@blamejs/exceptd-skills 0.13.86 → 0.13.88

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +8 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +2067 -0
  6. package/data/atlas-ttps.json +13 -0
  7. package/data/attack-techniques.json +15 -0
  8. package/data/cve-catalog.json +534 -0
  9. package/data/cwe-catalog.json +6 -0
  10. package/data/framework-control-gaps.json +40 -0
  11. package/data/zeroday-lessons.json +250 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/data/_indexes/chains.json CHANGED
@@ -28065,6 +28065,1956 @@
28065
28065
  ]
28066
28066
  }
28067
28067
  },
28068
+ "CVE-2024-1561": {
28069
+ "name": "Gradio /component_server Local File Read (Hugging Face Spaces Secret Theft)",
28070
+ "rwep": 31,
28071
+ "cvss": 7.5,
28072
+ "cisa_kev": false,
28073
+ "epss_score": null,
28074
+ "referencing_skills": [
28075
+ "kernel-lpe-triage",
28076
+ "ai-attack-surface",
28077
+ "compliance-theater",
28078
+ "ai-c2-detection",
28079
+ "attack-surface-pentest",
28080
+ "dlp-gap-analysis",
28081
+ "ot-ics-security",
28082
+ "coordinated-vuln-disclosure",
28083
+ "sector-energy"
28084
+ ],
28085
+ "chain": {
28086
+ "cwes": [
28087
+ {
28088
+ "id": "CWE-1037",
28089
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
28090
+ "category": "Hardware / Side Channel"
28091
+ },
28092
+ {
28093
+ "id": "CWE-1039",
28094
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
28095
+ "category": "AI/ML"
28096
+ },
28097
+ {
28098
+ "id": "CWE-125",
28099
+ "name": "Out-of-bounds Read",
28100
+ "category": "Memory Safety"
28101
+ },
28102
+ {
28103
+ "id": "CWE-1357",
28104
+ "name": "Reliance on Insufficiently Trustworthy Component",
28105
+ "category": "Supply Chain"
28106
+ },
28107
+ {
28108
+ "id": "CWE-1395",
28109
+ "name": "Dependency on Vulnerable Third-Party Component",
28110
+ "category": "Supply Chain"
28111
+ },
28112
+ {
28113
+ "id": "CWE-1426",
28114
+ "name": "Improper Validation of Generative AI Output",
28115
+ "category": "AI/ML"
28116
+ },
28117
+ {
28118
+ "id": "CWE-200",
28119
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
28120
+ "category": "Information Exposure"
28121
+ },
28122
+ {
28123
+ "id": "CWE-22",
28124
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
28125
+ "category": "Path/Resource"
28126
+ },
28127
+ {
28128
+ "id": "CWE-269",
28129
+ "name": "Improper Privilege Management",
28130
+ "category": "Authorization"
28131
+ },
28132
+ {
28133
+ "id": "CWE-287",
28134
+ "name": "Improper Authentication",
28135
+ "category": "Authentication"
28136
+ },
28137
+ {
28138
+ "id": "CWE-306",
28139
+ "name": "Missing Authentication for Critical Function",
28140
+ "category": "Authentication"
28141
+ },
28142
+ {
28143
+ "id": "CWE-352",
28144
+ "name": "Cross-Site Request Forgery (CSRF)",
28145
+ "category": "Session"
28146
+ },
28147
+ {
28148
+ "id": "CWE-362",
28149
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
28150
+ "category": "Concurrency"
28151
+ },
28152
+ {
28153
+ "id": "CWE-416",
28154
+ "name": "Use After Free",
28155
+ "category": "Memory Safety"
28156
+ },
28157
+ {
28158
+ "id": "CWE-434",
28159
+ "name": "Unrestricted Upload of File with Dangerous Type",
28160
+ "category": "File Handling"
28161
+ },
28162
+ {
28163
+ "id": "CWE-672",
28164
+ "name": "Operation on a Resource after Expiration or Release",
28165
+ "category": "Memory Safety"
28166
+ },
28167
+ {
28168
+ "id": "CWE-732",
28169
+ "name": "Incorrect Permission Assignment for Critical Resource",
28170
+ "category": "Authorization"
28171
+ },
28172
+ {
28173
+ "id": "CWE-78",
28174
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
28175
+ "category": "Injection"
28176
+ },
28177
+ {
28178
+ "id": "CWE-787",
28179
+ "name": "Out-of-bounds Write",
28180
+ "category": "Memory Safety"
28181
+ },
28182
+ {
28183
+ "id": "CWE-79",
28184
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
28185
+ "category": "Injection"
28186
+ },
28187
+ {
28188
+ "id": "CWE-798",
28189
+ "name": "Use of Hard-coded Credentials",
28190
+ "category": "Credentials"
28191
+ },
28192
+ {
28193
+ "id": "CWE-89",
28194
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
28195
+ "category": "Injection"
28196
+ },
28197
+ {
28198
+ "id": "CWE-918",
28199
+ "name": "Server-Side Request Forgery (SSRF)",
28200
+ "category": "Network"
28201
+ },
28202
+ {
28203
+ "id": "CWE-94",
28204
+ "name": "Improper Control of Generation of Code (Code Injection)",
28205
+ "category": "Injection"
28206
+ }
28207
+ ],
28208
+ "atlas": [
28209
+ {
28210
+ "id": "AML.T0010",
28211
+ "name": "ML Supply Chain Compromise",
28212
+ "tactic": "Initial Access"
28213
+ },
28214
+ {
28215
+ "id": "AML.T0016",
28216
+ "name": "Obtain Capabilities: Develop Capabilities",
28217
+ "tactic": "Resource Development"
28218
+ },
28219
+ {
28220
+ "id": "AML.T0017",
28221
+ "name": "Discover ML Model Ontology",
28222
+ "tactic": "Discovery"
28223
+ },
28224
+ {
28225
+ "id": "AML.T0018",
28226
+ "name": "Backdoor ML Model",
28227
+ "tactic": "Persistence"
28228
+ },
28229
+ {
28230
+ "id": "AML.T0020",
28231
+ "name": "Poison Training Data",
28232
+ "tactic": "ML Attack Staging"
28233
+ },
28234
+ {
28235
+ "id": "AML.T0043",
28236
+ "name": "Craft Adversarial Data",
28237
+ "tactic": "ML Attack Staging"
28238
+ },
28239
+ {
28240
+ "id": "AML.T0051",
28241
+ "name": "LLM Prompt Injection",
28242
+ "tactic": "Execution"
28243
+ },
28244
+ {
28245
+ "id": "AML.T0054",
28246
+ "name": "LLM Jailbreak",
28247
+ "tactic": "Defense Evasion"
28248
+ },
28249
+ {
28250
+ "id": "AML.T0096",
28251
+ "name": "AI API as Covert C2 Channel",
28252
+ "tactic": "Command and Control"
28253
+ }
28254
+ ],
28255
+ "d3fend": [
28256
+ {
28257
+ "id": "D3-ASLR",
28258
+ "name": "Address Space Layout Randomization",
28259
+ "tactic": "Harden"
28260
+ },
28261
+ {
28262
+ "id": "D3-CA",
28263
+ "name": "Certificate Analysis",
28264
+ "tactic": "Detect"
28265
+ },
28266
+ {
28267
+ "id": "D3-CSPP",
28268
+ "name": "Client-server Payload Profiling",
28269
+ "tactic": "Detect"
28270
+ },
28271
+ {
28272
+ "id": "D3-DA",
28273
+ "name": "Domain Analysis",
28274
+ "tactic": "Detect"
28275
+ },
28276
+ {
28277
+ "id": "D3-EAL",
28278
+ "name": "Executable Allowlisting",
28279
+ "tactic": "Harden"
28280
+ },
28281
+ {
28282
+ "id": "D3-IOPR",
28283
+ "name": "Input/Output Profiling Resource",
28284
+ "tactic": "Detect"
28285
+ },
28286
+ {
28287
+ "id": "D3-NI",
28288
+ "name": "Network Isolation",
28289
+ "tactic": "Isolate"
28290
+ },
28291
+ {
28292
+ "id": "D3-NTA",
28293
+ "name": "Network Traffic Analysis",
28294
+ "tactic": "Detect"
28295
+ },
28296
+ {
28297
+ "id": "D3-NTPM",
28298
+ "name": "Network Traffic Policy Mapping",
28299
+ "tactic": "Model"
28300
+ },
28301
+ {
28302
+ "id": "D3-PHRA",
28303
+ "name": "Process Hardware Resource Access",
28304
+ "tactic": "Isolate"
28305
+ },
28306
+ {
28307
+ "id": "D3-PSEP",
28308
+ "name": "Process Segment Execution Prevention",
28309
+ "tactic": "Harden"
28310
+ }
28311
+ ],
28312
+ "framework_gaps": [
28313
+ {
28314
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
28315
+ "framework": "ALL",
28316
+ "control_name": "AI Pipeline Integrity"
28317
+ },
28318
+ {
28319
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
28320
+ "framework": "ALL",
28321
+ "control_name": "Prompt Injection as Access Control Failure"
28322
+ },
28323
+ {
28324
+ "id": "CIS-Controls-v8-Control7",
28325
+ "framework": "CIS Controls v8",
28326
+ "control_name": "Continuous Vulnerability Management"
28327
+ },
28328
+ {
28329
+ "id": "CMMC-2.0-Level-2",
28330
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
28331
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
28332
+ },
28333
+ {
28334
+ "id": "FedRAMP-Rev5-Moderate",
28335
+ "framework": "FedRAMP Rev 5 Moderate",
28336
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
28337
+ },
28338
+ {
28339
+ "id": "HIPAA-Security-Rule-164.312(a)(1)",
28340
+ "framework": "HIPAA Security Rule (45 CFR § 164.312)",
28341
+ "control_name": "Access control standard (technical safeguards)"
28342
+ },
28343
+ {
28344
+ "id": "IEC-62443-3-3",
28345
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
28346
+ "control_name": "System security requirements and security levels"
28347
+ },
28348
+ {
28349
+ "id": "ISO-27001-2022-A.8.16",
28350
+ "framework": "ISO/IEC 27001:2022",
28351
+ "control_name": "Monitoring activities"
28352
+ },
28353
+ {
28354
+ "id": "ISO-27001-2022-A.8.28",
28355
+ "framework": "ISO/IEC 27001:2022",
28356
+ "control_name": "Secure coding"
28357
+ },
28358
+ {
28359
+ "id": "ISO-27001-2022-A.8.8",
28360
+ "framework": "ISO/IEC 27001:2022",
28361
+ "control_name": "Management of technical vulnerabilities"
28362
+ },
28363
+ {
28364
+ "id": "ISO-IEC-23894-2023-clause-7",
28365
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
28366
+ "control_name": "AI risk management process"
28367
+ },
28368
+ {
28369
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
28370
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
28371
+ "control_name": "AI risk assessment"
28372
+ },
28373
+ {
28374
+ "id": "NERC-CIP-007-6-R4",
28375
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
28376
+ "control_name": "Security event monitoring"
28377
+ },
28378
+ {
28379
+ "id": "NIS2-Art21-patch-management",
28380
+ "framework": "EU NIS2 Directive",
28381
+ "control_name": "Vulnerability handling and disclosure"
28382
+ },
28383
+ {
28384
+ "id": "NIST-800-115",
28385
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
28386
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
28387
+ },
28388
+ {
28389
+ "id": "NIST-800-218-SSDF",
28390
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
28391
+ "control_name": "Secure Software Development Framework"
28392
+ },
28393
+ {
28394
+ "id": "NIST-800-53-AC-2",
28395
+ "framework": "NIST SP 800-53 Rev 5",
28396
+ "control_name": "Account Management"
28397
+ },
28398
+ {
28399
+ "id": "NIST-800-53-SC-28",
28400
+ "framework": "NIST SP 800-53 Rev 5",
28401
+ "control_name": "Protection of Information at Rest"
28402
+ },
28403
+ {
28404
+ "id": "NIST-800-53-SC-7",
28405
+ "framework": "NIST SP 800-53 Rev 5",
28406
+ "control_name": "Boundary Protection"
28407
+ },
28408
+ {
28409
+ "id": "NIST-800-53-SC-8",
28410
+ "framework": "NIST SP 800-53 Rev 5",
28411
+ "control_name": "Transmission Confidentiality and Integrity"
28412
+ },
28413
+ {
28414
+ "id": "NIST-800-53-SI-2",
28415
+ "framework": "NIST SP 800-53 Rev 5",
28416
+ "control_name": "Flaw Remediation"
28417
+ },
28418
+ {
28419
+ "id": "NIST-800-53-SI-3",
28420
+ "framework": "NIST SP 800-53 Rev 5",
28421
+ "control_name": "Malicious Code Protection"
28422
+ },
28423
+ {
28424
+ "id": "NIST-800-82r3",
28425
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
28426
+ "control_name": "Guide to Operational Technology (OT) Security"
28427
+ },
28428
+ {
28429
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
28430
+ "framework": "OWASP Top 10 for LLM Applications 2025",
28431
+ "control_name": "Prompt Injection"
28432
+ },
28433
+ {
28434
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
28435
+ "framework": "OWASP Top 10 for LLM Applications 2025",
28436
+ "control_name": "Sensitive Information Disclosure"
28437
+ },
28438
+ {
28439
+ "id": "OWASP-Pen-Testing-Guide-v5",
28440
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
28441
+ "control_name": "Web application penetration testing methodology"
28442
+ },
28443
+ {
28444
+ "id": "PCI-DSS-4.0-6.3.3",
28445
+ "framework": "PCI DSS 4.0",
28446
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
28447
+ },
28448
+ {
28449
+ "id": "PTES-Pre-engagement",
28450
+ "framework": "Penetration Testing Execution Standard (PTES)",
28451
+ "control_name": "Pre-engagement Interactions"
28452
+ },
28453
+ {
28454
+ "id": "SOC2-CC6-logical-access",
28455
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
28456
+ "control_name": "Logical and Physical Access Controls"
28457
+ },
28458
+ {
28459
+ "id": "SOC2-CC7-anomaly-detection",
28460
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
28461
+ "control_name": "System Operations — Threat and Vulnerability Management"
28462
+ },
28463
+ {
28464
+ "id": "SOC2-CC9-vendor-management",
28465
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
28466
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
28467
+ }
28468
+ ],
28469
+ "attack_refs": [
28470
+ "T0855",
28471
+ "T0883",
28472
+ "T1041",
28473
+ "T1059",
28474
+ "T1068",
28475
+ "T1071",
28476
+ "T1078",
28477
+ "T1102",
28478
+ "T1133",
28479
+ "T1190",
28480
+ "T1213",
28481
+ "T1530",
28482
+ "T1548.001",
28483
+ "T1566",
28484
+ "T1567",
28485
+ "T1568"
28486
+ ],
28487
+ "rfc_refs": [
28488
+ "RFC-4301",
28489
+ "RFC-4303",
28490
+ "RFC-7296",
28491
+ "RFC-8446",
28492
+ "RFC-9000",
28493
+ "RFC-9114",
28494
+ "RFC-9180",
28495
+ "RFC-9421",
28496
+ "RFC-9458"
28497
+ ]
28498
+ }
28499
+ },
28500
+ "CVE-2023-51449": {
28501
+ "name": "Gradio /file Route Path Traversal and SSRF Arbitrary File Read",
28502
+ "rwep": 31,
28503
+ "cvss": 7.5,
28504
+ "cisa_kev": false,
28505
+ "epss_score": null,
28506
+ "referencing_skills": [
28507
+ "kernel-lpe-triage",
28508
+ "ai-attack-surface",
28509
+ "compliance-theater",
28510
+ "ai-c2-detection",
28511
+ "attack-surface-pentest",
28512
+ "dlp-gap-analysis",
28513
+ "ot-ics-security",
28514
+ "coordinated-vuln-disclosure",
28515
+ "sector-energy"
28516
+ ],
28517
+ "chain": {
28518
+ "cwes": [
28519
+ {
28520
+ "id": "CWE-1037",
28521
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
28522
+ "category": "Hardware / Side Channel"
28523
+ },
28524
+ {
28525
+ "id": "CWE-1039",
28526
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
28527
+ "category": "AI/ML"
28528
+ },
28529
+ {
28530
+ "id": "CWE-125",
28531
+ "name": "Out-of-bounds Read",
28532
+ "category": "Memory Safety"
28533
+ },
28534
+ {
28535
+ "id": "CWE-1357",
28536
+ "name": "Reliance on Insufficiently Trustworthy Component",
28537
+ "category": "Supply Chain"
28538
+ },
28539
+ {
28540
+ "id": "CWE-1395",
28541
+ "name": "Dependency on Vulnerable Third-Party Component",
28542
+ "category": "Supply Chain"
28543
+ },
28544
+ {
28545
+ "id": "CWE-1426",
28546
+ "name": "Improper Validation of Generative AI Output",
28547
+ "category": "AI/ML"
28548
+ },
28549
+ {
28550
+ "id": "CWE-200",
28551
+ "name": "Exposure of Sensitive Information to an Unauthorized Actor",
28552
+ "category": "Information Exposure"
28553
+ },
28554
+ {
28555
+ "id": "CWE-22",
28556
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
28557
+ "category": "Path/Resource"
28558
+ },
28559
+ {
28560
+ "id": "CWE-269",
28561
+ "name": "Improper Privilege Management",
28562
+ "category": "Authorization"
28563
+ },
28564
+ {
28565
+ "id": "CWE-287",
28566
+ "name": "Improper Authentication",
28567
+ "category": "Authentication"
28568
+ },
28569
+ {
28570
+ "id": "CWE-306",
28571
+ "name": "Missing Authentication for Critical Function",
28572
+ "category": "Authentication"
28573
+ },
28574
+ {
28575
+ "id": "CWE-352",
28576
+ "name": "Cross-Site Request Forgery (CSRF)",
28577
+ "category": "Session"
28578
+ },
28579
+ {
28580
+ "id": "CWE-362",
28581
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
28582
+ "category": "Concurrency"
28583
+ },
28584
+ {
28585
+ "id": "CWE-416",
28586
+ "name": "Use After Free",
28587
+ "category": "Memory Safety"
28588
+ },
28589
+ {
28590
+ "id": "CWE-434",
28591
+ "name": "Unrestricted Upload of File with Dangerous Type",
28592
+ "category": "File Handling"
28593
+ },
28594
+ {
28595
+ "id": "CWE-672",
28596
+ "name": "Operation on a Resource after Expiration or Release",
28597
+ "category": "Memory Safety"
28598
+ },
28599
+ {
28600
+ "id": "CWE-732",
28601
+ "name": "Incorrect Permission Assignment for Critical Resource",
28602
+ "category": "Authorization"
28603
+ },
28604
+ {
28605
+ "id": "CWE-78",
28606
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
28607
+ "category": "Injection"
28608
+ },
28609
+ {
28610
+ "id": "CWE-787",
28611
+ "name": "Out-of-bounds Write",
28612
+ "category": "Memory Safety"
28613
+ },
28614
+ {
28615
+ "id": "CWE-79",
28616
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
28617
+ "category": "Injection"
28618
+ },
28619
+ {
28620
+ "id": "CWE-798",
28621
+ "name": "Use of Hard-coded Credentials",
28622
+ "category": "Credentials"
28623
+ },
28624
+ {
28625
+ "id": "CWE-89",
28626
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
28627
+ "category": "Injection"
28628
+ },
28629
+ {
28630
+ "id": "CWE-918",
28631
+ "name": "Server-Side Request Forgery (SSRF)",
28632
+ "category": "Network"
28633
+ },
28634
+ {
28635
+ "id": "CWE-94",
28636
+ "name": "Improper Control of Generation of Code (Code Injection)",
28637
+ "category": "Injection"
28638
+ }
28639
+ ],
28640
+ "atlas": [
28641
+ {
28642
+ "id": "AML.T0010",
28643
+ "name": "ML Supply Chain Compromise",
28644
+ "tactic": "Initial Access"
28645
+ },
28646
+ {
28647
+ "id": "AML.T0016",
28648
+ "name": "Obtain Capabilities: Develop Capabilities",
28649
+ "tactic": "Resource Development"
28650
+ },
28651
+ {
28652
+ "id": "AML.T0017",
28653
+ "name": "Discover ML Model Ontology",
28654
+ "tactic": "Discovery"
28655
+ },
28656
+ {
28657
+ "id": "AML.T0018",
28658
+ "name": "Backdoor ML Model",
28659
+ "tactic": "Persistence"
28660
+ },
28661
+ {
28662
+ "id": "AML.T0020",
28663
+ "name": "Poison Training Data",
28664
+ "tactic": "ML Attack Staging"
28665
+ },
28666
+ {
28667
+ "id": "AML.T0043",
28668
+ "name": "Craft Adversarial Data",
28669
+ "tactic": "ML Attack Staging"
28670
+ },
28671
+ {
28672
+ "id": "AML.T0051",
28673
+ "name": "LLM Prompt Injection",
28674
+ "tactic": "Execution"
28675
+ },
28676
+ {
28677
+ "id": "AML.T0054",
28678
+ "name": "LLM Jailbreak",
28679
+ "tactic": "Defense Evasion"
28680
+ },
28681
+ {
28682
+ "id": "AML.T0096",
28683
+ "name": "AI API as Covert C2 Channel",
28684
+ "tactic": "Command and Control"
28685
+ }
28686
+ ],
28687
+ "d3fend": [
28688
+ {
28689
+ "id": "D3-ASLR",
28690
+ "name": "Address Space Layout Randomization",
28691
+ "tactic": "Harden"
28692
+ },
28693
+ {
28694
+ "id": "D3-CA",
28695
+ "name": "Certificate Analysis",
28696
+ "tactic": "Detect"
28697
+ },
28698
+ {
28699
+ "id": "D3-CSPP",
28700
+ "name": "Client-server Payload Profiling",
28701
+ "tactic": "Detect"
28702
+ },
28703
+ {
28704
+ "id": "D3-DA",
28705
+ "name": "Domain Analysis",
28706
+ "tactic": "Detect"
28707
+ },
28708
+ {
28709
+ "id": "D3-EAL",
28710
+ "name": "Executable Allowlisting",
28711
+ "tactic": "Harden"
28712
+ },
28713
+ {
28714
+ "id": "D3-IOPR",
28715
+ "name": "Input/Output Profiling Resource",
28716
+ "tactic": "Detect"
28717
+ },
28718
+ {
28719
+ "id": "D3-NI",
28720
+ "name": "Network Isolation",
28721
+ "tactic": "Isolate"
28722
+ },
28723
+ {
28724
+ "id": "D3-NTA",
28725
+ "name": "Network Traffic Analysis",
28726
+ "tactic": "Detect"
28727
+ },
28728
+ {
28729
+ "id": "D3-NTPM",
28730
+ "name": "Network Traffic Policy Mapping",
28731
+ "tactic": "Model"
28732
+ },
28733
+ {
28734
+ "id": "D3-PHRA",
28735
+ "name": "Process Hardware Resource Access",
28736
+ "tactic": "Isolate"
28737
+ },
28738
+ {
28739
+ "id": "D3-PSEP",
28740
+ "name": "Process Segment Execution Prevention",
28741
+ "tactic": "Harden"
28742
+ }
28743
+ ],
28744
+ "framework_gaps": [
28745
+ {
28746
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
28747
+ "framework": "ALL",
28748
+ "control_name": "AI Pipeline Integrity"
28749
+ },
28750
+ {
28751
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
28752
+ "framework": "ALL",
28753
+ "control_name": "Prompt Injection as Access Control Failure"
28754
+ },
28755
+ {
28756
+ "id": "CIS-Controls-v8-Control7",
28757
+ "framework": "CIS Controls v8",
28758
+ "control_name": "Continuous Vulnerability Management"
28759
+ },
28760
+ {
28761
+ "id": "CMMC-2.0-Level-2",
28762
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
28763
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
28764
+ },
28765
+ {
28766
+ "id": "FedRAMP-Rev5-Moderate",
28767
+ "framework": "FedRAMP Rev 5 Moderate",
28768
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
28769
+ },
28770
+ {
28771
+ "id": "HIPAA-Security-Rule-164.312(a)(1)",
28772
+ "framework": "HIPAA Security Rule (45 CFR § 164.312)",
28773
+ "control_name": "Access control standard (technical safeguards)"
28774
+ },
28775
+ {
28776
+ "id": "IEC-62443-3-3",
28777
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
28778
+ "control_name": "System security requirements and security levels"
28779
+ },
28780
+ {
28781
+ "id": "ISO-27001-2022-A.8.16",
28782
+ "framework": "ISO/IEC 27001:2022",
28783
+ "control_name": "Monitoring activities"
28784
+ },
28785
+ {
28786
+ "id": "ISO-27001-2022-A.8.28",
28787
+ "framework": "ISO/IEC 27001:2022",
28788
+ "control_name": "Secure coding"
28789
+ },
28790
+ {
28791
+ "id": "ISO-27001-2022-A.8.8",
28792
+ "framework": "ISO/IEC 27001:2022",
28793
+ "control_name": "Management of technical vulnerabilities"
28794
+ },
28795
+ {
28796
+ "id": "ISO-IEC-23894-2023-clause-7",
28797
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
28798
+ "control_name": "AI risk management process"
28799
+ },
28800
+ {
28801
+ "id": "ISO-IEC-42001-2023-clause-6.1.2",
28802
+ "framework": "ISO/IEC 42001:2023 (AI Management System)",
28803
+ "control_name": "AI risk assessment"
28804
+ },
28805
+ {
28806
+ "id": "NERC-CIP-007-6-R4",
28807
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
28808
+ "control_name": "Security event monitoring"
28809
+ },
28810
+ {
28811
+ "id": "NIS2-Art21-patch-management",
28812
+ "framework": "EU NIS2 Directive",
28813
+ "control_name": "Vulnerability handling and disclosure"
28814
+ },
28815
+ {
28816
+ "id": "NIST-800-115",
28817
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
28818
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
28819
+ },
28820
+ {
28821
+ "id": "NIST-800-218-SSDF",
28822
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
28823
+ "control_name": "Secure Software Development Framework"
28824
+ },
28825
+ {
28826
+ "id": "NIST-800-53-AC-2",
28827
+ "framework": "NIST SP 800-53 Rev 5",
28828
+ "control_name": "Account Management"
28829
+ },
28830
+ {
28831
+ "id": "NIST-800-53-SC-28",
28832
+ "framework": "NIST SP 800-53 Rev 5",
28833
+ "control_name": "Protection of Information at Rest"
28834
+ },
28835
+ {
28836
+ "id": "NIST-800-53-SC-7",
28837
+ "framework": "NIST SP 800-53 Rev 5",
28838
+ "control_name": "Boundary Protection"
28839
+ },
28840
+ {
28841
+ "id": "NIST-800-53-SC-8",
28842
+ "framework": "NIST SP 800-53 Rev 5",
28843
+ "control_name": "Transmission Confidentiality and Integrity"
28844
+ },
28845
+ {
28846
+ "id": "NIST-800-53-SI-2",
28847
+ "framework": "NIST SP 800-53 Rev 5",
28848
+ "control_name": "Flaw Remediation"
28849
+ },
28850
+ {
28851
+ "id": "NIST-800-53-SI-3",
28852
+ "framework": "NIST SP 800-53 Rev 5",
28853
+ "control_name": "Malicious Code Protection"
28854
+ },
28855
+ {
28856
+ "id": "NIST-800-82r3",
28857
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
28858
+ "control_name": "Guide to Operational Technology (OT) Security"
28859
+ },
28860
+ {
28861
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
28862
+ "framework": "OWASP Top 10 for LLM Applications 2025",
28863
+ "control_name": "Prompt Injection"
28864
+ },
28865
+ {
28866
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
28867
+ "framework": "OWASP Top 10 for LLM Applications 2025",
28868
+ "control_name": "Sensitive Information Disclosure"
28869
+ },
28870
+ {
28871
+ "id": "OWASP-Pen-Testing-Guide-v5",
28872
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
28873
+ "control_name": "Web application penetration testing methodology"
28874
+ },
28875
+ {
28876
+ "id": "PCI-DSS-4.0-6.3.3",
28877
+ "framework": "PCI DSS 4.0",
28878
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
28879
+ },
28880
+ {
28881
+ "id": "PTES-Pre-engagement",
28882
+ "framework": "Penetration Testing Execution Standard (PTES)",
28883
+ "control_name": "Pre-engagement Interactions"
28884
+ },
28885
+ {
28886
+ "id": "SOC2-CC6-logical-access",
28887
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
28888
+ "control_name": "Logical and Physical Access Controls"
28889
+ },
28890
+ {
28891
+ "id": "SOC2-CC7-anomaly-detection",
28892
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
28893
+ "control_name": "System Operations — Threat and Vulnerability Management"
28894
+ },
28895
+ {
28896
+ "id": "SOC2-CC9-vendor-management",
28897
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
28898
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
28899
+ }
28900
+ ],
28901
+ "attack_refs": [
28902
+ "T0855",
28903
+ "T0883",
28904
+ "T1041",
28905
+ "T1059",
28906
+ "T1068",
28907
+ "T1071",
28908
+ "T1078",
28909
+ "T1102",
28910
+ "T1133",
28911
+ "T1190",
28912
+ "T1213",
28913
+ "T1530",
28914
+ "T1548.001",
28915
+ "T1566",
28916
+ "T1567",
28917
+ "T1568"
28918
+ ],
28919
+ "rfc_refs": [
28920
+ "RFC-4301",
28921
+ "RFC-4303",
28922
+ "RFC-7296",
28923
+ "RFC-8446",
28924
+ "RFC-9000",
28925
+ "RFC-9114",
28926
+ "RFC-9180",
28927
+ "RFC-9421",
28928
+ "RFC-9458"
28929
+ ]
28930
+ }
28931
+ },
28932
+ "CVE-2024-11392": {
28933
+ "name": "Hugging Face Transformers MobileViTV2 Deserialization Remote Code Execution",
28934
+ "rwep": 33,
28935
+ "cvss": 8.8,
28936
+ "cisa_kev": false,
28937
+ "epss_score": null,
28938
+ "referencing_skills": [
28939
+ "kernel-lpe-triage",
28940
+ "ai-attack-surface",
28941
+ "compliance-theater",
28942
+ "attack-surface-pentest",
28943
+ "ot-ics-security",
28944
+ "coordinated-vuln-disclosure",
28945
+ "sector-energy"
28946
+ ],
28947
+ "chain": {
28948
+ "cwes": [
28949
+ {
28950
+ "id": "CWE-1037",
28951
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
28952
+ "category": "Hardware / Side Channel"
28953
+ },
28954
+ {
28955
+ "id": "CWE-1039",
28956
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
28957
+ "category": "AI/ML"
28958
+ },
28959
+ {
28960
+ "id": "CWE-125",
28961
+ "name": "Out-of-bounds Read",
28962
+ "category": "Memory Safety"
28963
+ },
28964
+ {
28965
+ "id": "CWE-1357",
28966
+ "name": "Reliance on Insufficiently Trustworthy Component",
28967
+ "category": "Supply Chain"
28968
+ },
28969
+ {
28970
+ "id": "CWE-1395",
28971
+ "name": "Dependency on Vulnerable Third-Party Component",
28972
+ "category": "Supply Chain"
28973
+ },
28974
+ {
28975
+ "id": "CWE-1426",
28976
+ "name": "Improper Validation of Generative AI Output",
28977
+ "category": "AI/ML"
28978
+ },
28979
+ {
28980
+ "id": "CWE-22",
28981
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
28982
+ "category": "Path/Resource"
28983
+ },
28984
+ {
28985
+ "id": "CWE-269",
28986
+ "name": "Improper Privilege Management",
28987
+ "category": "Authorization"
28988
+ },
28989
+ {
28990
+ "id": "CWE-287",
28991
+ "name": "Improper Authentication",
28992
+ "category": "Authentication"
28993
+ },
28994
+ {
28995
+ "id": "CWE-306",
28996
+ "name": "Missing Authentication for Critical Function",
28997
+ "category": "Authentication"
28998
+ },
28999
+ {
29000
+ "id": "CWE-352",
29001
+ "name": "Cross-Site Request Forgery (CSRF)",
29002
+ "category": "Session"
29003
+ },
29004
+ {
29005
+ "id": "CWE-362",
29006
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
29007
+ "category": "Concurrency"
29008
+ },
29009
+ {
29010
+ "id": "CWE-416",
29011
+ "name": "Use After Free",
29012
+ "category": "Memory Safety"
29013
+ },
29014
+ {
29015
+ "id": "CWE-434",
29016
+ "name": "Unrestricted Upload of File with Dangerous Type",
29017
+ "category": "File Handling"
29018
+ },
29019
+ {
29020
+ "id": "CWE-672",
29021
+ "name": "Operation on a Resource after Expiration or Release",
29022
+ "category": "Memory Safety"
29023
+ },
29024
+ {
29025
+ "id": "CWE-732",
29026
+ "name": "Incorrect Permission Assignment for Critical Resource",
29027
+ "category": "Authorization"
29028
+ },
29029
+ {
29030
+ "id": "CWE-78",
29031
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
29032
+ "category": "Injection"
29033
+ },
29034
+ {
29035
+ "id": "CWE-787",
29036
+ "name": "Out-of-bounds Write",
29037
+ "category": "Memory Safety"
29038
+ },
29039
+ {
29040
+ "id": "CWE-79",
29041
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
29042
+ "category": "Injection"
29043
+ },
29044
+ {
29045
+ "id": "CWE-798",
29046
+ "name": "Use of Hard-coded Credentials",
29047
+ "category": "Credentials"
29048
+ },
29049
+ {
29050
+ "id": "CWE-89",
29051
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
29052
+ "category": "Injection"
29053
+ },
29054
+ {
29055
+ "id": "CWE-918",
29056
+ "name": "Server-Side Request Forgery (SSRF)",
29057
+ "category": "Network"
29058
+ },
29059
+ {
29060
+ "id": "CWE-94",
29061
+ "name": "Improper Control of Generation of Code (Code Injection)",
29062
+ "category": "Injection"
29063
+ }
29064
+ ],
29065
+ "atlas": [
29066
+ {
29067
+ "id": "AML.T0010",
29068
+ "name": "ML Supply Chain Compromise",
29069
+ "tactic": "Initial Access"
29070
+ },
29071
+ {
29072
+ "id": "AML.T0016",
29073
+ "name": "Obtain Capabilities: Develop Capabilities",
29074
+ "tactic": "Resource Development"
29075
+ },
29076
+ {
29077
+ "id": "AML.T0017",
29078
+ "name": "Discover ML Model Ontology",
29079
+ "tactic": "Discovery"
29080
+ },
29081
+ {
29082
+ "id": "AML.T0018",
29083
+ "name": "Backdoor ML Model",
29084
+ "tactic": "Persistence"
29085
+ },
29086
+ {
29087
+ "id": "AML.T0020",
29088
+ "name": "Poison Training Data",
29089
+ "tactic": "ML Attack Staging"
29090
+ },
29091
+ {
29092
+ "id": "AML.T0043",
29093
+ "name": "Craft Adversarial Data",
29094
+ "tactic": "ML Attack Staging"
29095
+ },
29096
+ {
29097
+ "id": "AML.T0051",
29098
+ "name": "LLM Prompt Injection",
29099
+ "tactic": "Execution"
29100
+ },
29101
+ {
29102
+ "id": "AML.T0054",
29103
+ "name": "LLM Jailbreak",
29104
+ "tactic": "Defense Evasion"
29105
+ },
29106
+ {
29107
+ "id": "AML.T0096",
29108
+ "name": "AI API as Covert C2 Channel",
29109
+ "tactic": "Command and Control"
29110
+ }
29111
+ ],
29112
+ "d3fend": [
29113
+ {
29114
+ "id": "D3-ASLR",
29115
+ "name": "Address Space Layout Randomization",
29116
+ "tactic": "Harden"
29117
+ },
29118
+ {
29119
+ "id": "D3-CSPP",
29120
+ "name": "Client-server Payload Profiling",
29121
+ "tactic": "Detect"
29122
+ },
29123
+ {
29124
+ "id": "D3-EAL",
29125
+ "name": "Executable Allowlisting",
29126
+ "tactic": "Harden"
29127
+ },
29128
+ {
29129
+ "id": "D3-IOPR",
29130
+ "name": "Input/Output Profiling Resource",
29131
+ "tactic": "Detect"
29132
+ },
29133
+ {
29134
+ "id": "D3-NTA",
29135
+ "name": "Network Traffic Analysis",
29136
+ "tactic": "Detect"
29137
+ },
29138
+ {
29139
+ "id": "D3-PHRA",
29140
+ "name": "Process Hardware Resource Access",
29141
+ "tactic": "Isolate"
29142
+ },
29143
+ {
29144
+ "id": "D3-PSEP",
29145
+ "name": "Process Segment Execution Prevention",
29146
+ "tactic": "Harden"
29147
+ }
29148
+ ],
29149
+ "framework_gaps": [
29150
+ {
29151
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
29152
+ "framework": "ALL",
29153
+ "control_name": "AI Pipeline Integrity"
29154
+ },
29155
+ {
29156
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
29157
+ "framework": "ALL",
29158
+ "control_name": "Prompt Injection as Access Control Failure"
29159
+ },
29160
+ {
29161
+ "id": "CIS-Controls-v8-Control7",
29162
+ "framework": "CIS Controls v8",
29163
+ "control_name": "Continuous Vulnerability Management"
29164
+ },
29165
+ {
29166
+ "id": "CMMC-2.0-Level-2",
29167
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
29168
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
29169
+ },
29170
+ {
29171
+ "id": "FedRAMP-Rev5-Moderate",
29172
+ "framework": "FedRAMP Rev 5 Moderate",
29173
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
29174
+ },
29175
+ {
29176
+ "id": "IEC-62443-3-3",
29177
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
29178
+ "control_name": "System security requirements and security levels"
29179
+ },
29180
+ {
29181
+ "id": "ISO-27001-2022-A.8.28",
29182
+ "framework": "ISO/IEC 27001:2022",
29183
+ "control_name": "Secure coding"
29184
+ },
29185
+ {
29186
+ "id": "ISO-27001-2022-A.8.8",
29187
+ "framework": "ISO/IEC 27001:2022",
29188
+ "control_name": "Management of technical vulnerabilities"
29189
+ },
29190
+ {
29191
+ "id": "ISO-IEC-23894-2023-clause-7",
29192
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
29193
+ "control_name": "AI risk management process"
29194
+ },
29195
+ {
29196
+ "id": "NERC-CIP-007-6-R4",
29197
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
29198
+ "control_name": "Security event monitoring"
29199
+ },
29200
+ {
29201
+ "id": "NIS2-Art21-patch-management",
29202
+ "framework": "EU NIS2 Directive",
29203
+ "control_name": "Vulnerability handling and disclosure"
29204
+ },
29205
+ {
29206
+ "id": "NIST-800-115",
29207
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
29208
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
29209
+ },
29210
+ {
29211
+ "id": "NIST-800-218-SSDF",
29212
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
29213
+ "control_name": "Secure Software Development Framework"
29214
+ },
29215
+ {
29216
+ "id": "NIST-800-53-AC-2",
29217
+ "framework": "NIST SP 800-53 Rev 5",
29218
+ "control_name": "Account Management"
29219
+ },
29220
+ {
29221
+ "id": "NIST-800-53-SC-8",
29222
+ "framework": "NIST SP 800-53 Rev 5",
29223
+ "control_name": "Transmission Confidentiality and Integrity"
29224
+ },
29225
+ {
29226
+ "id": "NIST-800-53-SI-2",
29227
+ "framework": "NIST SP 800-53 Rev 5",
29228
+ "control_name": "Flaw Remediation"
29229
+ },
29230
+ {
29231
+ "id": "NIST-800-53-SI-3",
29232
+ "framework": "NIST SP 800-53 Rev 5",
29233
+ "control_name": "Malicious Code Protection"
29234
+ },
29235
+ {
29236
+ "id": "NIST-800-82r3",
29237
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
29238
+ "control_name": "Guide to Operational Technology (OT) Security"
29239
+ },
29240
+ {
29241
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
29242
+ "framework": "OWASP Top 10 for LLM Applications 2025",
29243
+ "control_name": "Prompt Injection"
29244
+ },
29245
+ {
29246
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
29247
+ "framework": "OWASP Top 10 for LLM Applications 2025",
29248
+ "control_name": "Sensitive Information Disclosure"
29249
+ },
29250
+ {
29251
+ "id": "OWASP-Pen-Testing-Guide-v5",
29252
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
29253
+ "control_name": "Web application penetration testing methodology"
29254
+ },
29255
+ {
29256
+ "id": "PCI-DSS-4.0-6.3.3",
29257
+ "framework": "PCI DSS 4.0",
29258
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
29259
+ },
29260
+ {
29261
+ "id": "PTES-Pre-engagement",
29262
+ "framework": "Penetration Testing Execution Standard (PTES)",
29263
+ "control_name": "Pre-engagement Interactions"
29264
+ },
29265
+ {
29266
+ "id": "SOC2-CC6-logical-access",
29267
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
29268
+ "control_name": "Logical and Physical Access Controls"
29269
+ },
29270
+ {
29271
+ "id": "SOC2-CC9-vendor-management",
29272
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
29273
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
29274
+ }
29275
+ ],
29276
+ "attack_refs": [
29277
+ "T0855",
29278
+ "T0883",
29279
+ "T1059",
29280
+ "T1068",
29281
+ "T1078",
29282
+ "T1133",
29283
+ "T1190",
29284
+ "T1548.001",
29285
+ "T1566"
29286
+ ],
29287
+ "rfc_refs": [
29288
+ "RFC-4301",
29289
+ "RFC-4303",
29290
+ "RFC-7296"
29291
+ ]
29292
+ }
29293
+ },
29294
+ "CVE-2024-11393": {
29295
+ "name": "Hugging Face Transformers MaskFormer Deserialization Remote Code Execution",
29296
+ "rwep": 33,
29297
+ "cvss": 8.8,
29298
+ "cisa_kev": false,
29299
+ "epss_score": null,
29300
+ "referencing_skills": [
29301
+ "kernel-lpe-triage",
29302
+ "ai-attack-surface",
29303
+ "compliance-theater",
29304
+ "attack-surface-pentest",
29305
+ "ot-ics-security",
29306
+ "coordinated-vuln-disclosure",
29307
+ "sector-energy"
29308
+ ],
29309
+ "chain": {
29310
+ "cwes": [
29311
+ {
29312
+ "id": "CWE-1037",
29313
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
29314
+ "category": "Hardware / Side Channel"
29315
+ },
29316
+ {
29317
+ "id": "CWE-1039",
29318
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
29319
+ "category": "AI/ML"
29320
+ },
29321
+ {
29322
+ "id": "CWE-125",
29323
+ "name": "Out-of-bounds Read",
29324
+ "category": "Memory Safety"
29325
+ },
29326
+ {
29327
+ "id": "CWE-1357",
29328
+ "name": "Reliance on Insufficiently Trustworthy Component",
29329
+ "category": "Supply Chain"
29330
+ },
29331
+ {
29332
+ "id": "CWE-1395",
29333
+ "name": "Dependency on Vulnerable Third-Party Component",
29334
+ "category": "Supply Chain"
29335
+ },
29336
+ {
29337
+ "id": "CWE-1426",
29338
+ "name": "Improper Validation of Generative AI Output",
29339
+ "category": "AI/ML"
29340
+ },
29341
+ {
29342
+ "id": "CWE-22",
29343
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
29344
+ "category": "Path/Resource"
29345
+ },
29346
+ {
29347
+ "id": "CWE-269",
29348
+ "name": "Improper Privilege Management",
29349
+ "category": "Authorization"
29350
+ },
29351
+ {
29352
+ "id": "CWE-287",
29353
+ "name": "Improper Authentication",
29354
+ "category": "Authentication"
29355
+ },
29356
+ {
29357
+ "id": "CWE-306",
29358
+ "name": "Missing Authentication for Critical Function",
29359
+ "category": "Authentication"
29360
+ },
29361
+ {
29362
+ "id": "CWE-352",
29363
+ "name": "Cross-Site Request Forgery (CSRF)",
29364
+ "category": "Session"
29365
+ },
29366
+ {
29367
+ "id": "CWE-362",
29368
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
29369
+ "category": "Concurrency"
29370
+ },
29371
+ {
29372
+ "id": "CWE-416",
29373
+ "name": "Use After Free",
29374
+ "category": "Memory Safety"
29375
+ },
29376
+ {
29377
+ "id": "CWE-434",
29378
+ "name": "Unrestricted Upload of File with Dangerous Type",
29379
+ "category": "File Handling"
29380
+ },
29381
+ {
29382
+ "id": "CWE-672",
29383
+ "name": "Operation on a Resource after Expiration or Release",
29384
+ "category": "Memory Safety"
29385
+ },
29386
+ {
29387
+ "id": "CWE-732",
29388
+ "name": "Incorrect Permission Assignment for Critical Resource",
29389
+ "category": "Authorization"
29390
+ },
29391
+ {
29392
+ "id": "CWE-78",
29393
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
29394
+ "category": "Injection"
29395
+ },
29396
+ {
29397
+ "id": "CWE-787",
29398
+ "name": "Out-of-bounds Write",
29399
+ "category": "Memory Safety"
29400
+ },
29401
+ {
29402
+ "id": "CWE-79",
29403
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
29404
+ "category": "Injection"
29405
+ },
29406
+ {
29407
+ "id": "CWE-798",
29408
+ "name": "Use of Hard-coded Credentials",
29409
+ "category": "Credentials"
29410
+ },
29411
+ {
29412
+ "id": "CWE-89",
29413
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
29414
+ "category": "Injection"
29415
+ },
29416
+ {
29417
+ "id": "CWE-918",
29418
+ "name": "Server-Side Request Forgery (SSRF)",
29419
+ "category": "Network"
29420
+ },
29421
+ {
29422
+ "id": "CWE-94",
29423
+ "name": "Improper Control of Generation of Code (Code Injection)",
29424
+ "category": "Injection"
29425
+ }
29426
+ ],
29427
+ "atlas": [
29428
+ {
29429
+ "id": "AML.T0010",
29430
+ "name": "ML Supply Chain Compromise",
29431
+ "tactic": "Initial Access"
29432
+ },
29433
+ {
29434
+ "id": "AML.T0016",
29435
+ "name": "Obtain Capabilities: Develop Capabilities",
29436
+ "tactic": "Resource Development"
29437
+ },
29438
+ {
29439
+ "id": "AML.T0017",
29440
+ "name": "Discover ML Model Ontology",
29441
+ "tactic": "Discovery"
29442
+ },
29443
+ {
29444
+ "id": "AML.T0018",
29445
+ "name": "Backdoor ML Model",
29446
+ "tactic": "Persistence"
29447
+ },
29448
+ {
29449
+ "id": "AML.T0020",
29450
+ "name": "Poison Training Data",
29451
+ "tactic": "ML Attack Staging"
29452
+ },
29453
+ {
29454
+ "id": "AML.T0043",
29455
+ "name": "Craft Adversarial Data",
29456
+ "tactic": "ML Attack Staging"
29457
+ },
29458
+ {
29459
+ "id": "AML.T0051",
29460
+ "name": "LLM Prompt Injection",
29461
+ "tactic": "Execution"
29462
+ },
29463
+ {
29464
+ "id": "AML.T0054",
29465
+ "name": "LLM Jailbreak",
29466
+ "tactic": "Defense Evasion"
29467
+ },
29468
+ {
29469
+ "id": "AML.T0096",
29470
+ "name": "AI API as Covert C2 Channel",
29471
+ "tactic": "Command and Control"
29472
+ }
29473
+ ],
29474
+ "d3fend": [
29475
+ {
29476
+ "id": "D3-ASLR",
29477
+ "name": "Address Space Layout Randomization",
29478
+ "tactic": "Harden"
29479
+ },
29480
+ {
29481
+ "id": "D3-CSPP",
29482
+ "name": "Client-server Payload Profiling",
29483
+ "tactic": "Detect"
29484
+ },
29485
+ {
29486
+ "id": "D3-EAL",
29487
+ "name": "Executable Allowlisting",
29488
+ "tactic": "Harden"
29489
+ },
29490
+ {
29491
+ "id": "D3-IOPR",
29492
+ "name": "Input/Output Profiling Resource",
29493
+ "tactic": "Detect"
29494
+ },
29495
+ {
29496
+ "id": "D3-NTA",
29497
+ "name": "Network Traffic Analysis",
29498
+ "tactic": "Detect"
29499
+ },
29500
+ {
29501
+ "id": "D3-PHRA",
29502
+ "name": "Process Hardware Resource Access",
29503
+ "tactic": "Isolate"
29504
+ },
29505
+ {
29506
+ "id": "D3-PSEP",
29507
+ "name": "Process Segment Execution Prevention",
29508
+ "tactic": "Harden"
29509
+ }
29510
+ ],
29511
+ "framework_gaps": [
29512
+ {
29513
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
29514
+ "framework": "ALL",
29515
+ "control_name": "AI Pipeline Integrity"
29516
+ },
29517
+ {
29518
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
29519
+ "framework": "ALL",
29520
+ "control_name": "Prompt Injection as Access Control Failure"
29521
+ },
29522
+ {
29523
+ "id": "CIS-Controls-v8-Control7",
29524
+ "framework": "CIS Controls v8",
29525
+ "control_name": "Continuous Vulnerability Management"
29526
+ },
29527
+ {
29528
+ "id": "CMMC-2.0-Level-2",
29529
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
29530
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
29531
+ },
29532
+ {
29533
+ "id": "FedRAMP-Rev5-Moderate",
29534
+ "framework": "FedRAMP Rev 5 Moderate",
29535
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
29536
+ },
29537
+ {
29538
+ "id": "IEC-62443-3-3",
29539
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
29540
+ "control_name": "System security requirements and security levels"
29541
+ },
29542
+ {
29543
+ "id": "ISO-27001-2022-A.8.28",
29544
+ "framework": "ISO/IEC 27001:2022",
29545
+ "control_name": "Secure coding"
29546
+ },
29547
+ {
29548
+ "id": "ISO-27001-2022-A.8.8",
29549
+ "framework": "ISO/IEC 27001:2022",
29550
+ "control_name": "Management of technical vulnerabilities"
29551
+ },
29552
+ {
29553
+ "id": "ISO-IEC-23894-2023-clause-7",
29554
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
29555
+ "control_name": "AI risk management process"
29556
+ },
29557
+ {
29558
+ "id": "NERC-CIP-007-6-R4",
29559
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
29560
+ "control_name": "Security event monitoring"
29561
+ },
29562
+ {
29563
+ "id": "NIS2-Art21-patch-management",
29564
+ "framework": "EU NIS2 Directive",
29565
+ "control_name": "Vulnerability handling and disclosure"
29566
+ },
29567
+ {
29568
+ "id": "NIST-800-115",
29569
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
29570
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
29571
+ },
29572
+ {
29573
+ "id": "NIST-800-218-SSDF",
29574
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
29575
+ "control_name": "Secure Software Development Framework"
29576
+ },
29577
+ {
29578
+ "id": "NIST-800-53-AC-2",
29579
+ "framework": "NIST SP 800-53 Rev 5",
29580
+ "control_name": "Account Management"
29581
+ },
29582
+ {
29583
+ "id": "NIST-800-53-SC-8",
29584
+ "framework": "NIST SP 800-53 Rev 5",
29585
+ "control_name": "Transmission Confidentiality and Integrity"
29586
+ },
29587
+ {
29588
+ "id": "NIST-800-53-SI-2",
29589
+ "framework": "NIST SP 800-53 Rev 5",
29590
+ "control_name": "Flaw Remediation"
29591
+ },
29592
+ {
29593
+ "id": "NIST-800-53-SI-3",
29594
+ "framework": "NIST SP 800-53 Rev 5",
29595
+ "control_name": "Malicious Code Protection"
29596
+ },
29597
+ {
29598
+ "id": "NIST-800-82r3",
29599
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
29600
+ "control_name": "Guide to Operational Technology (OT) Security"
29601
+ },
29602
+ {
29603
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
29604
+ "framework": "OWASP Top 10 for LLM Applications 2025",
29605
+ "control_name": "Prompt Injection"
29606
+ },
29607
+ {
29608
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
29609
+ "framework": "OWASP Top 10 for LLM Applications 2025",
29610
+ "control_name": "Sensitive Information Disclosure"
29611
+ },
29612
+ {
29613
+ "id": "OWASP-Pen-Testing-Guide-v5",
29614
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
29615
+ "control_name": "Web application penetration testing methodology"
29616
+ },
29617
+ {
29618
+ "id": "PCI-DSS-4.0-6.3.3",
29619
+ "framework": "PCI DSS 4.0",
29620
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
29621
+ },
29622
+ {
29623
+ "id": "PTES-Pre-engagement",
29624
+ "framework": "Penetration Testing Execution Standard (PTES)",
29625
+ "control_name": "Pre-engagement Interactions"
29626
+ },
29627
+ {
29628
+ "id": "SOC2-CC6-logical-access",
29629
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
29630
+ "control_name": "Logical and Physical Access Controls"
29631
+ },
29632
+ {
29633
+ "id": "SOC2-CC9-vendor-management",
29634
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
29635
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
29636
+ }
29637
+ ],
29638
+ "attack_refs": [
29639
+ "T0855",
29640
+ "T0883",
29641
+ "T1059",
29642
+ "T1068",
29643
+ "T1078",
29644
+ "T1133",
29645
+ "T1190",
29646
+ "T1548.001",
29647
+ "T1566"
29648
+ ],
29649
+ "rfc_refs": [
29650
+ "RFC-4301",
29651
+ "RFC-4303",
29652
+ "RFC-7296"
29653
+ ]
29654
+ }
29655
+ },
29656
+ "CVE-2024-11394": {
29657
+ "name": "Hugging Face Transformers Trax Deserialization Remote Code Execution",
29658
+ "rwep": 33,
29659
+ "cvss": 8.8,
29660
+ "cisa_kev": false,
29661
+ "epss_score": null,
29662
+ "referencing_skills": [
29663
+ "kernel-lpe-triage",
29664
+ "ai-attack-surface",
29665
+ "compliance-theater",
29666
+ "attack-surface-pentest",
29667
+ "ot-ics-security",
29668
+ "coordinated-vuln-disclosure",
29669
+ "sector-energy"
29670
+ ],
29671
+ "chain": {
29672
+ "cwes": [
29673
+ {
29674
+ "id": "CWE-1037",
29675
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
29676
+ "category": "Hardware / Side Channel"
29677
+ },
29678
+ {
29679
+ "id": "CWE-1039",
29680
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
29681
+ "category": "AI/ML"
29682
+ },
29683
+ {
29684
+ "id": "CWE-125",
29685
+ "name": "Out-of-bounds Read",
29686
+ "category": "Memory Safety"
29687
+ },
29688
+ {
29689
+ "id": "CWE-1357",
29690
+ "name": "Reliance on Insufficiently Trustworthy Component",
29691
+ "category": "Supply Chain"
29692
+ },
29693
+ {
29694
+ "id": "CWE-1395",
29695
+ "name": "Dependency on Vulnerable Third-Party Component",
29696
+ "category": "Supply Chain"
29697
+ },
29698
+ {
29699
+ "id": "CWE-1426",
29700
+ "name": "Improper Validation of Generative AI Output",
29701
+ "category": "AI/ML"
29702
+ },
29703
+ {
29704
+ "id": "CWE-22",
29705
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
29706
+ "category": "Path/Resource"
29707
+ },
29708
+ {
29709
+ "id": "CWE-269",
29710
+ "name": "Improper Privilege Management",
29711
+ "category": "Authorization"
29712
+ },
29713
+ {
29714
+ "id": "CWE-287",
29715
+ "name": "Improper Authentication",
29716
+ "category": "Authentication"
29717
+ },
29718
+ {
29719
+ "id": "CWE-306",
29720
+ "name": "Missing Authentication for Critical Function",
29721
+ "category": "Authentication"
29722
+ },
29723
+ {
29724
+ "id": "CWE-352",
29725
+ "name": "Cross-Site Request Forgery (CSRF)",
29726
+ "category": "Session"
29727
+ },
29728
+ {
29729
+ "id": "CWE-362",
29730
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
29731
+ "category": "Concurrency"
29732
+ },
29733
+ {
29734
+ "id": "CWE-416",
29735
+ "name": "Use After Free",
29736
+ "category": "Memory Safety"
29737
+ },
29738
+ {
29739
+ "id": "CWE-434",
29740
+ "name": "Unrestricted Upload of File with Dangerous Type",
29741
+ "category": "File Handling"
29742
+ },
29743
+ {
29744
+ "id": "CWE-672",
29745
+ "name": "Operation on a Resource after Expiration or Release",
29746
+ "category": "Memory Safety"
29747
+ },
29748
+ {
29749
+ "id": "CWE-732",
29750
+ "name": "Incorrect Permission Assignment for Critical Resource",
29751
+ "category": "Authorization"
29752
+ },
29753
+ {
29754
+ "id": "CWE-78",
29755
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
29756
+ "category": "Injection"
29757
+ },
29758
+ {
29759
+ "id": "CWE-787",
29760
+ "name": "Out-of-bounds Write",
29761
+ "category": "Memory Safety"
29762
+ },
29763
+ {
29764
+ "id": "CWE-79",
29765
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
29766
+ "category": "Injection"
29767
+ },
29768
+ {
29769
+ "id": "CWE-798",
29770
+ "name": "Use of Hard-coded Credentials",
29771
+ "category": "Credentials"
29772
+ },
29773
+ {
29774
+ "id": "CWE-89",
29775
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
29776
+ "category": "Injection"
29777
+ },
29778
+ {
29779
+ "id": "CWE-918",
29780
+ "name": "Server-Side Request Forgery (SSRF)",
29781
+ "category": "Network"
29782
+ },
29783
+ {
29784
+ "id": "CWE-94",
29785
+ "name": "Improper Control of Generation of Code (Code Injection)",
29786
+ "category": "Injection"
29787
+ }
29788
+ ],
29789
+ "atlas": [
29790
+ {
29791
+ "id": "AML.T0010",
29792
+ "name": "ML Supply Chain Compromise",
29793
+ "tactic": "Initial Access"
29794
+ },
29795
+ {
29796
+ "id": "AML.T0016",
29797
+ "name": "Obtain Capabilities: Develop Capabilities",
29798
+ "tactic": "Resource Development"
29799
+ },
29800
+ {
29801
+ "id": "AML.T0017",
29802
+ "name": "Discover ML Model Ontology",
29803
+ "tactic": "Discovery"
29804
+ },
29805
+ {
29806
+ "id": "AML.T0018",
29807
+ "name": "Backdoor ML Model",
29808
+ "tactic": "Persistence"
29809
+ },
29810
+ {
29811
+ "id": "AML.T0020",
29812
+ "name": "Poison Training Data",
29813
+ "tactic": "ML Attack Staging"
29814
+ },
29815
+ {
29816
+ "id": "AML.T0043",
29817
+ "name": "Craft Adversarial Data",
29818
+ "tactic": "ML Attack Staging"
29819
+ },
29820
+ {
29821
+ "id": "AML.T0051",
29822
+ "name": "LLM Prompt Injection",
29823
+ "tactic": "Execution"
29824
+ },
29825
+ {
29826
+ "id": "AML.T0054",
29827
+ "name": "LLM Jailbreak",
29828
+ "tactic": "Defense Evasion"
29829
+ },
29830
+ {
29831
+ "id": "AML.T0096",
29832
+ "name": "AI API as Covert C2 Channel",
29833
+ "tactic": "Command and Control"
29834
+ }
29835
+ ],
29836
+ "d3fend": [
29837
+ {
29838
+ "id": "D3-ASLR",
29839
+ "name": "Address Space Layout Randomization",
29840
+ "tactic": "Harden"
29841
+ },
29842
+ {
29843
+ "id": "D3-CSPP",
29844
+ "name": "Client-server Payload Profiling",
29845
+ "tactic": "Detect"
29846
+ },
29847
+ {
29848
+ "id": "D3-EAL",
29849
+ "name": "Executable Allowlisting",
29850
+ "tactic": "Harden"
29851
+ },
29852
+ {
29853
+ "id": "D3-IOPR",
29854
+ "name": "Input/Output Profiling Resource",
29855
+ "tactic": "Detect"
29856
+ },
29857
+ {
29858
+ "id": "D3-NTA",
29859
+ "name": "Network Traffic Analysis",
29860
+ "tactic": "Detect"
29861
+ },
29862
+ {
29863
+ "id": "D3-PHRA",
29864
+ "name": "Process Hardware Resource Access",
29865
+ "tactic": "Isolate"
29866
+ },
29867
+ {
29868
+ "id": "D3-PSEP",
29869
+ "name": "Process Segment Execution Prevention",
29870
+ "tactic": "Harden"
29871
+ }
29872
+ ],
29873
+ "framework_gaps": [
29874
+ {
29875
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
29876
+ "framework": "ALL",
29877
+ "control_name": "AI Pipeline Integrity"
29878
+ },
29879
+ {
29880
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
29881
+ "framework": "ALL",
29882
+ "control_name": "Prompt Injection as Access Control Failure"
29883
+ },
29884
+ {
29885
+ "id": "CIS-Controls-v8-Control7",
29886
+ "framework": "CIS Controls v8",
29887
+ "control_name": "Continuous Vulnerability Management"
29888
+ },
29889
+ {
29890
+ "id": "CMMC-2.0-Level-2",
29891
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
29892
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
29893
+ },
29894
+ {
29895
+ "id": "FedRAMP-Rev5-Moderate",
29896
+ "framework": "FedRAMP Rev 5 Moderate",
29897
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
29898
+ },
29899
+ {
29900
+ "id": "IEC-62443-3-3",
29901
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
29902
+ "control_name": "System security requirements and security levels"
29903
+ },
29904
+ {
29905
+ "id": "ISO-27001-2022-A.8.28",
29906
+ "framework": "ISO/IEC 27001:2022",
29907
+ "control_name": "Secure coding"
29908
+ },
29909
+ {
29910
+ "id": "ISO-27001-2022-A.8.8",
29911
+ "framework": "ISO/IEC 27001:2022",
29912
+ "control_name": "Management of technical vulnerabilities"
29913
+ },
29914
+ {
29915
+ "id": "ISO-IEC-23894-2023-clause-7",
29916
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
29917
+ "control_name": "AI risk management process"
29918
+ },
29919
+ {
29920
+ "id": "NERC-CIP-007-6-R4",
29921
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
29922
+ "control_name": "Security event monitoring"
29923
+ },
29924
+ {
29925
+ "id": "NIS2-Art21-patch-management",
29926
+ "framework": "EU NIS2 Directive",
29927
+ "control_name": "Vulnerability handling and disclosure"
29928
+ },
29929
+ {
29930
+ "id": "NIST-800-115",
29931
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
29932
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
29933
+ },
29934
+ {
29935
+ "id": "NIST-800-218-SSDF",
29936
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
29937
+ "control_name": "Secure Software Development Framework"
29938
+ },
29939
+ {
29940
+ "id": "NIST-800-53-AC-2",
29941
+ "framework": "NIST SP 800-53 Rev 5",
29942
+ "control_name": "Account Management"
29943
+ },
29944
+ {
29945
+ "id": "NIST-800-53-SC-8",
29946
+ "framework": "NIST SP 800-53 Rev 5",
29947
+ "control_name": "Transmission Confidentiality and Integrity"
29948
+ },
29949
+ {
29950
+ "id": "NIST-800-53-SI-2",
29951
+ "framework": "NIST SP 800-53 Rev 5",
29952
+ "control_name": "Flaw Remediation"
29953
+ },
29954
+ {
29955
+ "id": "NIST-800-53-SI-3",
29956
+ "framework": "NIST SP 800-53 Rev 5",
29957
+ "control_name": "Malicious Code Protection"
29958
+ },
29959
+ {
29960
+ "id": "NIST-800-82r3",
29961
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
29962
+ "control_name": "Guide to Operational Technology (OT) Security"
29963
+ },
29964
+ {
29965
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
29966
+ "framework": "OWASP Top 10 for LLM Applications 2025",
29967
+ "control_name": "Prompt Injection"
29968
+ },
29969
+ {
29970
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
29971
+ "framework": "OWASP Top 10 for LLM Applications 2025",
29972
+ "control_name": "Sensitive Information Disclosure"
29973
+ },
29974
+ {
29975
+ "id": "OWASP-Pen-Testing-Guide-v5",
29976
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
29977
+ "control_name": "Web application penetration testing methodology"
29978
+ },
29979
+ {
29980
+ "id": "PCI-DSS-4.0-6.3.3",
29981
+ "framework": "PCI DSS 4.0",
29982
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
29983
+ },
29984
+ {
29985
+ "id": "PTES-Pre-engagement",
29986
+ "framework": "Penetration Testing Execution Standard (PTES)",
29987
+ "control_name": "Pre-engagement Interactions"
29988
+ },
29989
+ {
29990
+ "id": "SOC2-CC6-logical-access",
29991
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
29992
+ "control_name": "Logical and Physical Access Controls"
29993
+ },
29994
+ {
29995
+ "id": "SOC2-CC9-vendor-management",
29996
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
29997
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
29998
+ }
29999
+ ],
30000
+ "attack_refs": [
30001
+ "T0855",
30002
+ "T0883",
30003
+ "T1059",
30004
+ "T1068",
30005
+ "T1078",
30006
+ "T1133",
30007
+ "T1190",
30008
+ "T1548.001",
30009
+ "T1566"
30010
+ ],
30011
+ "rfc_refs": [
30012
+ "RFC-4301",
30013
+ "RFC-4303",
30014
+ "RFC-7296"
30015
+ ]
30016
+ }
30017
+ },
28068
30018
  "CVE-2026-41091": {
28069
30019
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
28070
30020
  "rwep": 45,
@@ -54444,7 +56394,12 @@
54444
56394
  "CVE-2023-43472",
54445
56395
  "CVE-2023-43654",
54446
56396
  "CVE-2023-48022",
56397
+ "CVE-2023-51449",
54447
56398
  "CVE-2024-0132",
56399
+ "CVE-2024-11392",
56400
+ "CVE-2024-11393",
56401
+ "CVE-2024-11394",
56402
+ "CVE-2024-1561",
54448
56403
  "CVE-2024-3094",
54449
56404
  "CVE-2024-3154",
54450
56405
  "CVE-2024-37032",
@@ -54824,7 +56779,12 @@
54824
56779
  "CVE-2023-43472",
54825
56780
  "CVE-2023-43654",
54826
56781
  "CVE-2023-48022",
56782
+ "CVE-2023-51449",
54827
56783
  "CVE-2024-0132",
56784
+ "CVE-2024-11392",
56785
+ "CVE-2024-11393",
56786
+ "CVE-2024-11394",
56787
+ "CVE-2024-1561",
54828
56788
  "CVE-2024-37032",
54829
56789
  "CVE-2024-39722",
54830
56790
  "CVE-2024-42478",
@@ -54995,7 +56955,12 @@
54995
56955
  "CVE-2023-43472",
54996
56956
  "CVE-2023-43654",
54997
56957
  "CVE-2023-48022",
56958
+ "CVE-2023-51449",
54998
56959
  "CVE-2024-0132",
56960
+ "CVE-2024-11392",
56961
+ "CVE-2024-11393",
56962
+ "CVE-2024-11394",
56963
+ "CVE-2024-1561",
54999
56964
  "CVE-2024-37032",
55000
56965
  "CVE-2024-39722",
55001
56966
  "CVE-2024-42478",
@@ -55180,7 +57145,12 @@
55180
57145
  "CVE-2023-43472",
55181
57146
  "CVE-2023-43654",
55182
57147
  "CVE-2023-48022",
57148
+ "CVE-2023-51449",
55183
57149
  "CVE-2024-0132",
57150
+ "CVE-2024-11392",
57151
+ "CVE-2024-11393",
57152
+ "CVE-2024-11394",
57153
+ "CVE-2024-1561",
55184
57154
  "CVE-2024-37032",
55185
57155
  "CVE-2024-39722",
55186
57156
  "CVE-2024-42478",
@@ -55469,7 +57439,12 @@
55469
57439
  "CVE-2023-43472",
55470
57440
  "CVE-2023-43654",
55471
57441
  "CVE-2023-48022",
57442
+ "CVE-2023-51449",
55472
57443
  "CVE-2024-0132",
57444
+ "CVE-2024-11392",
57445
+ "CVE-2024-11393",
57446
+ "CVE-2024-11394",
57447
+ "CVE-2024-1561",
55473
57448
  "CVE-2024-3094",
55474
57449
  "CVE-2024-3154",
55475
57450
  "CVE-2024-37032",
@@ -55713,11 +57688,16 @@
55713
57688
  "CVE-2023-43654",
55714
57689
  "CVE-2023-48022",
55715
57690
  "CVE-2023-50224",
57691
+ "CVE-2023-51449",
55716
57692
  "CVE-2023-52163",
55717
57693
  "CVE-2024-0132",
55718
57694
  "CVE-2024-0769",
55719
57695
  "CVE-2024-11182",
57696
+ "CVE-2024-11392",
57697
+ "CVE-2024-11393",
57698
+ "CVE-2024-11394",
55720
57699
  "CVE-2024-12987",
57700
+ "CVE-2024-1561",
55721
57701
  "CVE-2024-1708",
55722
57702
  "CVE-2024-21762",
55723
57703
  "CVE-2024-27199",
@@ -56177,7 +58157,9 @@
56177
58157
  "BUG-2026-NIGHTMARE-ECLIPSE-YELLOWKEY",
56178
58158
  "CVE-2023-43472",
56179
58159
  "CVE-2023-48022",
58160
+ "CVE-2023-51449",
56180
58161
  "CVE-2024-0132",
58162
+ "CVE-2024-1561",
56181
58163
  "CVE-2024-3094",
56182
58164
  "CVE-2024-3154",
56183
58165
  "CVE-2024-40635",
@@ -56541,7 +58523,12 @@
56541
58523
  "CVE-2023-43472",
56542
58524
  "CVE-2023-43654",
56543
58525
  "CVE-2023-48022",
58526
+ "CVE-2023-51449",
56544
58527
  "CVE-2024-0132",
58528
+ "CVE-2024-11392",
58529
+ "CVE-2024-11393",
58530
+ "CVE-2024-11394",
58531
+ "CVE-2024-1561",
56545
58532
  "CVE-2024-3094",
56546
58533
  "CVE-2024-3154",
56547
58534
  "CVE-2024-37032",
@@ -57151,7 +59138,12 @@
57151
59138
  "CVE-2023-43472",
57152
59139
  "CVE-2023-43654",
57153
59140
  "CVE-2023-48022",
59141
+ "CVE-2023-51449",
57154
59142
  "CVE-2024-0132",
59143
+ "CVE-2024-11392",
59144
+ "CVE-2024-11393",
59145
+ "CVE-2024-11394",
59146
+ "CVE-2024-1561",
57155
59147
  "CVE-2024-3094",
57156
59148
  "CVE-2024-3154",
57157
59149
  "CVE-2024-37032",
@@ -57399,7 +59391,12 @@
57399
59391
  "CVE-2022-1471",
57400
59392
  "CVE-2023-43654",
57401
59393
  "CVE-2023-48022",
59394
+ "CVE-2023-51449",
57402
59395
  "CVE-2024-0132",
59396
+ "CVE-2024-11392",
59397
+ "CVE-2024-11393",
59398
+ "CVE-2024-11394",
59399
+ "CVE-2024-1561",
57403
59400
  "CVE-2024-3094",
57404
59401
  "CVE-2024-37032",
57405
59402
  "CVE-2024-39722",
@@ -58073,7 +60070,12 @@
58073
60070
  "CVE-2023-43472",
58074
60071
  "CVE-2023-43654",
58075
60072
  "CVE-2023-48022",
60073
+ "CVE-2023-51449",
58076
60074
  "CVE-2024-0132",
60075
+ "CVE-2024-11392",
60076
+ "CVE-2024-11393",
60077
+ "CVE-2024-11394",
60078
+ "CVE-2024-1561",
58077
60079
  "CVE-2024-3094",
58078
60080
  "CVE-2024-3154",
58079
60081
  "CVE-2024-37032",
@@ -58324,11 +60326,16 @@
58324
60326
  "CVE-2023-43654",
58325
60327
  "CVE-2023-48022",
58326
60328
  "CVE-2023-50224",
60329
+ "CVE-2023-51449",
58327
60330
  "CVE-2023-52163",
58328
60331
  "CVE-2024-0132",
58329
60332
  "CVE-2024-0769",
58330
60333
  "CVE-2024-11182",
60334
+ "CVE-2024-11392",
60335
+ "CVE-2024-11393",
60336
+ "CVE-2024-11394",
58331
60337
  "CVE-2024-12987",
60338
+ "CVE-2024-1561",
58332
60339
  "CVE-2024-1708",
58333
60340
  "CVE-2024-21762",
58334
60341
  "CVE-2024-27199",
@@ -58755,11 +60762,16 @@
58755
60762
  "CVE-2023-43654",
58756
60763
  "CVE-2023-48022",
58757
60764
  "CVE-2023-50224",
60765
+ "CVE-2023-51449",
58758
60766
  "CVE-2023-52163",
58759
60767
  "CVE-2024-0132",
58760
60768
  "CVE-2024-0769",
58761
60769
  "CVE-2024-11182",
60770
+ "CVE-2024-11392",
60771
+ "CVE-2024-11393",
60772
+ "CVE-2024-11394",
58762
60773
  "CVE-2024-12987",
60774
+ "CVE-2024-1561",
58763
60775
  "CVE-2024-1708",
58764
60776
  "CVE-2024-21762",
58765
60777
  "CVE-2024-27199",
@@ -59218,7 +61230,12 @@
59218
61230
  "CVE-2023-43472",
59219
61231
  "CVE-2023-43654",
59220
61232
  "CVE-2023-48022",
61233
+ "CVE-2023-51449",
59221
61234
  "CVE-2024-0132",
61235
+ "CVE-2024-11392",
61236
+ "CVE-2024-11393",
61237
+ "CVE-2024-11394",
61238
+ "CVE-2024-1561",
59222
61239
  "CVE-2024-3094",
59223
61240
  "CVE-2024-3154",
59224
61241
  "CVE-2024-37032",
@@ -60021,11 +62038,16 @@
60021
62038
  "CVE-2023-43654",
60022
62039
  "CVE-2023-48022",
60023
62040
  "CVE-2023-50224",
62041
+ "CVE-2023-51449",
60024
62042
  "CVE-2023-52163",
60025
62043
  "CVE-2024-0132",
60026
62044
  "CVE-2024-0769",
60027
62045
  "CVE-2024-11182",
62046
+ "CVE-2024-11392",
62047
+ "CVE-2024-11393",
62048
+ "CVE-2024-11394",
60028
62049
  "CVE-2024-12987",
62050
+ "CVE-2024-1561",
60029
62051
  "CVE-2024-1708",
60030
62052
  "CVE-2024-21762",
60031
62053
  "CVE-2024-27199",
@@ -60548,7 +62570,12 @@
60548
62570
  "CVE-2023-43472",
60549
62571
  "CVE-2023-43654",
60550
62572
  "CVE-2023-48022",
62573
+ "CVE-2023-51449",
60551
62574
  "CVE-2024-0132",
62575
+ "CVE-2024-11392",
62576
+ "CVE-2024-11393",
62577
+ "CVE-2024-11394",
62578
+ "CVE-2024-1561",
60552
62579
  "CVE-2024-3094",
60553
62580
  "CVE-2024-3154",
60554
62581
  "CVE-2024-37032",
@@ -60877,11 +62904,16 @@
60877
62904
  "CVE-2023-43654",
60878
62905
  "CVE-2023-48022",
60879
62906
  "CVE-2023-50224",
62907
+ "CVE-2023-51449",
60880
62908
  "CVE-2023-52163",
60881
62909
  "CVE-2024-0132",
60882
62910
  "CVE-2024-0769",
60883
62911
  "CVE-2024-11182",
62912
+ "CVE-2024-11392",
62913
+ "CVE-2024-11393",
62914
+ "CVE-2024-11394",
60884
62915
  "CVE-2024-12987",
62916
+ "CVE-2024-1561",
60885
62917
  "CVE-2024-1708",
60886
62918
  "CVE-2024-21762",
60887
62919
  "CVE-2024-27199",
@@ -61423,7 +63455,12 @@
61423
63455
  "CVE-2022-1471",
61424
63456
  "CVE-2023-43654",
61425
63457
  "CVE-2023-48022",
63458
+ "CVE-2023-51449",
61426
63459
  "CVE-2024-0132",
63460
+ "CVE-2024-11392",
63461
+ "CVE-2024-11393",
63462
+ "CVE-2024-11394",
63463
+ "CVE-2024-1561",
61427
63464
  "CVE-2024-3094",
61428
63465
  "CVE-2024-3154",
61429
63466
  "CVE-2024-37032",
@@ -62368,7 +64405,12 @@
62368
64405
  "CVE-2023-43472",
62369
64406
  "CVE-2023-43654",
62370
64407
  "CVE-2023-48022",
64408
+ "CVE-2023-51449",
62371
64409
  "CVE-2024-0132",
64410
+ "CVE-2024-11392",
64411
+ "CVE-2024-11393",
64412
+ "CVE-2024-11394",
64413
+ "CVE-2024-1561",
62372
64414
  "CVE-2024-3094",
62373
64415
  "CVE-2024-3154",
62374
64416
  "CVE-2024-37032",
@@ -62477,7 +64519,12 @@
62477
64519
  "CVE-2022-1471",
62478
64520
  "CVE-2023-43654",
62479
64521
  "CVE-2023-48022",
64522
+ "CVE-2023-51449",
62480
64523
  "CVE-2024-0132",
64524
+ "CVE-2024-11392",
64525
+ "CVE-2024-11393",
64526
+ "CVE-2024-11394",
64527
+ "CVE-2024-1561",
62481
64528
  "CVE-2024-37032",
62482
64529
  "CVE-2024-39722",
62483
64530
  "CVE-2024-42478",
@@ -62656,7 +64703,12 @@
62656
64703
  "CVE-2023-43472",
62657
64704
  "CVE-2023-43654",
62658
64705
  "CVE-2023-48022",
64706
+ "CVE-2023-51449",
62659
64707
  "CVE-2024-0132",
64708
+ "CVE-2024-11392",
64709
+ "CVE-2024-11393",
64710
+ "CVE-2024-11394",
64711
+ "CVE-2024-1561",
62660
64712
  "CVE-2024-37032",
62661
64713
  "CVE-2024-39722",
62662
64714
  "CVE-2024-42478",
@@ -63084,10 +65136,15 @@
63084
65136
  "CVE-2023-43000",
63085
65137
  "CVE-2023-43654",
63086
65138
  "CVE-2023-50224",
65139
+ "CVE-2023-51449",
63087
65140
  "CVE-2023-52163",
63088
65141
  "CVE-2024-0769",
63089
65142
  "CVE-2024-11182",
65143
+ "CVE-2024-11392",
65144
+ "CVE-2024-11393",
65145
+ "CVE-2024-11394",
63090
65146
  "CVE-2024-12987",
65147
+ "CVE-2024-1561",
63091
65148
  "CVE-2024-1708",
63092
65149
  "CVE-2024-21762",
63093
65150
  "CVE-2024-27199",
@@ -63536,7 +65593,12 @@
63536
65593
  "CVE-2023-43472",
63537
65594
  "CVE-2023-43654",
63538
65595
  "CVE-2023-48022",
65596
+ "CVE-2023-51449",
63539
65597
  "CVE-2024-0132",
65598
+ "CVE-2024-11392",
65599
+ "CVE-2024-11393",
65600
+ "CVE-2024-11394",
65601
+ "CVE-2024-1561",
63540
65602
  "CVE-2024-3094",
63541
65603
  "CVE-2024-3154",
63542
65604
  "CVE-2024-37032",
@@ -63838,7 +65900,12 @@
63838
65900
  "CVE-2023-43472",
63839
65901
  "CVE-2023-43654",
63840
65902
  "CVE-2023-48022",
65903
+ "CVE-2023-51449",
63841
65904
  "CVE-2024-0132",
65905
+ "CVE-2024-11392",
65906
+ "CVE-2024-11393",
65907
+ "CVE-2024-11394",
65908
+ "CVE-2024-1561",
63842
65909
  "CVE-2024-3094",
63843
65910
  "CVE-2024-37032",
63844
65911
  "CVE-2024-39722",