@blamejs/exceptd-skills 0.13.85 → 0.13.86

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +770 -0
  6. package/data/atlas-ttps.json +3 -0
  7. package/data/attack-techniques.json +4 -0
  8. package/data/cve-catalog.json +209 -0
  9. package/data/cwe-catalog.json +2 -0
  10. package/data/framework-control-gaps.json +16 -0
  11. package/data/zeroday-lessons.json +100 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -27341,6 +27341,730 @@
27341
27341
  ]
27342
27342
  }
27343
27343
  },
27344
+ "CVE-2024-37032": {
27345
+ "name": "Ollama Model Registry Path Traversal Arbitrary File Write RCE (Probllama)",
27346
+ "rwep": 31,
27347
+ "cvss": 8.8,
27348
+ "cisa_kev": false,
27349
+ "epss_score": null,
27350
+ "referencing_skills": [
27351
+ "kernel-lpe-triage",
27352
+ "ai-attack-surface",
27353
+ "compliance-theater",
27354
+ "attack-surface-pentest",
27355
+ "ot-ics-security",
27356
+ "coordinated-vuln-disclosure",
27357
+ "sector-energy"
27358
+ ],
27359
+ "chain": {
27360
+ "cwes": [
27361
+ {
27362
+ "id": "CWE-1037",
27363
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
27364
+ "category": "Hardware / Side Channel"
27365
+ },
27366
+ {
27367
+ "id": "CWE-1039",
27368
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
27369
+ "category": "AI/ML"
27370
+ },
27371
+ {
27372
+ "id": "CWE-125",
27373
+ "name": "Out-of-bounds Read",
27374
+ "category": "Memory Safety"
27375
+ },
27376
+ {
27377
+ "id": "CWE-1357",
27378
+ "name": "Reliance on Insufficiently Trustworthy Component",
27379
+ "category": "Supply Chain"
27380
+ },
27381
+ {
27382
+ "id": "CWE-1395",
27383
+ "name": "Dependency on Vulnerable Third-Party Component",
27384
+ "category": "Supply Chain"
27385
+ },
27386
+ {
27387
+ "id": "CWE-1426",
27388
+ "name": "Improper Validation of Generative AI Output",
27389
+ "category": "AI/ML"
27390
+ },
27391
+ {
27392
+ "id": "CWE-22",
27393
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
27394
+ "category": "Path/Resource"
27395
+ },
27396
+ {
27397
+ "id": "CWE-269",
27398
+ "name": "Improper Privilege Management",
27399
+ "category": "Authorization"
27400
+ },
27401
+ {
27402
+ "id": "CWE-287",
27403
+ "name": "Improper Authentication",
27404
+ "category": "Authentication"
27405
+ },
27406
+ {
27407
+ "id": "CWE-306",
27408
+ "name": "Missing Authentication for Critical Function",
27409
+ "category": "Authentication"
27410
+ },
27411
+ {
27412
+ "id": "CWE-352",
27413
+ "name": "Cross-Site Request Forgery (CSRF)",
27414
+ "category": "Session"
27415
+ },
27416
+ {
27417
+ "id": "CWE-362",
27418
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
27419
+ "category": "Concurrency"
27420
+ },
27421
+ {
27422
+ "id": "CWE-416",
27423
+ "name": "Use After Free",
27424
+ "category": "Memory Safety"
27425
+ },
27426
+ {
27427
+ "id": "CWE-434",
27428
+ "name": "Unrestricted Upload of File with Dangerous Type",
27429
+ "category": "File Handling"
27430
+ },
27431
+ {
27432
+ "id": "CWE-672",
27433
+ "name": "Operation on a Resource after Expiration or Release",
27434
+ "category": "Memory Safety"
27435
+ },
27436
+ {
27437
+ "id": "CWE-732",
27438
+ "name": "Incorrect Permission Assignment for Critical Resource",
27439
+ "category": "Authorization"
27440
+ },
27441
+ {
27442
+ "id": "CWE-78",
27443
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
27444
+ "category": "Injection"
27445
+ },
27446
+ {
27447
+ "id": "CWE-787",
27448
+ "name": "Out-of-bounds Write",
27449
+ "category": "Memory Safety"
27450
+ },
27451
+ {
27452
+ "id": "CWE-79",
27453
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
27454
+ "category": "Injection"
27455
+ },
27456
+ {
27457
+ "id": "CWE-798",
27458
+ "name": "Use of Hard-coded Credentials",
27459
+ "category": "Credentials"
27460
+ },
27461
+ {
27462
+ "id": "CWE-89",
27463
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
27464
+ "category": "Injection"
27465
+ },
27466
+ {
27467
+ "id": "CWE-918",
27468
+ "name": "Server-Side Request Forgery (SSRF)",
27469
+ "category": "Network"
27470
+ },
27471
+ {
27472
+ "id": "CWE-94",
27473
+ "name": "Improper Control of Generation of Code (Code Injection)",
27474
+ "category": "Injection"
27475
+ }
27476
+ ],
27477
+ "atlas": [
27478
+ {
27479
+ "id": "AML.T0010",
27480
+ "name": "ML Supply Chain Compromise",
27481
+ "tactic": "Initial Access"
27482
+ },
27483
+ {
27484
+ "id": "AML.T0016",
27485
+ "name": "Obtain Capabilities: Develop Capabilities",
27486
+ "tactic": "Resource Development"
27487
+ },
27488
+ {
27489
+ "id": "AML.T0017",
27490
+ "name": "Discover ML Model Ontology",
27491
+ "tactic": "Discovery"
27492
+ },
27493
+ {
27494
+ "id": "AML.T0018",
27495
+ "name": "Backdoor ML Model",
27496
+ "tactic": "Persistence"
27497
+ },
27498
+ {
27499
+ "id": "AML.T0020",
27500
+ "name": "Poison Training Data",
27501
+ "tactic": "ML Attack Staging"
27502
+ },
27503
+ {
27504
+ "id": "AML.T0043",
27505
+ "name": "Craft Adversarial Data",
27506
+ "tactic": "ML Attack Staging"
27507
+ },
27508
+ {
27509
+ "id": "AML.T0051",
27510
+ "name": "LLM Prompt Injection",
27511
+ "tactic": "Execution"
27512
+ },
27513
+ {
27514
+ "id": "AML.T0054",
27515
+ "name": "LLM Jailbreak",
27516
+ "tactic": "Defense Evasion"
27517
+ },
27518
+ {
27519
+ "id": "AML.T0096",
27520
+ "name": "AI API as Covert C2 Channel",
27521
+ "tactic": "Command and Control"
27522
+ }
27523
+ ],
27524
+ "d3fend": [
27525
+ {
27526
+ "id": "D3-ASLR",
27527
+ "name": "Address Space Layout Randomization",
27528
+ "tactic": "Harden"
27529
+ },
27530
+ {
27531
+ "id": "D3-CSPP",
27532
+ "name": "Client-server Payload Profiling",
27533
+ "tactic": "Detect"
27534
+ },
27535
+ {
27536
+ "id": "D3-EAL",
27537
+ "name": "Executable Allowlisting",
27538
+ "tactic": "Harden"
27539
+ },
27540
+ {
27541
+ "id": "D3-IOPR",
27542
+ "name": "Input/Output Profiling Resource",
27543
+ "tactic": "Detect"
27544
+ },
27545
+ {
27546
+ "id": "D3-NTA",
27547
+ "name": "Network Traffic Analysis",
27548
+ "tactic": "Detect"
27549
+ },
27550
+ {
27551
+ "id": "D3-PHRA",
27552
+ "name": "Process Hardware Resource Access",
27553
+ "tactic": "Isolate"
27554
+ },
27555
+ {
27556
+ "id": "D3-PSEP",
27557
+ "name": "Process Segment Execution Prevention",
27558
+ "tactic": "Harden"
27559
+ }
27560
+ ],
27561
+ "framework_gaps": [
27562
+ {
27563
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
27564
+ "framework": "ALL",
27565
+ "control_name": "AI Pipeline Integrity"
27566
+ },
27567
+ {
27568
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
27569
+ "framework": "ALL",
27570
+ "control_name": "Prompt Injection as Access Control Failure"
27571
+ },
27572
+ {
27573
+ "id": "CIS-Controls-v8-Control7",
27574
+ "framework": "CIS Controls v8",
27575
+ "control_name": "Continuous Vulnerability Management"
27576
+ },
27577
+ {
27578
+ "id": "CMMC-2.0-Level-2",
27579
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
27580
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
27581
+ },
27582
+ {
27583
+ "id": "FedRAMP-Rev5-Moderate",
27584
+ "framework": "FedRAMP Rev 5 Moderate",
27585
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
27586
+ },
27587
+ {
27588
+ "id": "IEC-62443-3-3",
27589
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
27590
+ "control_name": "System security requirements and security levels"
27591
+ },
27592
+ {
27593
+ "id": "ISO-27001-2022-A.8.28",
27594
+ "framework": "ISO/IEC 27001:2022",
27595
+ "control_name": "Secure coding"
27596
+ },
27597
+ {
27598
+ "id": "ISO-27001-2022-A.8.8",
27599
+ "framework": "ISO/IEC 27001:2022",
27600
+ "control_name": "Management of technical vulnerabilities"
27601
+ },
27602
+ {
27603
+ "id": "ISO-IEC-23894-2023-clause-7",
27604
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
27605
+ "control_name": "AI risk management process"
27606
+ },
27607
+ {
27608
+ "id": "NERC-CIP-007-6-R4",
27609
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
27610
+ "control_name": "Security event monitoring"
27611
+ },
27612
+ {
27613
+ "id": "NIS2-Art21-patch-management",
27614
+ "framework": "EU NIS2 Directive",
27615
+ "control_name": "Vulnerability handling and disclosure"
27616
+ },
27617
+ {
27618
+ "id": "NIST-800-115",
27619
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
27620
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
27621
+ },
27622
+ {
27623
+ "id": "NIST-800-218-SSDF",
27624
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
27625
+ "control_name": "Secure Software Development Framework"
27626
+ },
27627
+ {
27628
+ "id": "NIST-800-53-AC-2",
27629
+ "framework": "NIST SP 800-53 Rev 5",
27630
+ "control_name": "Account Management"
27631
+ },
27632
+ {
27633
+ "id": "NIST-800-53-SC-8",
27634
+ "framework": "NIST SP 800-53 Rev 5",
27635
+ "control_name": "Transmission Confidentiality and Integrity"
27636
+ },
27637
+ {
27638
+ "id": "NIST-800-53-SI-2",
27639
+ "framework": "NIST SP 800-53 Rev 5",
27640
+ "control_name": "Flaw Remediation"
27641
+ },
27642
+ {
27643
+ "id": "NIST-800-53-SI-3",
27644
+ "framework": "NIST SP 800-53 Rev 5",
27645
+ "control_name": "Malicious Code Protection"
27646
+ },
27647
+ {
27648
+ "id": "NIST-800-82r3",
27649
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
27650
+ "control_name": "Guide to Operational Technology (OT) Security"
27651
+ },
27652
+ {
27653
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
27654
+ "framework": "OWASP Top 10 for LLM Applications 2025",
27655
+ "control_name": "Prompt Injection"
27656
+ },
27657
+ {
27658
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
27659
+ "framework": "OWASP Top 10 for LLM Applications 2025",
27660
+ "control_name": "Sensitive Information Disclosure"
27661
+ },
27662
+ {
27663
+ "id": "OWASP-Pen-Testing-Guide-v5",
27664
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
27665
+ "control_name": "Web application penetration testing methodology"
27666
+ },
27667
+ {
27668
+ "id": "PCI-DSS-4.0-6.3.3",
27669
+ "framework": "PCI DSS 4.0",
27670
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
27671
+ },
27672
+ {
27673
+ "id": "PTES-Pre-engagement",
27674
+ "framework": "Penetration Testing Execution Standard (PTES)",
27675
+ "control_name": "Pre-engagement Interactions"
27676
+ },
27677
+ {
27678
+ "id": "SOC2-CC6-logical-access",
27679
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
27680
+ "control_name": "Logical and Physical Access Controls"
27681
+ },
27682
+ {
27683
+ "id": "SOC2-CC9-vendor-management",
27684
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
27685
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
27686
+ }
27687
+ ],
27688
+ "attack_refs": [
27689
+ "T0855",
27690
+ "T0883",
27691
+ "T1059",
27692
+ "T1068",
27693
+ "T1078",
27694
+ "T1133",
27695
+ "T1190",
27696
+ "T1548.001",
27697
+ "T1566"
27698
+ ],
27699
+ "rfc_refs": [
27700
+ "RFC-4301",
27701
+ "RFC-4303",
27702
+ "RFC-7296"
27703
+ ]
27704
+ }
27705
+ },
27706
+ "CVE-2024-39722": {
27707
+ "name": "Ollama api/push Path Traversal File-Existence Disclosure",
27708
+ "rwep": 27,
27709
+ "cvss": 7.5,
27710
+ "cisa_kev": false,
27711
+ "epss_score": null,
27712
+ "referencing_skills": [
27713
+ "kernel-lpe-triage",
27714
+ "ai-attack-surface",
27715
+ "compliance-theater",
27716
+ "attack-surface-pentest",
27717
+ "ot-ics-security",
27718
+ "coordinated-vuln-disclosure",
27719
+ "sector-energy"
27720
+ ],
27721
+ "chain": {
27722
+ "cwes": [
27723
+ {
27724
+ "id": "CWE-1037",
27725
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
27726
+ "category": "Hardware / Side Channel"
27727
+ },
27728
+ {
27729
+ "id": "CWE-1039",
27730
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
27731
+ "category": "AI/ML"
27732
+ },
27733
+ {
27734
+ "id": "CWE-125",
27735
+ "name": "Out-of-bounds Read",
27736
+ "category": "Memory Safety"
27737
+ },
27738
+ {
27739
+ "id": "CWE-1357",
27740
+ "name": "Reliance on Insufficiently Trustworthy Component",
27741
+ "category": "Supply Chain"
27742
+ },
27743
+ {
27744
+ "id": "CWE-1395",
27745
+ "name": "Dependency on Vulnerable Third-Party Component",
27746
+ "category": "Supply Chain"
27747
+ },
27748
+ {
27749
+ "id": "CWE-1426",
27750
+ "name": "Improper Validation of Generative AI Output",
27751
+ "category": "AI/ML"
27752
+ },
27753
+ {
27754
+ "id": "CWE-22",
27755
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
27756
+ "category": "Path/Resource"
27757
+ },
27758
+ {
27759
+ "id": "CWE-269",
27760
+ "name": "Improper Privilege Management",
27761
+ "category": "Authorization"
27762
+ },
27763
+ {
27764
+ "id": "CWE-287",
27765
+ "name": "Improper Authentication",
27766
+ "category": "Authentication"
27767
+ },
27768
+ {
27769
+ "id": "CWE-306",
27770
+ "name": "Missing Authentication for Critical Function",
27771
+ "category": "Authentication"
27772
+ },
27773
+ {
27774
+ "id": "CWE-352",
27775
+ "name": "Cross-Site Request Forgery (CSRF)",
27776
+ "category": "Session"
27777
+ },
27778
+ {
27779
+ "id": "CWE-362",
27780
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
27781
+ "category": "Concurrency"
27782
+ },
27783
+ {
27784
+ "id": "CWE-416",
27785
+ "name": "Use After Free",
27786
+ "category": "Memory Safety"
27787
+ },
27788
+ {
27789
+ "id": "CWE-434",
27790
+ "name": "Unrestricted Upload of File with Dangerous Type",
27791
+ "category": "File Handling"
27792
+ },
27793
+ {
27794
+ "id": "CWE-672",
27795
+ "name": "Operation on a Resource after Expiration or Release",
27796
+ "category": "Memory Safety"
27797
+ },
27798
+ {
27799
+ "id": "CWE-732",
27800
+ "name": "Incorrect Permission Assignment for Critical Resource",
27801
+ "category": "Authorization"
27802
+ },
27803
+ {
27804
+ "id": "CWE-78",
27805
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
27806
+ "category": "Injection"
27807
+ },
27808
+ {
27809
+ "id": "CWE-787",
27810
+ "name": "Out-of-bounds Write",
27811
+ "category": "Memory Safety"
27812
+ },
27813
+ {
27814
+ "id": "CWE-79",
27815
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
27816
+ "category": "Injection"
27817
+ },
27818
+ {
27819
+ "id": "CWE-798",
27820
+ "name": "Use of Hard-coded Credentials",
27821
+ "category": "Credentials"
27822
+ },
27823
+ {
27824
+ "id": "CWE-89",
27825
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
27826
+ "category": "Injection"
27827
+ },
27828
+ {
27829
+ "id": "CWE-918",
27830
+ "name": "Server-Side Request Forgery (SSRF)",
27831
+ "category": "Network"
27832
+ },
27833
+ {
27834
+ "id": "CWE-94",
27835
+ "name": "Improper Control of Generation of Code (Code Injection)",
27836
+ "category": "Injection"
27837
+ }
27838
+ ],
27839
+ "atlas": [
27840
+ {
27841
+ "id": "AML.T0010",
27842
+ "name": "ML Supply Chain Compromise",
27843
+ "tactic": "Initial Access"
27844
+ },
27845
+ {
27846
+ "id": "AML.T0016",
27847
+ "name": "Obtain Capabilities: Develop Capabilities",
27848
+ "tactic": "Resource Development"
27849
+ },
27850
+ {
27851
+ "id": "AML.T0017",
27852
+ "name": "Discover ML Model Ontology",
27853
+ "tactic": "Discovery"
27854
+ },
27855
+ {
27856
+ "id": "AML.T0018",
27857
+ "name": "Backdoor ML Model",
27858
+ "tactic": "Persistence"
27859
+ },
27860
+ {
27861
+ "id": "AML.T0020",
27862
+ "name": "Poison Training Data",
27863
+ "tactic": "ML Attack Staging"
27864
+ },
27865
+ {
27866
+ "id": "AML.T0043",
27867
+ "name": "Craft Adversarial Data",
27868
+ "tactic": "ML Attack Staging"
27869
+ },
27870
+ {
27871
+ "id": "AML.T0051",
27872
+ "name": "LLM Prompt Injection",
27873
+ "tactic": "Execution"
27874
+ },
27875
+ {
27876
+ "id": "AML.T0054",
27877
+ "name": "LLM Jailbreak",
27878
+ "tactic": "Defense Evasion"
27879
+ },
27880
+ {
27881
+ "id": "AML.T0096",
27882
+ "name": "AI API as Covert C2 Channel",
27883
+ "tactic": "Command and Control"
27884
+ }
27885
+ ],
27886
+ "d3fend": [
27887
+ {
27888
+ "id": "D3-ASLR",
27889
+ "name": "Address Space Layout Randomization",
27890
+ "tactic": "Harden"
27891
+ },
27892
+ {
27893
+ "id": "D3-CSPP",
27894
+ "name": "Client-server Payload Profiling",
27895
+ "tactic": "Detect"
27896
+ },
27897
+ {
27898
+ "id": "D3-EAL",
27899
+ "name": "Executable Allowlisting",
27900
+ "tactic": "Harden"
27901
+ },
27902
+ {
27903
+ "id": "D3-IOPR",
27904
+ "name": "Input/Output Profiling Resource",
27905
+ "tactic": "Detect"
27906
+ },
27907
+ {
27908
+ "id": "D3-NTA",
27909
+ "name": "Network Traffic Analysis",
27910
+ "tactic": "Detect"
27911
+ },
27912
+ {
27913
+ "id": "D3-PHRA",
27914
+ "name": "Process Hardware Resource Access",
27915
+ "tactic": "Isolate"
27916
+ },
27917
+ {
27918
+ "id": "D3-PSEP",
27919
+ "name": "Process Segment Execution Prevention",
27920
+ "tactic": "Harden"
27921
+ }
27922
+ ],
27923
+ "framework_gaps": [
27924
+ {
27925
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
27926
+ "framework": "ALL",
27927
+ "control_name": "AI Pipeline Integrity"
27928
+ },
27929
+ {
27930
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
27931
+ "framework": "ALL",
27932
+ "control_name": "Prompt Injection as Access Control Failure"
27933
+ },
27934
+ {
27935
+ "id": "CIS-Controls-v8-Control7",
27936
+ "framework": "CIS Controls v8",
27937
+ "control_name": "Continuous Vulnerability Management"
27938
+ },
27939
+ {
27940
+ "id": "CMMC-2.0-Level-2",
27941
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
27942
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
27943
+ },
27944
+ {
27945
+ "id": "FedRAMP-Rev5-Moderate",
27946
+ "framework": "FedRAMP Rev 5 Moderate",
27947
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
27948
+ },
27949
+ {
27950
+ "id": "IEC-62443-3-3",
27951
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
27952
+ "control_name": "System security requirements and security levels"
27953
+ },
27954
+ {
27955
+ "id": "ISO-27001-2022-A.8.28",
27956
+ "framework": "ISO/IEC 27001:2022",
27957
+ "control_name": "Secure coding"
27958
+ },
27959
+ {
27960
+ "id": "ISO-27001-2022-A.8.8",
27961
+ "framework": "ISO/IEC 27001:2022",
27962
+ "control_name": "Management of technical vulnerabilities"
27963
+ },
27964
+ {
27965
+ "id": "ISO-IEC-23894-2023-clause-7",
27966
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
27967
+ "control_name": "AI risk management process"
27968
+ },
27969
+ {
27970
+ "id": "NERC-CIP-007-6-R4",
27971
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
27972
+ "control_name": "Security event monitoring"
27973
+ },
27974
+ {
27975
+ "id": "NIS2-Art21-patch-management",
27976
+ "framework": "EU NIS2 Directive",
27977
+ "control_name": "Vulnerability handling and disclosure"
27978
+ },
27979
+ {
27980
+ "id": "NIST-800-115",
27981
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
27982
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
27983
+ },
27984
+ {
27985
+ "id": "NIST-800-218-SSDF",
27986
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
27987
+ "control_name": "Secure Software Development Framework"
27988
+ },
27989
+ {
27990
+ "id": "NIST-800-53-AC-2",
27991
+ "framework": "NIST SP 800-53 Rev 5",
27992
+ "control_name": "Account Management"
27993
+ },
27994
+ {
27995
+ "id": "NIST-800-53-SC-8",
27996
+ "framework": "NIST SP 800-53 Rev 5",
27997
+ "control_name": "Transmission Confidentiality and Integrity"
27998
+ },
27999
+ {
28000
+ "id": "NIST-800-53-SI-2",
28001
+ "framework": "NIST SP 800-53 Rev 5",
28002
+ "control_name": "Flaw Remediation"
28003
+ },
28004
+ {
28005
+ "id": "NIST-800-53-SI-3",
28006
+ "framework": "NIST SP 800-53 Rev 5",
28007
+ "control_name": "Malicious Code Protection"
28008
+ },
28009
+ {
28010
+ "id": "NIST-800-82r3",
28011
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
28012
+ "control_name": "Guide to Operational Technology (OT) Security"
28013
+ },
28014
+ {
28015
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
28016
+ "framework": "OWASP Top 10 for LLM Applications 2025",
28017
+ "control_name": "Prompt Injection"
28018
+ },
28019
+ {
28020
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
28021
+ "framework": "OWASP Top 10 for LLM Applications 2025",
28022
+ "control_name": "Sensitive Information Disclosure"
28023
+ },
28024
+ {
28025
+ "id": "OWASP-Pen-Testing-Guide-v5",
28026
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
28027
+ "control_name": "Web application penetration testing methodology"
28028
+ },
28029
+ {
28030
+ "id": "PCI-DSS-4.0-6.3.3",
28031
+ "framework": "PCI DSS 4.0",
28032
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
28033
+ },
28034
+ {
28035
+ "id": "PTES-Pre-engagement",
28036
+ "framework": "Penetration Testing Execution Standard (PTES)",
28037
+ "control_name": "Pre-engagement Interactions"
28038
+ },
28039
+ {
28040
+ "id": "SOC2-CC6-logical-access",
28041
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
28042
+ "control_name": "Logical and Physical Access Controls"
28043
+ },
28044
+ {
28045
+ "id": "SOC2-CC9-vendor-management",
28046
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
28047
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
28048
+ }
28049
+ ],
28050
+ "attack_refs": [
28051
+ "T0855",
28052
+ "T0883",
28053
+ "T1059",
28054
+ "T1068",
28055
+ "T1078",
28056
+ "T1133",
28057
+ "T1190",
28058
+ "T1548.001",
28059
+ "T1566"
28060
+ ],
28061
+ "rfc_refs": [
28062
+ "RFC-4301",
28063
+ "RFC-4303",
28064
+ "RFC-7296"
28065
+ ]
28066
+ }
28067
+ },
27344
28068
  "CVE-2026-41091": {
27345
28069
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
27346
28070
  "rwep": 45,
@@ -53723,6 +54447,8 @@
53723
54447
  "CVE-2024-0132",
53724
54448
  "CVE-2024-3094",
53725
54449
  "CVE-2024-3154",
54450
+ "CVE-2024-37032",
54451
+ "CVE-2024-39722",
53726
54452
  "CVE-2024-42478",
53727
54453
  "CVE-2024-42479",
53728
54454
  "CVE-2024-50050",
@@ -54099,6 +54825,8 @@
54099
54825
  "CVE-2023-43654",
54100
54826
  "CVE-2023-48022",
54101
54827
  "CVE-2024-0132",
54828
+ "CVE-2024-37032",
54829
+ "CVE-2024-39722",
54102
54830
  "CVE-2024-42478",
54103
54831
  "CVE-2024-42479",
54104
54832
  "CVE-2024-50050",
@@ -54268,6 +54996,8 @@
54268
54996
  "CVE-2023-43654",
54269
54997
  "CVE-2023-48022",
54270
54998
  "CVE-2024-0132",
54999
+ "CVE-2024-37032",
55000
+ "CVE-2024-39722",
54271
55001
  "CVE-2024-42478",
54272
55002
  "CVE-2024-42479",
54273
55003
  "CVE-2024-50050",
@@ -54451,6 +55181,8 @@
54451
55181
  "CVE-2023-43654",
54452
55182
  "CVE-2023-48022",
54453
55183
  "CVE-2024-0132",
55184
+ "CVE-2024-37032",
55185
+ "CVE-2024-39722",
54454
55186
  "CVE-2024-42478",
54455
55187
  "CVE-2024-42479",
54456
55188
  "CVE-2024-50050",
@@ -54740,6 +55472,8 @@
54740
55472
  "CVE-2024-0132",
54741
55473
  "CVE-2024-3094",
54742
55474
  "CVE-2024-3154",
55475
+ "CVE-2024-37032",
55476
+ "CVE-2024-39722",
54743
55477
  "CVE-2024-42478",
54744
55478
  "CVE-2024-42479",
54745
55479
  "CVE-2024-50050",
@@ -54988,7 +55722,9 @@
54988
55722
  "CVE-2024-21762",
54989
55723
  "CVE-2024-27199",
54990
55724
  "CVE-2024-27443",
55725
+ "CVE-2024-37032",
54991
55726
  "CVE-2024-37079",
55727
+ "CVE-2024-39722",
54992
55728
  "CVE-2024-42009",
54993
55729
  "CVE-2024-42478",
54994
55730
  "CVE-2024-42479",
@@ -55808,6 +56544,8 @@
55808
56544
  "CVE-2024-0132",
55809
56545
  "CVE-2024-3094",
55810
56546
  "CVE-2024-3154",
56547
+ "CVE-2024-37032",
56548
+ "CVE-2024-39722",
55811
56549
  "CVE-2024-42478",
55812
56550
  "CVE-2024-42479",
55813
56551
  "CVE-2024-50050",
@@ -56416,6 +57154,8 @@
56416
57154
  "CVE-2024-0132",
56417
57155
  "CVE-2024-3094",
56418
57156
  "CVE-2024-3154",
57157
+ "CVE-2024-37032",
57158
+ "CVE-2024-39722",
56419
57159
  "CVE-2024-42478",
56420
57160
  "CVE-2024-42479",
56421
57161
  "CVE-2024-50050",
@@ -56661,6 +57401,8 @@
56661
57401
  "CVE-2023-48022",
56662
57402
  "CVE-2024-0132",
56663
57403
  "CVE-2024-3094",
57404
+ "CVE-2024-37032",
57405
+ "CVE-2024-39722",
56664
57406
  "CVE-2024-42478",
56665
57407
  "CVE-2024-42479",
56666
57408
  "CVE-2024-50050",
@@ -57334,6 +58076,8 @@
57334
58076
  "CVE-2024-0132",
57335
58077
  "CVE-2024-3094",
57336
58078
  "CVE-2024-3154",
58079
+ "CVE-2024-37032",
58080
+ "CVE-2024-39722",
57337
58081
  "CVE-2024-42478",
57338
58082
  "CVE-2024-42479",
57339
58083
  "CVE-2024-50050",
@@ -57589,7 +58333,9 @@
57589
58333
  "CVE-2024-21762",
57590
58334
  "CVE-2024-27199",
57591
58335
  "CVE-2024-27443",
58336
+ "CVE-2024-37032",
57592
58337
  "CVE-2024-37079",
58338
+ "CVE-2024-39722",
57593
58339
  "CVE-2024-42009",
57594
58340
  "CVE-2024-42478",
57595
58341
  "CVE-2024-42479",
@@ -58018,7 +58764,9 @@
58018
58764
  "CVE-2024-21762",
58019
58765
  "CVE-2024-27199",
58020
58766
  "CVE-2024-27443",
58767
+ "CVE-2024-37032",
58021
58768
  "CVE-2024-37079",
58769
+ "CVE-2024-39722",
58022
58770
  "CVE-2024-42009",
58023
58771
  "CVE-2024-42478",
58024
58772
  "CVE-2024-42479",
@@ -58473,6 +59221,8 @@
58473
59221
  "CVE-2024-0132",
58474
59222
  "CVE-2024-3094",
58475
59223
  "CVE-2024-3154",
59224
+ "CVE-2024-37032",
59225
+ "CVE-2024-39722",
58476
59226
  "CVE-2024-42478",
58477
59227
  "CVE-2024-42479",
58478
59228
  "CVE-2024-50050",
@@ -59280,7 +60030,9 @@
59280
60030
  "CVE-2024-21762",
59281
60031
  "CVE-2024-27199",
59282
60032
  "CVE-2024-27443",
60033
+ "CVE-2024-37032",
59283
60034
  "CVE-2024-37079",
60035
+ "CVE-2024-39722",
59284
60036
  "CVE-2024-42009",
59285
60037
  "CVE-2024-42478",
59286
60038
  "CVE-2024-42479",
@@ -59799,6 +60551,8 @@
59799
60551
  "CVE-2024-0132",
59800
60552
  "CVE-2024-3094",
59801
60553
  "CVE-2024-3154",
60554
+ "CVE-2024-37032",
60555
+ "CVE-2024-39722",
59802
60556
  "CVE-2024-42478",
59803
60557
  "CVE-2024-42479",
59804
60558
  "CVE-2024-50050",
@@ -60134,7 +60888,9 @@
60134
60888
  "CVE-2024-27443",
60135
60889
  "CVE-2024-3094",
60136
60890
  "CVE-2024-3154",
60891
+ "CVE-2024-37032",
60137
60892
  "CVE-2024-37079",
60893
+ "CVE-2024-39722",
60138
60894
  "CVE-2024-42009",
60139
60895
  "CVE-2024-42478",
60140
60896
  "CVE-2024-42479",
@@ -60670,6 +61426,8 @@
60670
61426
  "CVE-2024-0132",
60671
61427
  "CVE-2024-3094",
60672
61428
  "CVE-2024-3154",
61429
+ "CVE-2024-37032",
61430
+ "CVE-2024-39722",
60673
61431
  "CVE-2024-42478",
60674
61432
  "CVE-2024-42479",
60675
61433
  "CVE-2024-50050",
@@ -61613,6 +62371,8 @@
61613
62371
  "CVE-2024-0132",
61614
62372
  "CVE-2024-3094",
61615
62373
  "CVE-2024-3154",
62374
+ "CVE-2024-37032",
62375
+ "CVE-2024-39722",
61616
62376
  "CVE-2024-42478",
61617
62377
  "CVE-2024-42479",
61618
62378
  "CVE-2024-50050",
@@ -61718,6 +62478,8 @@
61718
62478
  "CVE-2023-43654",
61719
62479
  "CVE-2023-48022",
61720
62480
  "CVE-2024-0132",
62481
+ "CVE-2024-37032",
62482
+ "CVE-2024-39722",
61721
62483
  "CVE-2024-42478",
61722
62484
  "CVE-2024-42479",
61723
62485
  "CVE-2024-50050",
@@ -61895,6 +62657,8 @@
61895
62657
  "CVE-2023-43654",
61896
62658
  "CVE-2023-48022",
61897
62659
  "CVE-2024-0132",
62660
+ "CVE-2024-37032",
62661
+ "CVE-2024-39722",
61898
62662
  "CVE-2024-42478",
61899
62663
  "CVE-2024-42479",
61900
62664
  "CVE-2024-50050",
@@ -62329,7 +63093,9 @@
62329
63093
  "CVE-2024-27199",
62330
63094
  "CVE-2024-27443",
62331
63095
  "CVE-2024-3094",
63096
+ "CVE-2024-37032",
62332
63097
  "CVE-2024-37079",
63098
+ "CVE-2024-39722",
62333
63099
  "CVE-2024-42009",
62334
63100
  "CVE-2024-42478",
62335
63101
  "CVE-2024-42479",
@@ -62773,6 +63539,8 @@
62773
63539
  "CVE-2024-0132",
62774
63540
  "CVE-2024-3094",
62775
63541
  "CVE-2024-3154",
63542
+ "CVE-2024-37032",
63543
+ "CVE-2024-39722",
62776
63544
  "CVE-2024-42478",
62777
63545
  "CVE-2024-42479",
62778
63546
  "CVE-2024-50050",
@@ -63072,6 +63840,8 @@
63072
63840
  "CVE-2023-48022",
63073
63841
  "CVE-2024-0132",
63074
63842
  "CVE-2024-3094",
63843
+ "CVE-2024-37032",
63844
+ "CVE-2024-39722",
63075
63845
  "CVE-2024-40635",
63076
63846
  "CVE-2024-42478",
63077
63847
  "CVE-2024-42479",