery (SSRF)",
25087
+ "category": "Network"
25088
+ },
25089
+ {
25090
+ "id": "CWE-94",
25091
+ "name": "Improper Control of Generation of Code (Code Injection)",
25092
+ "category": "Injection"
25093
+ }
25094
+ ],
25095
+ "atlas": [
25096
+ {
25097
+ "id": "AML.T0010",
25098
+ "name": "ML Supply Chain Compromise",
25099
+ "tactic": "Initial Access"
25100
+ },
25101
+ {
25102
+ "id": "AML.T0016",
25103
+ "name": "Obtain Capabilities: Develop Capabilities",
25104
+ "tactic": "Resource Development"
25105
+ },
25106
+ {
25107
+ "id": "AML.T0017",
25108
+ "name": "Discover ML Model Ontology",
25109
+ "tactic": "Discovery"
25110
+ },
25111
+ {
25112
+ "id": "AML.T0018",
25113
+ "name": "Backdoor ML Model",
25114
+ "tactic": "Persistence"
25115
+ },
25116
+ {
25117
+ "id": "AML.T0020",
25118
+ "name": "Poison Training Data",
25119
+ "tactic": "ML Attack Staging"
25120
+ },
25121
+ {
25122
+ "id": "AML.T0043",
25123
+ "name": "Craft Adversarial Data",
25124
+ "tactic": "ML Attack Staging"
25125
+ },
25126
+ {
25127
+ "id": "AML.T0051",
25128
+ "name": "LLM Prompt Injection",
25129
+ "tactic": "Execution"
25130
+ },
25131
+ {
25132
+ "id": "AML.T0054",
25133
+ "name": "LLM Jailbreak",
25134
+ "tactic": "Defense Evasion"
25135
+ },
25136
+ {
25137
+ "id": "AML.T0096",
25138
+ "name": "AI API as Covert C2 Channel",
25139
+ "tactic": "Command and Control"
25140
+ }
25141
+ ],
25142
+ "d3fend": [
25143
+ {
25144
+ "id": "D3-ASLR",
25145
+ "name": "Address Space Layout Randomization",
25146
+ "tactic": "Harden"
25147
+ },
25148
+ {
25149
+ "id": "D3-CSPP",
25150
+ "name": "Client-server Payload Profiling",
25151
+ "tactic": "Detect"
25152
+ },
25153
+ {
25154
+ "id": "D3-EAL",
25155
+ "name": "Executable Allowlisting",
25156
+ "tactic": "Harden"
25157
+ },
25158
+ {
25159
+ "id": "D3-IOPR",
25160
+ "name": "Input/Output Profiling Resource",
25161
+ "tactic": "Detect"
25162
+ },
25163
+ {
25164
+ "id": "D3-NTA",
25165
+ "name": "Network Traffic Analysis",
25166
+ "tactic": "Detect"
25167
+ },
25168
+ {
25169
+ "id": "D3-PHRA",
25170
+ "name": "Process Hardware Resource Access",
25171
+ "tactic": "Isolate"
25172
+ },
25173
+ {
25174
+ "id": "D3-PSEP",
25175
+ "name": "Process Segment Execution Prevention",
25176
+ "tactic": "Harden"
25177
+ }
25178
+ ],
25179
+ "framework_gaps": [
25180
+ {
25181
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
25182
+ "framework": "ALL",
25183
+ "control_name": "AI Pipeline Integrity"
25184
+ },
25185
+ {
25186
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
25187
+ "framework": "ALL",
25188
+ "control_name": "Prompt Injection as Access Control Failure"
25189
+ },
25190
+ {
25191
+ "id": "CIS-Controls-v8-Control7",
25192
+ "framework": "CIS Controls v8",
25193
+ "control_name": "Continuous Vulnerability Management"
25194
+ },
25195
+ {
25196
+ "id": "CMMC-2.0-Level-2",
25197
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
25198
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
25199
+ },
25200
+ {
25201
+ "id": "FedRAMP-Rev5-Moderate",
25202
+ "framework": "FedRAMP Rev 5 Moderate",
25203
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
25204
+ },
25205
+ {
25206
+ "id": "IEC-62443-3-3",
25207
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
25208
+ "control_name": "System security requirements and security levels"
25209
+ },
25210
+ {
25211
+ "id": "ISO-27001-2022-A.8.28",
25212
+ "framework": "ISO/IEC 27001:2022",
25213
+ "control_name": "Secure coding"
25214
+ },
25215
+ {
25216
+ "id": "ISO-27001-2022-A.8.8",
25217
+ "framework": "ISO/IEC 27001:2022",
25218
+ "control_name": "Management of technical vulnerabilities"
25219
+ },
25220
+ {
25221
+ "id": "ISO-IEC-23894-2023-clause-7",
25222
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
25223
+ "control_name": "AI risk management process"
25224
+ },
25225
+ {
25226
+ "id": "NERC-CIP-007-6-R4",
25227
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
25228
+ "control_name": "Security event monitoring"
25229
+ },
25230
+ {
25231
+ "id": "NIS2-Art21-patch-management",
25232
+ "framework": "EU NIS2 Directive",
25233
+ "control_name": "Vulnerability handling and disclosure"
25234
+ },
25235
+ {
25236
+ "id": "NIST-800-115",
25237
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
25238
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
25239
+ },
25240
+ {
25241
+ "id": "NIST-800-218-SSDF",
25242
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
25243
+ "control_name": "Secure Software Development Framework"
25244
+ },
25245
+ {
25246
+ "id": "NIST-800-53-AC-2",
25247
+ "framework": "NIST SP 800-53 Rev 5",
25248
+ "control_name": "Account Management"
25249
+ },
25250
+ {
25251
+ "id": "NIST-800-53-SC-8",
25252
+ "framework": "NIST SP 800-53 Rev 5",
25253
+ "control_name": "Transmission Confidentiality and Integrity"
25254
+ },
25255
+ {
25256
+ "id": "NIST-800-53-SI-2",
25257
+ "framework": "NIST SP 800-53 Rev 5",
25258
+ "control_name": "Flaw Remediation"
25259
+ },
25260
+ {
25261
+ "id": "NIST-800-53-SI-3",
25262
+ "framework": "NIST SP 800-53 Rev 5",
25263
+ "control_name": "Malicious Code Protection"
25264
+ },
25265
+ {
25266
+ "id": "NIST-800-82r3",
25267
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
25268
+ "control_name": "Guide to Operational Technology (OT) Security"
25269
+ },
25270
+ {
25271
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
25272
+ "framework": "OWASP Top 10 for LLM Applications 2025",
25273
+ "control_name": "Prompt Injection"
25274
+ },
25275
+ {
25276
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
25277
+ "framework": "OWASP Top 10 for LLM Applications 2025",
25278
+ "control_name": "Sensitive Information Disclosure"
25279
+ },
25280
+ {
25281
+ "id": "OWASP-Pen-Testing-Guide-v5",
25282
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
25283
+ "control_name": "Web application penetration testing methodology"
25284
+ },
25285
+ {
25286
+ "id": "PCI-DSS-4.0-6.3.3",
25287
+ "framework": "PCI DSS 4.0",
25288
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
25289
+ },
25290
+ {
25291
+ "id": "PTES-Pre-engagement",
25292
+ "framework": "Penetration Testing Execution Standard (PTES)",
25293
+ "control_name": "Pre-engagement Interactions"
25294
+ },
25295
+ {
25296
+ "id": "SOC2-CC6-logical-access",
25297
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
25298
+ "control_name": "Logical and Physical Access Controls"
25299
+ },
25300
+ {
25301
+ "id": "SOC2-CC9-vendor-management",
25302
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
25303
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
25304
+ }
25305
+ ],
25306
+ "attack_refs": [
25307
+ "T0855",
25308
+ "T0883",
25309
+ "T1059",
25310
+ "T1068",
25311
+ "T1078",
25312
+ "T1133",
25313
+ "T1190",
25314
+ "T1548.001",
25315
+ "T1566"
25316
+ ],
25317
+ "rfc_refs": [
25318
+ "RFC-4301",
25319
+ "RFC-4303",
25320
+ "RFC-7296"
25321
+ ]
25322
+ }
25323
+ },
24600
25324
  "CVE-2026-41091": {
24601
25325
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
24602
25326
  "rwep": 45,
@@ -50982,6 +51706,7 @@
50982
51706
  "CVE-2025-10585",
50983
51707
  "CVE-2025-1094",
50984
51708
  "CVE-2025-14174",
51709
+ "CVE-2025-1550",
50985
51710
  "CVE-2025-23254",
50986
51711
  "CVE-2025-23266",
50987
51712
  "CVE-2025-30165",
@@ -50995,6 +51720,7 @@
50995
51720
  "CVE-2025-60455",
50996
51721
  "CVE-2025-64496",
50997
51722
  "CVE-2025-6965",
51723
+ "CVE-2025-8747",
50998
51724
  "CVE-2026-0766",
50999
51725
  "CVE-2026-22252",
51000
51726
  "CVE-2026-22688",
@@ -51351,6 +52077,7 @@
51351
52077
  "CVE-2025-10585",
51352
52078
  "CVE-2025-1094",
51353
52079
  "CVE-2025-14174",
52080
+ "CVE-2025-1550",
51354
52081
  "CVE-2025-23254",
51355
52082
  "CVE-2025-23266",
51356
52083
  "CVE-2025-30165",
@@ -51362,6 +52089,7 @@
51362
52089
  "CVE-2025-60455",
51363
52090
  "CVE-2025-64496",
51364
52091
  "CVE-2025-6965",
52092
+ "CVE-2025-8747",
51365
52093
  "CVE-2026-0766",
51366
52094
  "CVE-2026-22252",
51367
52095
  "CVE-2026-22688",
@@ -51513,6 +52241,7 @@
51513
52241
  "CVE-2025-10585",
51514
52242
  "CVE-2025-1094",
51515
52243
  "CVE-2025-14174",
52244
+ "CVE-2025-1550",
51516
52245
  "CVE-2025-23254",
51517
52246
  "CVE-2025-23266",
51518
52247
  "CVE-2025-30165",
@@ -51524,6 +52253,7 @@
51524
52253
  "CVE-2025-60455",
51525
52254
  "CVE-2025-64496",
51526
52255
  "CVE-2025-6965",
52256
+ "CVE-2025-8747",
51527
52257
  "CVE-2026-0766",
51528
52258
  "CVE-2026-22252",
51529
52259
  "CVE-2026-22688",
@@ -51689,6 +52419,7 @@
51689
52419
  "CVE-2025-10585",
51690
52420
  "CVE-2025-1094",
51691
52421
  "CVE-2025-14174",
52422
+ "CVE-2025-1550",
51692
52423
  "CVE-2025-23254",
51693
52424
  "CVE-2025-23266",
51694
52425
  "CVE-2025-30165",
@@ -51700,6 +52431,7 @@
51700
52431
  "CVE-2025-60455",
51701
52432
  "CVE-2025-64496",
51702
52433
  "CVE-2025-6965",
52434
+ "CVE-2025-8747",
51703
52435
  "CVE-2026-0766",
51704
52436
  "CVE-2026-22252",
51705
52437
  "CVE-2026-22688",
@@ -51970,6 +52702,7 @@
51970
52702
  "CVE-2025-0133",
51971
52703
  "CVE-2025-1094",
51972
52704
  "CVE-2025-11837",
52705
+ "CVE-2025-1550",
51973
52706
  "CVE-2025-23254",
51974
52707
  "CVE-2025-23266",
51975
52708
  "CVE-2025-30165",
@@ -51981,6 +52714,7 @@
51981
52714
  "CVE-2025-60455",
51982
52715
  "CVE-2025-64496",
51983
52716
  "CVE-2025-6965",
52717
+ "CVE-2025-8747",
51984
52718
  "CVE-2026-0766",
51985
52719
  "CVE-2026-22252",
51986
52720
  "CVE-2026-22688",
@@ -52230,6 +52964,7 @@
52230
52964
  "CVE-2025-14174",
52231
52965
  "CVE-2025-14611",
52232
52966
  "CVE-2025-14733",
52967
+ "CVE-2025-1550",
52233
52968
  "CVE-2025-15556",
52234
52969
  "CVE-2025-20281",
52235
52970
  "CVE-2025-20333",
@@ -52362,6 +53097,7 @@
52362
53097
  "CVE-2025-7775",
52363
53098
  "CVE-2025-8088",
52364
53099
  "CVE-2025-8110",
53100
+ "CVE-2025-8747",
52365
53101
  "CVE-2025-8875",
52366
53102
  "CVE-2025-8876",
52367
53103
  "CVE-2025-9242",
@@ -53022,6 +53758,7 @@
53022
53758
  "CVE-2025-10585",
53023
53759
  "CVE-2025-1094",
53024
53760
  "CVE-2025-14174",
53761
+ "CVE-2025-1550",
53025
53762
  "CVE-2025-23254",
53026
53763
  "CVE-2025-23266",
53027
53764
  "CVE-2025-30165",
@@ -53035,6 +53772,7 @@
53035
53772
  "CVE-2025-60455",
53036
53773
  "CVE-2025-64496",
53037
53774
  "CVE-2025-6965",
53775
+ "CVE-2025-8747",
53038
53776
  "CVE-2026-0766",
53039
53777
  "CVE-2026-22252",
53040
53778
  "CVE-2026-22688",
@@ -53623,6 +54361,7 @@
53623
54361
  "CVE-2025-10585",
53624
54362
  "CVE-2025-1094",
53625
54363
  "CVE-2025-14174",
54364
+ "CVE-2025-1550",
53626
54365
  "CVE-2025-23254",
53627
54366
  "CVE-2025-23266",
53628
54367
  "CVE-2025-30165",
@@ -53636,6 +54375,7 @@
53636
54375
  "CVE-2025-60455",
53637
54376
  "CVE-2025-64496",
53638
54377
  "CVE-2025-6965",
54378
+ "CVE-2025-8747",
53639
54379
  "CVE-2026-0766",
53640
54380
  "CVE-2026-22252",
53641
54381
  "CVE-2026-22688",
@@ -53860,6 +54600,7 @@
53860
54600
  "CVE-2025-10585",
53861
54601
  "CVE-2025-1094",
53862
54602
  "CVE-2025-14174",
54603
+ "CVE-2025-1550",
53863
54604
  "CVE-2025-23254",
53864
54605
  "CVE-2025-23266",
53865
54606
  "CVE-2025-30165",
@@ -53871,6 +54612,7 @@
53871
54612
  "CVE-2025-54136",
53872
54613
  "CVE-2025-60455",
53873
54614
  "CVE-2025-64496",
54615
+ "CVE-2025-8747",
53874
54616
  "CVE-2026-0766",
53875
54617
  "CVE-2026-22252",
53876
54618
  "CVE-2026-22688",
@@ -54527,6 +55269,7 @@
54527
55269
  "CVE-2025-10585",
54528
55270
  "CVE-2025-1094",
54529
55271
  "CVE-2025-14174",
55272
+ "CVE-2025-1550",
54530
55273
  "CVE-2025-23254",
54531
55274
  "CVE-2025-23266",
54532
55275
  "CVE-2025-30165",
@@ -54540,6 +55283,7 @@
54540
55283
  "CVE-2025-60455",
54541
55284
  "CVE-2025-64496",
54542
55285
  "CVE-2025-6965",
55286
+ "CVE-2025-8747",
54543
55287
  "CVE-2026-0766",
54544
55288
  "CVE-2026-22252",
54545
55289
  "CVE-2026-22688",
@@ -54793,6 +55537,7 @@
54793
55537
  "CVE-2025-14174",
54794
55538
  "CVE-2025-14611",
54795
55539
  "CVE-2025-14733",
55540
+ "CVE-2025-1550",
54796
55541
  "CVE-2025-15556",
54797
55542
  "CVE-2025-20281",
54798
55543
  "CVE-2025-20333",
@@ -54925,6 +55670,7 @@
54925
55670
  "CVE-2025-7775",
54926
55671
  "CVE-2025-8088",
54927
55672
  "CVE-2025-8110",
55673
+ "CVE-2025-8747",
54928
55674
  "CVE-2025-8875",
54929
55675
  "CVE-2025-8876",
54930
55676
  "CVE-2025-9242",
@@ -55215,6 +55961,7 @@
55215
55961
  "CVE-2025-14174",
55216
55962
  "CVE-2025-14611",
55217
55963
  "CVE-2025-14733",
55964
+ "CVE-2025-1550",
55218
55965
  "CVE-2025-15556",
55219
55966
  "CVE-2025-20281",
55220
55967
  "CVE-2025-20333",
@@ -55347,6 +56094,7 @@
55347
56094
  "CVE-2025-7775",
55348
56095
  "CVE-2025-8088",
55349
56096
  "CVE-2025-8110",
56097
+ "CVE-2025-8747",
55350
56098
  "CVE-2025-8875",
55351
56099
  "CVE-2025-8876",
55352
56100
  "CVE-2025-9242",
@@ -55645,6 +56393,7 @@
55645
56393
  "CVE-2025-10585",
55646
56394
  "CVE-2025-1094",
55647
56395
  "CVE-2025-14174",
56396
+ "CVE-2025-1550",
55648
56397
  "CVE-2025-23254",
55649
56398
  "CVE-2025-23266",
55650
56399
  "CVE-2025-30165",
@@ -55658,6 +56407,7 @@
55658
56407
  "CVE-2025-60455",
55659
56408
  "CVE-2025-64496",
55660
56409
  "CVE-2025-6965",
56410
+ "CVE-2025-8747",
55661
56411
  "CVE-2026-0766",
55662
56412
  "CVE-2026-22252",
55663
56413
  "CVE-2026-22688",
@@ -56463,6 +57213,7 @@
56463
57213
  "CVE-2025-14174",
56464
57214
  "CVE-2025-14611",
56465
57215
  "CVE-2025-14733",
57216
+ "CVE-2025-1550",
56466
57217
  "CVE-2025-15556",
56467
57218
  "CVE-2025-20281",
56468
57219
  "CVE-2025-20333",
@@ -56595,6 +57346,7 @@
56595
57346
  "CVE-2025-7775",
56596
57347
  "CVE-2025-8088",
56597
57348
  "CVE-2025-8110",
57349
+ "CVE-2025-8747",
56598
57350
  "CVE-2025-8875",
56599
57351
  "CVE-2025-8876",
56600
57352
  "CVE-2025-9242",
@@ -56957,6 +57709,7 @@
56957
57709
  "CVE-2025-10585",
56958
57710
  "CVE-2025-1094",
56959
57711
  "CVE-2025-14174",
57712
+ "CVE-2025-1550",
56960
57713
  "CVE-2025-23254",
56961
57714
  "CVE-2025-23266",
56962
57715
  "CVE-2025-30165",
@@ -56970,6 +57723,7 @@
56970
57723
  "CVE-2025-60455",
56971
57724
  "CVE-2025-64496",
56972
57725
  "CVE-2025-6965",
57726
+ "CVE-2025-8747",
56973
57727
  "CVE-2026-0766",
56974
57728
  "CVE-2026-22252",
56975
57729
  "CVE-2026-22688",
@@ -57304,6 +58058,7 @@
57304
58058
  "CVE-2025-14174",
57305
58059
  "CVE-2025-14611",
57306
58060
  "CVE-2025-14733",
58061
+ "CVE-2025-1550",
57307
58062
  "CVE-2025-15556",
57308
58063
  "CVE-2025-20281",
57309
58064
  "CVE-2025-20333",
@@ -57438,6 +58193,7 @@
57438
58193
  "CVE-2025-7775",
57439
58194
  "CVE-2025-8088",
57440
58195
  "CVE-2025-8110",
58196
+ "CVE-2025-8747",
57441
58197
  "CVE-2025-8875",
57442
58198
  "CVE-2025-8876",
57443
58199
  "CVE-2025-9242",
@@ -57813,6 +58569,7 @@
57813
58569
  "CVE-2025-10585",
57814
58570
  "CVE-2025-1094",
57815
58571
  "CVE-2025-14174",
58572
+ "CVE-2025-1550",
57816
58573
  "CVE-2025-23254",
57817
58574
  "CVE-2025-23266",
57818
58575
  "CVE-2025-30165",
@@ -57825,6 +58582,7 @@
57825
58582
  "CVE-2025-54136",
57826
58583
  "CVE-2025-60455",
57827
58584
  "CVE-2025-64496",
58585
+ "CVE-2025-8747",
57828
58586
  "CVE-2026-0766",
57829
58587
  "CVE-2026-22252",
57830
58588
  "CVE-2026-22688",
@@ -58750,6 +59508,7 @@
58750
59508
  "CVE-2025-10585",
58751
59509
  "CVE-2025-1094",
58752
59510
  "CVE-2025-14174",
59511
+ "CVE-2025-1550",
58753
59512
  "CVE-2025-23254",
58754
59513
  "CVE-2025-23266",
58755
59514
  "CVE-2025-30165",
@@ -58763,6 +59522,7 @@
58763
59522
  "CVE-2025-60455",
58764
59523
  "CVE-2025-64496",
58765
59524
  "CVE-2025-6965",
59525
+ "CVE-2025-8747",
58766
59526
  "CVE-2026-0766",
58767
59527
  "CVE-2026-22252",
58768
59528
  "CVE-2026-22688",
@@ -58847,6 +59607,7 @@
58847
59607
  "CVE-2025-10585",
58848
59608
  "CVE-2025-1094",
58849
59609
  "CVE-2025-14174",
59610
+ "CVE-2025-1550",
58850
59611
  "CVE-2025-23254",
58851
59612
  "CVE-2025-23266",
58852
59613
  "CVE-2025-30165",
@@ -58857,6 +59618,7 @@
58857
59618
  "CVE-2025-54136",
58858
59619
  "CVE-2025-60455",
58859
59620
  "CVE-2025-64496",
59621
+ "CVE-2025-8747",
58860
59622
  "CVE-2026-0766",
58861
59623
  "CVE-2026-22252",
58862
59624
  "CVE-2026-22688",
@@ -59017,6 +59779,7 @@
59017
59779
  "CVE-2025-0133",
59018
59780
  "CVE-2025-1094",
59019
59781
  "CVE-2025-11837",
59782
+ "CVE-2025-1550",
59020
59783
  "CVE-2025-23254",
59021
59784
  "CVE-2025-23266",
59022
59785
  "CVE-2025-30165",
@@ -59027,6 +59790,7 @@
59027
59790
  "CVE-2025-60455",
59028
59791
  "CVE-2025-64496",
59029
59792
  "CVE-2025-6965",
59793
+ "CVE-2025-8747",
59030
59794
  "CVE-2026-0766",
59031
59795
  "CVE-2026-22252",
59032
59796
  "CVE-2026-22688",
@@ -59461,6 +60225,7 @@
59461
60225
  "CVE-2025-14174",
59462
60226
  "CVE-2025-14611",
59463
60227
  "CVE-2025-14733",
60228
+ "CVE-2025-1550",
59464
60229
  "CVE-2025-15556",
59465
60230
  "CVE-2025-20281",
59466
60231
  "CVE-2025-20333",
@@ -59587,6 +60352,7 @@
59587
60352
  "CVE-2025-7775",
59588
60353
  "CVE-2025-8088",
59589
60354
  "CVE-2025-8110",
60355
+ "CVE-2025-8747",
59590
60356
  "CVE-2025-8875",
59591
60357
  "CVE-2025-8876",
59592
60358
  "CVE-2025-9242",
@@ -59882,6 +60648,7 @@
59882
60648
  "CVE-2025-10585",
59883
60649
  "CVE-2025-1094",
59884
60650
  "CVE-2025-14174",
60651
+ "CVE-2025-1550",
59885
60652
  "CVE-2025-23254",
59886
60653
  "CVE-2025-23266",
59887
60654
  "CVE-2025-30165",
@@ -59895,6 +60662,7 @@
59895
60662
  "CVE-2025-60455",
59896
60663
  "CVE-2025-64496",
59897
60664
  "CVE-2025-6965",
60665
+ "CVE-2025-8747",
59898
60666
  "CVE-2026-0766",
59899
60667
  "CVE-2026-22252",
59900
60668
  "CVE-2026-22688",
@@ -60175,6 +60943,7 @@
60175
60943
  "CVE-2025-1094",
60176
60944
  "CVE-2025-11837",
60177
60945
  "CVE-2025-14847",
60946
+ "CVE-2025-1550",
60178
60947
  "CVE-2025-22226",
60179
60948
  "CVE-2025-23254",
60180
60949
  "CVE-2025-23266",
@@ -60187,6 +60956,7 @@
60187
60956
  "CVE-2025-60455",
60188
60957
  "CVE-2025-64496",
60189
60958
  "CVE-2025-6965",
60959
+ "CVE-2025-8747",
60190
60960
  "CVE-2026-0766",
60191
60961
  "CVE-2026-22252",
60192
60962
  "CVE-2026-22688",