@blamejs/exceptd-skills 0.13.88 → 0.13.89
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +4 -0
- package/data/_indexes/_meta.json +9 -9
- package/data/_indexes/activity-feed.json +2 -2
- package/data/_indexes/catalog-summaries.json +2 -2
- package/data/_indexes/chains.json +1155 -0
- package/data/atlas-ttps.json +7 -1
- package/data/attack-techniques.json +6 -0
- package/data/cve-catalog.json +311 -1
- package/data/cwe-catalog.json +4 -1
- package/data/framework-control-gaps.json +24 -0
- package/data/zeroday-lessons.json +150 -0
- package/manifest.json +44 -44
- package/package.json +2 -2
- package/sbom.cdx.json +25 -25
|
@@ -30015,6 +30015,1092 @@
|
|
|
30015
30015
|
]
|
|
30016
30016
|
}
|
|
30017
30017
|
},
|
|
30018
|
+
"CVE-2026-24213": {
|
|
30019
|
+
"name": "NVIDIA Triton DALI Backend Out-of-Bounds Read",
|
|
30020
|
+
"rwep": 11,
|
|
30021
|
+
"cvss": 9.8,
|
|
30022
|
+
"cisa_kev": false,
|
|
30023
|
+
"epss_score": null,
|
|
30024
|
+
"referencing_skills": [
|
|
30025
|
+
"kernel-lpe-triage",
|
|
30026
|
+
"ai-attack-surface",
|
|
30027
|
+
"compliance-theater",
|
|
30028
|
+
"attack-surface-pentest",
|
|
30029
|
+
"ot-ics-security",
|
|
30030
|
+
"coordinated-vuln-disclosure",
|
|
30031
|
+
"sector-energy"
|
|
30032
|
+
],
|
|
30033
|
+
"chain": {
|
|
30034
|
+
"cwes": [
|
|
30035
|
+
{
|
|
30036
|
+
"id": "CWE-1037",
|
|
30037
|
+
"name": "Processor Optimization Removal or Modification of Security-critical Code",
|
|
30038
|
+
"category": "Hardware / Side Channel"
|
|
30039
|
+
},
|
|
30040
|
+
{
|
|
30041
|
+
"id": "CWE-1039",
|
|
30042
|
+
"name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
|
|
30043
|
+
"category": "AI/ML"
|
|
30044
|
+
},
|
|
30045
|
+
{
|
|
30046
|
+
"id": "CWE-125",
|
|
30047
|
+
"name": "Out-of-bounds Read",
|
|
30048
|
+
"category": "Memory Safety"
|
|
30049
|
+
},
|
|
30050
|
+
{
|
|
30051
|
+
"id": "CWE-1357",
|
|
30052
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
30053
|
+
"category": "Supply Chain"
|
|
30054
|
+
},
|
|
30055
|
+
{
|
|
30056
|
+
"id": "CWE-1395",
|
|
30057
|
+
"name": "Dependency on Vulnerable Third-Party Component",
|
|
30058
|
+
"category": "Supply Chain"
|
|
30059
|
+
},
|
|
30060
|
+
{
|
|
30061
|
+
"id": "CWE-1426",
|
|
30062
|
+
"name": "Improper Validation of Generative AI Output",
|
|
30063
|
+
"category": "AI/ML"
|
|
30064
|
+
},
|
|
30065
|
+
{
|
|
30066
|
+
"id": "CWE-22",
|
|
30067
|
+
"name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
|
|
30068
|
+
"category": "Path/Resource"
|
|
30069
|
+
},
|
|
30070
|
+
{
|
|
30071
|
+
"id": "CWE-269",
|
|
30072
|
+
"name": "Improper Privilege Management",
|
|
30073
|
+
"category": "Authorization"
|
|
30074
|
+
},
|
|
30075
|
+
{
|
|
30076
|
+
"id": "CWE-287",
|
|
30077
|
+
"name": "Improper Authentication",
|
|
30078
|
+
"category": "Authentication"
|
|
30079
|
+
},
|
|
30080
|
+
{
|
|
30081
|
+
"id": "CWE-306",
|
|
30082
|
+
"name": "Missing Authentication for Critical Function",
|
|
30083
|
+
"category": "Authentication"
|
|
30084
|
+
},
|
|
30085
|
+
{
|
|
30086
|
+
"id": "CWE-352",
|
|
30087
|
+
"name": "Cross-Site Request Forgery (CSRF)",
|
|
30088
|
+
"category": "Session"
|
|
30089
|
+
},
|
|
30090
|
+
{
|
|
30091
|
+
"id": "CWE-362",
|
|
30092
|
+
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
|
|
30093
|
+
"category": "Concurrency"
|
|
30094
|
+
},
|
|
30095
|
+
{
|
|
30096
|
+
"id": "CWE-416",
|
|
30097
|
+
"name": "Use After Free",
|
|
30098
|
+
"category": "Memory Safety"
|
|
30099
|
+
},
|
|
30100
|
+
{
|
|
30101
|
+
"id": "CWE-434",
|
|
30102
|
+
"name": "Unrestricted Upload of File with Dangerous Type",
|
|
30103
|
+
"category": "File Handling"
|
|
30104
|
+
},
|
|
30105
|
+
{
|
|
30106
|
+
"id": "CWE-672",
|
|
30107
|
+
"name": "Operation on a Resource after Expiration or Release",
|
|
30108
|
+
"category": "Memory Safety"
|
|
30109
|
+
},
|
|
30110
|
+
{
|
|
30111
|
+
"id": "CWE-732",
|
|
30112
|
+
"name": "Incorrect Permission Assignment for Critical Resource",
|
|
30113
|
+
"category": "Authorization"
|
|
30114
|
+
},
|
|
30115
|
+
{
|
|
30116
|
+
"id": "CWE-78",
|
|
30117
|
+
"name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
|
|
30118
|
+
"category": "Injection"
|
|
30119
|
+
},
|
|
30120
|
+
{
|
|
30121
|
+
"id": "CWE-787",
|
|
30122
|
+
"name": "Out-of-bounds Write",
|
|
30123
|
+
"category": "Memory Safety"
|
|
30124
|
+
},
|
|
30125
|
+
{
|
|
30126
|
+
"id": "CWE-79",
|
|
30127
|
+
"name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
|
|
30128
|
+
"category": "Injection"
|
|
30129
|
+
},
|
|
30130
|
+
{
|
|
30131
|
+
"id": "CWE-798",
|
|
30132
|
+
"name": "Use of Hard-coded Credentials",
|
|
30133
|
+
"category": "Credentials"
|
|
30134
|
+
},
|
|
30135
|
+
{
|
|
30136
|
+
"id": "CWE-89",
|
|
30137
|
+
"name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
|
|
30138
|
+
"category": "Injection"
|
|
30139
|
+
},
|
|
30140
|
+
{
|
|
30141
|
+
"id": "CWE-918",
|
|
30142
|
+
"name": "Server-Side Request Forgery (SSRF)",
|
|
30143
|
+
"category": "Network"
|
|
30144
|
+
},
|
|
30145
|
+
{
|
|
30146
|
+
"id": "CWE-94",
|
|
30147
|
+
"name": "Improper Control of Generation of Code (Code Injection)",
|
|
30148
|
+
"category": "Injection"
|
|
30149
|
+
}
|
|
30150
|
+
],
|
|
30151
|
+
"atlas": [
|
|
30152
|
+
{
|
|
30153
|
+
"id": "AML.T0010",
|
|
30154
|
+
"name": "ML Supply Chain Compromise",
|
|
30155
|
+
"tactic": "Initial Access"
|
|
30156
|
+
},
|
|
30157
|
+
{
|
|
30158
|
+
"id": "AML.T0016",
|
|
30159
|
+
"name": "Obtain Capabilities: Develop Capabilities",
|
|
30160
|
+
"tactic": "Resource Development"
|
|
30161
|
+
},
|
|
30162
|
+
{
|
|
30163
|
+
"id": "AML.T0017",
|
|
30164
|
+
"name": "Discover ML Model Ontology",
|
|
30165
|
+
"tactic": "Discovery"
|
|
30166
|
+
},
|
|
30167
|
+
{
|
|
30168
|
+
"id": "AML.T0018",
|
|
30169
|
+
"name": "Backdoor ML Model",
|
|
30170
|
+
"tactic": "Persistence"
|
|
30171
|
+
},
|
|
30172
|
+
{
|
|
30173
|
+
"id": "AML.T0020",
|
|
30174
|
+
"name": "Poison Training Data",
|
|
30175
|
+
"tactic": "ML Attack Staging"
|
|
30176
|
+
},
|
|
30177
|
+
{
|
|
30178
|
+
"id": "AML.T0043",
|
|
30179
|
+
"name": "Craft Adversarial Data",
|
|
30180
|
+
"tactic": "ML Attack Staging"
|
|
30181
|
+
},
|
|
30182
|
+
{
|
|
30183
|
+
"id": "AML.T0051",
|
|
30184
|
+
"name": "LLM Prompt Injection",
|
|
30185
|
+
"tactic": "Execution"
|
|
30186
|
+
},
|
|
30187
|
+
{
|
|
30188
|
+
"id": "AML.T0054",
|
|
30189
|
+
"name": "LLM Jailbreak",
|
|
30190
|
+
"tactic": "Defense Evasion"
|
|
30191
|
+
},
|
|
30192
|
+
{
|
|
30193
|
+
"id": "AML.T0096",
|
|
30194
|
+
"name": "AI API as Covert C2 Channel",
|
|
30195
|
+
"tactic": "Command and Control"
|
|
30196
|
+
}
|
|
30197
|
+
],
|
|
30198
|
+
"d3fend": [
|
|
30199
|
+
{
|
|
30200
|
+
"id": "D3-ASLR",
|
|
30201
|
+
"name": "Address Space Layout Randomization",
|
|
30202
|
+
"tactic": "Harden"
|
|
30203
|
+
},
|
|
30204
|
+
{
|
|
30205
|
+
"id": "D3-CSPP",
|
|
30206
|
+
"name": "Client-server Payload Profiling",
|
|
30207
|
+
"tactic": "Detect"
|
|
30208
|
+
},
|
|
30209
|
+
{
|
|
30210
|
+
"id": "D3-EAL",
|
|
30211
|
+
"name": "Executable Allowlisting",
|
|
30212
|
+
"tactic": "Harden"
|
|
30213
|
+
},
|
|
30214
|
+
{
|
|
30215
|
+
"id": "D3-IOPR",
|
|
30216
|
+
"name": "Input/Output Profiling Resource",
|
|
30217
|
+
"tactic": "Detect"
|
|
30218
|
+
},
|
|
30219
|
+
{
|
|
30220
|
+
"id": "D3-NTA",
|
|
30221
|
+
"name": "Network Traffic Analysis",
|
|
30222
|
+
"tactic": "Detect"
|
|
30223
|
+
},
|
|
30224
|
+
{
|
|
30225
|
+
"id": "D3-PHRA",
|
|
30226
|
+
"name": "Process Hardware Resource Access",
|
|
30227
|
+
"tactic": "Isolate"
|
|
30228
|
+
},
|
|
30229
|
+
{
|
|
30230
|
+
"id": "D3-PSEP",
|
|
30231
|
+
"name": "Process Segment Execution Prevention",
|
|
30232
|
+
"tactic": "Harden"
|
|
30233
|
+
}
|
|
30234
|
+
],
|
|
30235
|
+
"framework_gaps": [
|
|
30236
|
+
{
|
|
30237
|
+
"id": "ALL-AI-PIPELINE-INTEGRITY",
|
|
30238
|
+
"framework": "ALL",
|
|
30239
|
+
"control_name": "AI Pipeline Integrity"
|
|
30240
|
+
},
|
|
30241
|
+
{
|
|
30242
|
+
"id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
|
|
30243
|
+
"framework": "ALL",
|
|
30244
|
+
"control_name": "Prompt Injection as Access Control Failure"
|
|
30245
|
+
},
|
|
30246
|
+
{
|
|
30247
|
+
"id": "CIS-Controls-v8-Control7",
|
|
30248
|
+
"framework": "CIS Controls v8",
|
|
30249
|
+
"control_name": "Continuous Vulnerability Management"
|
|
30250
|
+
},
|
|
30251
|
+
{
|
|
30252
|
+
"id": "CMMC-2.0-Level-2",
|
|
30253
|
+
"framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
|
|
30254
|
+
"control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
|
|
30255
|
+
},
|
|
30256
|
+
{
|
|
30257
|
+
"id": "FedRAMP-Rev5-Moderate",
|
|
30258
|
+
"framework": "FedRAMP Rev 5 Moderate",
|
|
30259
|
+
"control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
|
|
30260
|
+
},
|
|
30261
|
+
{
|
|
30262
|
+
"id": "IEC-62443-3-3",
|
|
30263
|
+
"framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
|
|
30264
|
+
"control_name": "System security requirements and security levels"
|
|
30265
|
+
},
|
|
30266
|
+
{
|
|
30267
|
+
"id": "ISO-27001-2022-A.8.28",
|
|
30268
|
+
"framework": "ISO/IEC 27001:2022",
|
|
30269
|
+
"control_name": "Secure coding"
|
|
30270
|
+
},
|
|
30271
|
+
{
|
|
30272
|
+
"id": "ISO-27001-2022-A.8.8",
|
|
30273
|
+
"framework": "ISO/IEC 27001:2022",
|
|
30274
|
+
"control_name": "Management of technical vulnerabilities"
|
|
30275
|
+
},
|
|
30276
|
+
{
|
|
30277
|
+
"id": "ISO-IEC-23894-2023-clause-7",
|
|
30278
|
+
"framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
|
|
30279
|
+
"control_name": "AI risk management process"
|
|
30280
|
+
},
|
|
30281
|
+
{
|
|
30282
|
+
"id": "NERC-CIP-007-6-R4",
|
|
30283
|
+
"framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
|
|
30284
|
+
"control_name": "Security event monitoring"
|
|
30285
|
+
},
|
|
30286
|
+
{
|
|
30287
|
+
"id": "NIS2-Art21-patch-management",
|
|
30288
|
+
"framework": "EU NIS2 Directive",
|
|
30289
|
+
"control_name": "Vulnerability handling and disclosure"
|
|
30290
|
+
},
|
|
30291
|
+
{
|
|
30292
|
+
"id": "NIST-800-115",
|
|
30293
|
+
"framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
|
|
30294
|
+
"control_name": "Technical Guide to Information Security Testing and Assessment"
|
|
30295
|
+
},
|
|
30296
|
+
{
|
|
30297
|
+
"id": "NIST-800-218-SSDF",
|
|
30298
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
30299
|
+
"control_name": "Secure Software Development Framework"
|
|
30300
|
+
},
|
|
30301
|
+
{
|
|
30302
|
+
"id": "NIST-800-53-AC-2",
|
|
30303
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
30304
|
+
"control_name": "Account Management"
|
|
30305
|
+
},
|
|
30306
|
+
{
|
|
30307
|
+
"id": "NIST-800-53-SC-8",
|
|
30308
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
30309
|
+
"control_name": "Transmission Confidentiality and Integrity"
|
|
30310
|
+
},
|
|
30311
|
+
{
|
|
30312
|
+
"id": "NIST-800-53-SI-2",
|
|
30313
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
30314
|
+
"control_name": "Flaw Remediation"
|
|
30315
|
+
},
|
|
30316
|
+
{
|
|
30317
|
+
"id": "NIST-800-53-SI-3",
|
|
30318
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
30319
|
+
"control_name": "Malicious Code Protection"
|
|
30320
|
+
},
|
|
30321
|
+
{
|
|
30322
|
+
"id": "NIST-800-82r3",
|
|
30323
|
+
"framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
|
|
30324
|
+
"control_name": "Guide to Operational Technology (OT) Security"
|
|
30325
|
+
},
|
|
30326
|
+
{
|
|
30327
|
+
"id": "OWASP-LLM-Top-10-2025-LLM01",
|
|
30328
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
30329
|
+
"control_name": "Prompt Injection"
|
|
30330
|
+
},
|
|
30331
|
+
{
|
|
30332
|
+
"id": "OWASP-LLM-Top-10-2025-LLM02",
|
|
30333
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
30334
|
+
"control_name": "Sensitive Information Disclosure"
|
|
30335
|
+
},
|
|
30336
|
+
{
|
|
30337
|
+
"id": "OWASP-Pen-Testing-Guide-v5",
|
|
30338
|
+
"framework": "OWASP Web Security Testing Guide v5 (WSTG)",
|
|
30339
|
+
"control_name": "Web application penetration testing methodology"
|
|
30340
|
+
},
|
|
30341
|
+
{
|
|
30342
|
+
"id": "PCI-DSS-4.0-6.3.3",
|
|
30343
|
+
"framework": "PCI DSS 4.0",
|
|
30344
|
+
"control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
|
|
30345
|
+
},
|
|
30346
|
+
{
|
|
30347
|
+
"id": "PTES-Pre-engagement",
|
|
30348
|
+
"framework": "Penetration Testing Execution Standard (PTES)",
|
|
30349
|
+
"control_name": "Pre-engagement Interactions"
|
|
30350
|
+
},
|
|
30351
|
+
{
|
|
30352
|
+
"id": "SOC2-CC6-logical-access",
|
|
30353
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
30354
|
+
"control_name": "Logical and Physical Access Controls"
|
|
30355
|
+
},
|
|
30356
|
+
{
|
|
30357
|
+
"id": "SOC2-CC9-vendor-management",
|
|
30358
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
30359
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
30360
|
+
}
|
|
30361
|
+
],
|
|
30362
|
+
"attack_refs": [
|
|
30363
|
+
"T0855",
|
|
30364
|
+
"T0883",
|
|
30365
|
+
"T1059",
|
|
30366
|
+
"T1068",
|
|
30367
|
+
"T1078",
|
|
30368
|
+
"T1133",
|
|
30369
|
+
"T1190",
|
|
30370
|
+
"T1548.001",
|
|
30371
|
+
"T1566"
|
|
30372
|
+
],
|
|
30373
|
+
"rfc_refs": [
|
|
30374
|
+
"RFC-4301",
|
|
30375
|
+
"RFC-4303",
|
|
30376
|
+
"RFC-7296"
|
|
30377
|
+
]
|
|
30378
|
+
}
|
|
30379
|
+
},
|
|
30380
|
+
"CVE-2026-24214": {
|
|
30381
|
+
"name": "NVIDIA Triton DALI Backend Integer Overflow",
|
|
30382
|
+
"rwep": 11,
|
|
30383
|
+
"cvss": 9.8,
|
|
30384
|
+
"cisa_kev": false,
|
|
30385
|
+
"epss_score": null,
|
|
30386
|
+
"referencing_skills": [
|
|
30387
|
+
"kernel-lpe-triage",
|
|
30388
|
+
"ai-attack-surface",
|
|
30389
|
+
"compliance-theater",
|
|
30390
|
+
"attack-surface-pentest",
|
|
30391
|
+
"ot-ics-security",
|
|
30392
|
+
"coordinated-vuln-disclosure",
|
|
30393
|
+
"sector-energy"
|
|
30394
|
+
],
|
|
30395
|
+
"chain": {
|
|
30396
|
+
"cwes": [
|
|
30397
|
+
{
|
|
30398
|
+
"id": "CWE-1037",
|
|
30399
|
+
"name": "Processor Optimization Removal or Modification of Security-critical Code",
|
|
30400
|
+
"category": "Hardware / Side Channel"
|
|
30401
|
+
},
|
|
30402
|
+
{
|
|
30403
|
+
"id": "CWE-1039",
|
|
30404
|
+
"name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
|
|
30405
|
+
"category": "AI/ML"
|
|
30406
|
+
},
|
|
30407
|
+
{
|
|
30408
|
+
"id": "CWE-125",
|
|
30409
|
+
"name": "Out-of-bounds Read",
|
|
30410
|
+
"category": "Memory Safety"
|
|
30411
|
+
},
|
|
30412
|
+
{
|
|
30413
|
+
"id": "CWE-1357",
|
|
30414
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
30415
|
+
"category": "Supply Chain"
|
|
30416
|
+
},
|
|
30417
|
+
{
|
|
30418
|
+
"id": "CWE-1395",
|
|
30419
|
+
"name": "Dependency on Vulnerable Third-Party Component",
|
|
30420
|
+
"category": "Supply Chain"
|
|
30421
|
+
},
|
|
30422
|
+
{
|
|
30423
|
+
"id": "CWE-1426",
|
|
30424
|
+
"name": "Improper Validation of Generative AI Output",
|
|
30425
|
+
"category": "AI/ML"
|
|
30426
|
+
},
|
|
30427
|
+
{
|
|
30428
|
+
"id": "CWE-22",
|
|
30429
|
+
"name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
|
|
30430
|
+
"category": "Path/Resource"
|
|
30431
|
+
},
|
|
30432
|
+
{
|
|
30433
|
+
"id": "CWE-269",
|
|
30434
|
+
"name": "Improper Privilege Management",
|
|
30435
|
+
"category": "Authorization"
|
|
30436
|
+
},
|
|
30437
|
+
{
|
|
30438
|
+
"id": "CWE-287",
|
|
30439
|
+
"name": "Improper Authentication",
|
|
30440
|
+
"category": "Authentication"
|
|
30441
|
+
},
|
|
30442
|
+
{
|
|
30443
|
+
"id": "CWE-306",
|
|
30444
|
+
"name": "Missing Authentication for Critical Function",
|
|
30445
|
+
"category": "Authentication"
|
|
30446
|
+
},
|
|
30447
|
+
{
|
|
30448
|
+
"id": "CWE-352",
|
|
30449
|
+
"name": "Cross-Site Request Forgery (CSRF)",
|
|
30450
|
+
"category": "Session"
|
|
30451
|
+
},
|
|
30452
|
+
{
|
|
30453
|
+
"id": "CWE-362",
|
|
30454
|
+
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
|
|
30455
|
+
"category": "Concurrency"
|
|
30456
|
+
},
|
|
30457
|
+
{
|
|
30458
|
+
"id": "CWE-416",
|
|
30459
|
+
"name": "Use After Free",
|
|
30460
|
+
"category": "Memory Safety"
|
|
30461
|
+
},
|
|
30462
|
+
{
|
|
30463
|
+
"id": "CWE-434",
|
|
30464
|
+
"name": "Unrestricted Upload of File with Dangerous Type",
|
|
30465
|
+
"category": "File Handling"
|
|
30466
|
+
},
|
|
30467
|
+
{
|
|
30468
|
+
"id": "CWE-672",
|
|
30469
|
+
"name": "Operation on a Resource after Expiration or Release",
|
|
30470
|
+
"category": "Memory Safety"
|
|
30471
|
+
},
|
|
30472
|
+
{
|
|
30473
|
+
"id": "CWE-732",
|
|
30474
|
+
"name": "Incorrect Permission Assignment for Critical Resource",
|
|
30475
|
+
"category": "Authorization"
|
|
30476
|
+
},
|
|
30477
|
+
{
|
|
30478
|
+
"id": "CWE-78",
|
|
30479
|
+
"name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
|
|
30480
|
+
"category": "Injection"
|
|
30481
|
+
},
|
|
30482
|
+
{
|
|
30483
|
+
"id": "CWE-787",
|
|
30484
|
+
"name": "Out-of-bounds Write",
|
|
30485
|
+
"category": "Memory Safety"
|
|
30486
|
+
},
|
|
30487
|
+
{
|
|
30488
|
+
"id": "CWE-79",
|
|
30489
|
+
"name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
|
|
30490
|
+
"category": "Injection"
|
|
30491
|
+
},
|
|
30492
|
+
{
|
|
30493
|
+
"id": "CWE-798",
|
|
30494
|
+
"name": "Use of Hard-coded Credentials",
|
|
30495
|
+
"category": "Credentials"
|
|
30496
|
+
},
|
|
30497
|
+
{
|
|
30498
|
+
"id": "CWE-89",
|
|
30499
|
+
"name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
|
|
30500
|
+
"category": "Injection"
|
|
30501
|
+
},
|
|
30502
|
+
{
|
|
30503
|
+
"id": "CWE-918",
|
|
30504
|
+
"name": "Server-Side Request Forgery (SSRF)",
|
|
30505
|
+
"category": "Network"
|
|
30506
|
+
},
|
|
30507
|
+
{
|
|
30508
|
+
"id": "CWE-94",
|
|
30509
|
+
"name": "Improper Control of Generation of Code (Code Injection)",
|
|
30510
|
+
"category": "Injection"
|
|
30511
|
+
}
|
|
30512
|
+
],
|
|
30513
|
+
"atlas": [
|
|
30514
|
+
{
|
|
30515
|
+
"id": "AML.T0010",
|
|
30516
|
+
"name": "ML Supply Chain Compromise",
|
|
30517
|
+
"tactic": "Initial Access"
|
|
30518
|
+
},
|
|
30519
|
+
{
|
|
30520
|
+
"id": "AML.T0016",
|
|
30521
|
+
"name": "Obtain Capabilities: Develop Capabilities",
|
|
30522
|
+
"tactic": "Resource Development"
|
|
30523
|
+
},
|
|
30524
|
+
{
|
|
30525
|
+
"id": "AML.T0017",
|
|
30526
|
+
"name": "Discover ML Model Ontology",
|
|
30527
|
+
"tactic": "Discovery"
|
|
30528
|
+
},
|
|
30529
|
+
{
|
|
30530
|
+
"id": "AML.T0018",
|
|
30531
|
+
"name": "Backdoor ML Model",
|
|
30532
|
+
"tactic": "Persistence"
|
|
30533
|
+
},
|
|
30534
|
+
{
|
|
30535
|
+
"id": "AML.T0020",
|
|
30536
|
+
"name": "Poison Training Data",
|
|
30537
|
+
"tactic": "ML Attack Staging"
|
|
30538
|
+
},
|
|
30539
|
+
{
|
|
30540
|
+
"id": "AML.T0043",
|
|
30541
|
+
"name": "Craft Adversarial Data",
|
|
30542
|
+
"tactic": "ML Attack Staging"
|
|
30543
|
+
},
|
|
30544
|
+
{
|
|
30545
|
+
"id": "AML.T0051",
|
|
30546
|
+
"name": "LLM Prompt Injection",
|
|
30547
|
+
"tactic": "Execution"
|
|
30548
|
+
},
|
|
30549
|
+
{
|
|
30550
|
+
"id": "AML.T0054",
|
|
30551
|
+
"name": "LLM Jailbreak",
|
|
30552
|
+
"tactic": "Defense Evasion"
|
|
30553
|
+
},
|
|
30554
|
+
{
|
|
30555
|
+
"id": "AML.T0096",
|
|
30556
|
+
"name": "AI API as Covert C2 Channel",
|
|
30557
|
+
"tactic": "Command and Control"
|
|
30558
|
+
}
|
|
30559
|
+
],
|
|
30560
|
+
"d3fend": [
|
|
30561
|
+
{
|
|
30562
|
+
"id": "D3-ASLR",
|
|
30563
|
+
"name": "Address Space Layout Randomization",
|
|
30564
|
+
"tactic": "Harden"
|
|
30565
|
+
},
|
|
30566
|
+
{
|
|
30567
|
+
"id": "D3-CSPP",
|
|
30568
|
+
"name": "Client-server Payload Profiling",
|
|
30569
|
+
"tactic": "Detect"
|
|
30570
|
+
},
|
|
30571
|
+
{
|
|
30572
|
+
"id": "D3-EAL",
|
|
30573
|
+
"name": "Executable Allowlisting",
|
|
30574
|
+
"tactic": "Harden"
|
|
30575
|
+
},
|
|
30576
|
+
{
|
|
30577
|
+
"id": "D3-IOPR",
|
|
30578
|
+
"name": "Input/Output Profiling Resource",
|
|
30579
|
+
"tactic": "Detect"
|
|
30580
|
+
},
|
|
30581
|
+
{
|
|
30582
|
+
"id": "D3-NTA",
|
|
30583
|
+
"name": "Network Traffic Analysis",
|
|
30584
|
+
"tactic": "Detect"
|
|
30585
|
+
},
|
|
30586
|
+
{
|
|
30587
|
+
"id": "D3-PHRA",
|
|
30588
|
+
"name": "Process Hardware Resource Access",
|
|
30589
|
+
"tactic": "Isolate"
|
|
30590
|
+
},
|
|
30591
|
+
{
|
|
30592
|
+
"id": "D3-PSEP",
|
|
30593
|
+
"name": "Process Segment Execution Prevention",
|
|
30594
|
+
"tactic": "Harden"
|
|
30595
|
+
}
|
|
30596
|
+
],
|
|
30597
|
+
"framework_gaps": [
|
|
30598
|
+
{
|
|
30599
|
+
"id": "ALL-AI-PIPELINE-INTEGRITY",
|
|
30600
|
+
"framework": "ALL",
|
|
30601
|
+
"control_name": "AI Pipeline Integrity"
|
|
30602
|
+
},
|
|
30603
|
+
{
|
|
30604
|
+
"id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
|
|
30605
|
+
"framework": "ALL",
|
|
30606
|
+
"control_name": "Prompt Injection as Access Control Failure"
|
|
30607
|
+
},
|
|
30608
|
+
{
|
|
30609
|
+
"id": "CIS-Controls-v8-Control7",
|
|
30610
|
+
"framework": "CIS Controls v8",
|
|
30611
|
+
"control_name": "Continuous Vulnerability Management"
|
|
30612
|
+
},
|
|
30613
|
+
{
|
|
30614
|
+
"id": "CMMC-2.0-Level-2",
|
|
30615
|
+
"framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
|
|
30616
|
+
"control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
|
|
30617
|
+
},
|
|
30618
|
+
{
|
|
30619
|
+
"id": "FedRAMP-Rev5-Moderate",
|
|
30620
|
+
"framework": "FedRAMP Rev 5 Moderate",
|
|
30621
|
+
"control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
|
|
30622
|
+
},
|
|
30623
|
+
{
|
|
30624
|
+
"id": "IEC-62443-3-3",
|
|
30625
|
+
"framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
|
|
30626
|
+
"control_name": "System security requirements and security levels"
|
|
30627
|
+
},
|
|
30628
|
+
{
|
|
30629
|
+
"id": "ISO-27001-2022-A.8.28",
|
|
30630
|
+
"framework": "ISO/IEC 27001:2022",
|
|
30631
|
+
"control_name": "Secure coding"
|
|
30632
|
+
},
|
|
30633
|
+
{
|
|
30634
|
+
"id": "ISO-27001-2022-A.8.8",
|
|
30635
|
+
"framework": "ISO/IEC 27001:2022",
|
|
30636
|
+
"control_name": "Management of technical vulnerabilities"
|
|
30637
|
+
},
|
|
30638
|
+
{
|
|
30639
|
+
"id": "ISO-IEC-23894-2023-clause-7",
|
|
30640
|
+
"framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
|
|
30641
|
+
"control_name": "AI risk management process"
|
|
30642
|
+
},
|
|
30643
|
+
{
|
|
30644
|
+
"id": "NERC-CIP-007-6-R4",
|
|
30645
|
+
"framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
|
|
30646
|
+
"control_name": "Security event monitoring"
|
|
30647
|
+
},
|
|
30648
|
+
{
|
|
30649
|
+
"id": "NIS2-Art21-patch-management",
|
|
30650
|
+
"framework": "EU NIS2 Directive",
|
|
30651
|
+
"control_name": "Vulnerability handling and disclosure"
|
|
30652
|
+
},
|
|
30653
|
+
{
|
|
30654
|
+
"id": "NIST-800-115",
|
|
30655
|
+
"framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
|
|
30656
|
+
"control_name": "Technical Guide to Information Security Testing and Assessment"
|
|
30657
|
+
},
|
|
30658
|
+
{
|
|
30659
|
+
"id": "NIST-800-218-SSDF",
|
|
30660
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
30661
|
+
"control_name": "Secure Software Development Framework"
|
|
30662
|
+
},
|
|
30663
|
+
{
|
|
30664
|
+
"id": "NIST-800-53-AC-2",
|
|
30665
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
30666
|
+
"control_name": "Account Management"
|
|
30667
|
+
},
|
|
30668
|
+
{
|
|
30669
|
+
"id": "NIST-800-53-SC-8",
|
|
30670
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
30671
|
+
"control_name": "Transmission Confidentiality and Integrity"
|
|
30672
|
+
},
|
|
30673
|
+
{
|
|
30674
|
+
"id": "NIST-800-53-SI-2",
|
|
30675
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
30676
|
+
"control_name": "Flaw Remediation"
|
|
30677
|
+
},
|
|
30678
|
+
{
|
|
30679
|
+
"id": "NIST-800-53-SI-3",
|
|
30680
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
30681
|
+
"control_name": "Malicious Code Protection"
|
|
30682
|
+
},
|
|
30683
|
+
{
|
|
30684
|
+
"id": "NIST-800-82r3",
|
|
30685
|
+
"framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
|
|
30686
|
+
"control_name": "Guide to Operational Technology (OT) Security"
|
|
30687
|
+
},
|
|
30688
|
+
{
|
|
30689
|
+
"id": "OWASP-LLM-Top-10-2025-LLM01",
|
|
30690
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
30691
|
+
"control_name": "Prompt Injection"
|
|
30692
|
+
},
|
|
30693
|
+
{
|
|
30694
|
+
"id": "OWASP-LLM-Top-10-2025-LLM02",
|
|
30695
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
30696
|
+
"control_name": "Sensitive Information Disclosure"
|
|
30697
|
+
},
|
|
30698
|
+
{
|
|
30699
|
+
"id": "OWASP-Pen-Testing-Guide-v5",
|
|
30700
|
+
"framework": "OWASP Web Security Testing Guide v5 (WSTG)",
|
|
30701
|
+
"control_name": "Web application penetration testing methodology"
|
|
30702
|
+
},
|
|
30703
|
+
{
|
|
30704
|
+
"id": "PCI-DSS-4.0-6.3.3",
|
|
30705
|
+
"framework": "PCI DSS 4.0",
|
|
30706
|
+
"control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
|
|
30707
|
+
},
|
|
30708
|
+
{
|
|
30709
|
+
"id": "PTES-Pre-engagement",
|
|
30710
|
+
"framework": "Penetration Testing Execution Standard (PTES)",
|
|
30711
|
+
"control_name": "Pre-engagement Interactions"
|
|
30712
|
+
},
|
|
30713
|
+
{
|
|
30714
|
+
"id": "SOC2-CC6-logical-access",
|
|
30715
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
30716
|
+
"control_name": "Logical and Physical Access Controls"
|
|
30717
|
+
},
|
|
30718
|
+
{
|
|
30719
|
+
"id": "SOC2-CC9-vendor-management",
|
|
30720
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
30721
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
30722
|
+
}
|
|
30723
|
+
],
|
|
30724
|
+
"attack_refs": [
|
|
30725
|
+
"T0855",
|
|
30726
|
+
"T0883",
|
|
30727
|
+
"T1059",
|
|
30728
|
+
"T1068",
|
|
30729
|
+
"T1078",
|
|
30730
|
+
"T1133",
|
|
30731
|
+
"T1190",
|
|
30732
|
+
"T1548.001",
|
|
30733
|
+
"T1566"
|
|
30734
|
+
],
|
|
30735
|
+
"rfc_refs": [
|
|
30736
|
+
"RFC-4301",
|
|
30737
|
+
"RFC-4303",
|
|
30738
|
+
"RFC-7296"
|
|
30739
|
+
]
|
|
30740
|
+
}
|
|
30741
|
+
},
|
|
30742
|
+
"CVE-2026-24215": {
|
|
30743
|
+
"name": "NVIDIA Triton DALI Backend Uncontrolled Resource Consumption (DoS)",
|
|
30744
|
+
"rwep": 5,
|
|
30745
|
+
"cvss": 7.5,
|
|
30746
|
+
"cisa_kev": false,
|
|
30747
|
+
"epss_score": null,
|
|
30748
|
+
"referencing_skills": [
|
|
30749
|
+
"kernel-lpe-triage",
|
|
30750
|
+
"ai-attack-surface",
|
|
30751
|
+
"compliance-theater",
|
|
30752
|
+
"attack-surface-pentest",
|
|
30753
|
+
"ot-ics-security",
|
|
30754
|
+
"coordinated-vuln-disclosure",
|
|
30755
|
+
"sector-energy"
|
|
30756
|
+
],
|
|
30757
|
+
"chain": {
|
|
30758
|
+
"cwes": [
|
|
30759
|
+
{
|
|
30760
|
+
"id": "CWE-1037",
|
|
30761
|
+
"name": "Processor Optimization Removal or Modification of Security-critical Code",
|
|
30762
|
+
"category": "Hardware / Side Channel"
|
|
30763
|
+
},
|
|
30764
|
+
{
|
|
30765
|
+
"id": "CWE-1039",
|
|
30766
|
+
"name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
|
|
30767
|
+
"category": "AI/ML"
|
|
30768
|
+
},
|
|
30769
|
+
{
|
|
30770
|
+
"id": "CWE-125",
|
|
30771
|
+
"name": "Out-of-bounds Read",
|
|
30772
|
+
"category": "Memory Safety"
|
|
30773
|
+
},
|
|
30774
|
+
{
|
|
30775
|
+
"id": "CWE-1357",
|
|
30776
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
30777
|
+
"category": "Supply Chain"
|
|
30778
|
+
},
|
|
30779
|
+
{
|
|
30780
|
+
"id": "CWE-1395",
|
|
30781
|
+
"name": "Dependency on Vulnerable Third-Party Component",
|
|
30782
|
+
"category": "Supply Chain"
|
|
30783
|
+
},
|
|
30784
|
+
{
|
|
30785
|
+
"id": "CWE-1426",
|
|
30786
|
+
"name": "Improper Validation of Generative AI Output",
|
|
30787
|
+
"category": "AI/ML"
|
|
30788
|
+
},
|
|
30789
|
+
{
|
|
30790
|
+
"id": "CWE-22",
|
|
30791
|
+
"name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
|
|
30792
|
+
"category": "Path/Resource"
|
|
30793
|
+
},
|
|
30794
|
+
{
|
|
30795
|
+
"id": "CWE-269",
|
|
30796
|
+
"name": "Improper Privilege Management",
|
|
30797
|
+
"category": "Authorization"
|
|
30798
|
+
},
|
|
30799
|
+
{
|
|
30800
|
+
"id": "CWE-287",
|
|
30801
|
+
"name": "Improper Authentication",
|
|
30802
|
+
"category": "Authentication"
|
|
30803
|
+
},
|
|
30804
|
+
{
|
|
30805
|
+
"id": "CWE-306",
|
|
30806
|
+
"name": "Missing Authentication for Critical Function",
|
|
30807
|
+
"category": "Authentication"
|
|
30808
|
+
},
|
|
30809
|
+
{
|
|
30810
|
+
"id": "CWE-352",
|
|
30811
|
+
"name": "Cross-Site Request Forgery (CSRF)",
|
|
30812
|
+
"category": "Session"
|
|
30813
|
+
},
|
|
30814
|
+
{
|
|
30815
|
+
"id": "CWE-362",
|
|
30816
|
+
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
|
|
30817
|
+
"category": "Concurrency"
|
|
30818
|
+
},
|
|
30819
|
+
{
|
|
30820
|
+
"id": "CWE-416",
|
|
30821
|
+
"name": "Use After Free",
|
|
30822
|
+
"category": "Memory Safety"
|
|
30823
|
+
},
|
|
30824
|
+
{
|
|
30825
|
+
"id": "CWE-434",
|
|
30826
|
+
"name": "Unrestricted Upload of File with Dangerous Type",
|
|
30827
|
+
"category": "File Handling"
|
|
30828
|
+
},
|
|
30829
|
+
{
|
|
30830
|
+
"id": "CWE-672",
|
|
30831
|
+
"name": "Operation on a Resource after Expiration or Release",
|
|
30832
|
+
"category": "Memory Safety"
|
|
30833
|
+
},
|
|
30834
|
+
{
|
|
30835
|
+
"id": "CWE-732",
|
|
30836
|
+
"name": "Incorrect Permission Assignment for Critical Resource",
|
|
30837
|
+
"category": "Authorization"
|
|
30838
|
+
},
|
|
30839
|
+
{
|
|
30840
|
+
"id": "CWE-78",
|
|
30841
|
+
"name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
|
|
30842
|
+
"category": "Injection"
|
|
30843
|
+
},
|
|
30844
|
+
{
|
|
30845
|
+
"id": "CWE-787",
|
|
30846
|
+
"name": "Out-of-bounds Write",
|
|
30847
|
+
"category": "Memory Safety"
|
|
30848
|
+
},
|
|
30849
|
+
{
|
|
30850
|
+
"id": "CWE-79",
|
|
30851
|
+
"name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
|
|
30852
|
+
"category": "Injection"
|
|
30853
|
+
},
|
|
30854
|
+
{
|
|
30855
|
+
"id": "CWE-798",
|
|
30856
|
+
"name": "Use of Hard-coded Credentials",
|
|
30857
|
+
"category": "Credentials"
|
|
30858
|
+
},
|
|
30859
|
+
{
|
|
30860
|
+
"id": "CWE-89",
|
|
30861
|
+
"name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
|
|
30862
|
+
"category": "Injection"
|
|
30863
|
+
},
|
|
30864
|
+
{
|
|
30865
|
+
"id": "CWE-918",
|
|
30866
|
+
"name": "Server-Side Request Forgery (SSRF)",
|
|
30867
|
+
"category": "Network"
|
|
30868
|
+
},
|
|
30869
|
+
{
|
|
30870
|
+
"id": "CWE-94",
|
|
30871
|
+
"name": "Improper Control of Generation of Code (Code Injection)",
|
|
30872
|
+
"category": "Injection"
|
|
30873
|
+
}
|
|
30874
|
+
],
|
|
30875
|
+
"atlas": [
|
|
30876
|
+
{
|
|
30877
|
+
"id": "AML.T0010",
|
|
30878
|
+
"name": "ML Supply Chain Compromise",
|
|
30879
|
+
"tactic": "Initial Access"
|
|
30880
|
+
},
|
|
30881
|
+
{
|
|
30882
|
+
"id": "AML.T0016",
|
|
30883
|
+
"name": "Obtain Capabilities: Develop Capabilities",
|
|
30884
|
+
"tactic": "Resource Development"
|
|
30885
|
+
},
|
|
30886
|
+
{
|
|
30887
|
+
"id": "AML.T0017",
|
|
30888
|
+
"name": "Discover ML Model Ontology",
|
|
30889
|
+
"tactic": "Discovery"
|
|
30890
|
+
},
|
|
30891
|
+
{
|
|
30892
|
+
"id": "AML.T0018",
|
|
30893
|
+
"name": "Backdoor ML Model",
|
|
30894
|
+
"tactic": "Persistence"
|
|
30895
|
+
},
|
|
30896
|
+
{
|
|
30897
|
+
"id": "AML.T0020",
|
|
30898
|
+
"name": "Poison Training Data",
|
|
30899
|
+
"tactic": "ML Attack Staging"
|
|
30900
|
+
},
|
|
30901
|
+
{
|
|
30902
|
+
"id": "AML.T0043",
|
|
30903
|
+
"name": "Craft Adversarial Data",
|
|
30904
|
+
"tactic": "ML Attack Staging"
|
|
30905
|
+
},
|
|
30906
|
+
{
|
|
30907
|
+
"id": "AML.T0051",
|
|
30908
|
+
"name": "LLM Prompt Injection",
|
|
30909
|
+
"tactic": "Execution"
|
|
30910
|
+
},
|
|
30911
|
+
{
|
|
30912
|
+
"id": "AML.T0054",
|
|
30913
|
+
"name": "LLM Jailbreak",
|
|
30914
|
+
"tactic": "Defense Evasion"
|
|
30915
|
+
},
|
|
30916
|
+
{
|
|
30917
|
+
"id": "AML.T0096",
|
|
30918
|
+
"name": "AI API as Covert C2 Channel",
|
|
30919
|
+
"tactic": "Command and Control"
|
|
30920
|
+
}
|
|
30921
|
+
],
|
|
30922
|
+
"d3fend": [
|
|
30923
|
+
{
|
|
30924
|
+
"id": "D3-ASLR",
|
|
30925
|
+
"name": "Address Space Layout Randomization",
|
|
30926
|
+
"tactic": "Harden"
|
|
30927
|
+
},
|
|
30928
|
+
{
|
|
30929
|
+
"id": "D3-CSPP",
|
|
30930
|
+
"name": "Client-server Payload Profiling",
|
|
30931
|
+
"tactic": "Detect"
|
|
30932
|
+
},
|
|
30933
|
+
{
|
|
30934
|
+
"id": "D3-EAL",
|
|
30935
|
+
"name": "Executable Allowlisting",
|
|
30936
|
+
"tactic": "Harden"
|
|
30937
|
+
},
|
|
30938
|
+
{
|
|
30939
|
+
"id": "D3-IOPR",
|
|
30940
|
+
"name": "Input/Output Profiling Resource",
|
|
30941
|
+
"tactic": "Detect"
|
|
30942
|
+
},
|
|
30943
|
+
{
|
|
30944
|
+
"id": "D3-NTA",
|
|
30945
|
+
"name": "Network Traffic Analysis",
|
|
30946
|
+
"tactic": "Detect"
|
|
30947
|
+
},
|
|
30948
|
+
{
|
|
30949
|
+
"id": "D3-PHRA",
|
|
30950
|
+
"name": "Process Hardware Resource Access",
|
|
30951
|
+
"tactic": "Isolate"
|
|
30952
|
+
},
|
|
30953
|
+
{
|
|
30954
|
+
"id": "D3-PSEP",
|
|
30955
|
+
"name": "Process Segment Execution Prevention",
|
|
30956
|
+
"tactic": "Harden"
|
|
30957
|
+
}
|
|
30958
|
+
],
|
|
30959
|
+
"framework_gaps": [
|
|
30960
|
+
{
|
|
30961
|
+
"id": "ALL-AI-PIPELINE-INTEGRITY",
|
|
30962
|
+
"framework": "ALL",
|
|
30963
|
+
"control_name": "AI Pipeline Integrity"
|
|
30964
|
+
},
|
|
30965
|
+
{
|
|
30966
|
+
"id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
|
|
30967
|
+
"framework": "ALL",
|
|
30968
|
+
"control_name": "Prompt Injection as Access Control Failure"
|
|
30969
|
+
},
|
|
30970
|
+
{
|
|
30971
|
+
"id": "CIS-Controls-v8-Control7",
|
|
30972
|
+
"framework": "CIS Controls v8",
|
|
30973
|
+
"control_name": "Continuous Vulnerability Management"
|
|
30974
|
+
},
|
|
30975
|
+
{
|
|
30976
|
+
"id": "CMMC-2.0-Level-2",
|
|
30977
|
+
"framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
|
|
30978
|
+
"control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
|
|
30979
|
+
},
|
|
30980
|
+
{
|
|
30981
|
+
"id": "FedRAMP-Rev5-Moderate",
|
|
30982
|
+
"framework": "FedRAMP Rev 5 Moderate",
|
|
30983
|
+
"control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
|
|
30984
|
+
},
|
|
30985
|
+
{
|
|
30986
|
+
"id": "IEC-62443-3-3",
|
|
30987
|
+
"framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
|
|
30988
|
+
"control_name": "System security requirements and security levels"
|
|
30989
|
+
},
|
|
30990
|
+
{
|
|
30991
|
+
"id": "ISO-27001-2022-A.8.28",
|
|
30992
|
+
"framework": "ISO/IEC 27001:2022",
|
|
30993
|
+
"control_name": "Secure coding"
|
|
30994
|
+
},
|
|
30995
|
+
{
|
|
30996
|
+
"id": "ISO-27001-2022-A.8.8",
|
|
30997
|
+
"framework": "ISO/IEC 27001:2022",
|
|
30998
|
+
"control_name": "Management of technical vulnerabilities"
|
|
30999
|
+
},
|
|
31000
|
+
{
|
|
31001
|
+
"id": "ISO-IEC-23894-2023-clause-7",
|
|
31002
|
+
"framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
|
|
31003
|
+
"control_name": "AI risk management process"
|
|
31004
|
+
},
|
|
31005
|
+
{
|
|
31006
|
+
"id": "NERC-CIP-007-6-R4",
|
|
31007
|
+
"framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
|
|
31008
|
+
"control_name": "Security event monitoring"
|
|
31009
|
+
},
|
|
31010
|
+
{
|
|
31011
|
+
"id": "NIS2-Art21-patch-management",
|
|
31012
|
+
"framework": "EU NIS2 Directive",
|
|
31013
|
+
"control_name": "Vulnerability handling and disclosure"
|
|
31014
|
+
},
|
|
31015
|
+
{
|
|
31016
|
+
"id": "NIST-800-115",
|
|
31017
|
+
"framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
|
|
31018
|
+
"control_name": "Technical Guide to Information Security Testing and Assessment"
|
|
31019
|
+
},
|
|
31020
|
+
{
|
|
31021
|
+
"id": "NIST-800-218-SSDF",
|
|
31022
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
31023
|
+
"control_name": "Secure Software Development Framework"
|
|
31024
|
+
},
|
|
31025
|
+
{
|
|
31026
|
+
"id": "NIST-800-53-AC-2",
|
|
31027
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
31028
|
+
"control_name": "Account Management"
|
|
31029
|
+
},
|
|
31030
|
+
{
|
|
31031
|
+
"id": "NIST-800-53-SC-8",
|
|
31032
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
31033
|
+
"control_name": "Transmission Confidentiality and Integrity"
|
|
31034
|
+
},
|
|
31035
|
+
{
|
|
31036
|
+
"id": "NIST-800-53-SI-2",
|
|
31037
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
31038
|
+
"control_name": "Flaw Remediation"
|
|
31039
|
+
},
|
|
31040
|
+
{
|
|
31041
|
+
"id": "NIST-800-53-SI-3",
|
|
31042
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
31043
|
+
"control_name": "Malicious Code Protection"
|
|
31044
|
+
},
|
|
31045
|
+
{
|
|
31046
|
+
"id": "NIST-800-82r3",
|
|
31047
|
+
"framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
|
|
31048
|
+
"control_name": "Guide to Operational Technology (OT) Security"
|
|
31049
|
+
},
|
|
31050
|
+
{
|
|
31051
|
+
"id": "OWASP-LLM-Top-10-2025-LLM01",
|
|
31052
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
31053
|
+
"control_name": "Prompt Injection"
|
|
31054
|
+
},
|
|
31055
|
+
{
|
|
31056
|
+
"id": "OWASP-LLM-Top-10-2025-LLM02",
|
|
31057
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
31058
|
+
"control_name": "Sensitive Information Disclosure"
|
|
31059
|
+
},
|
|
31060
|
+
{
|
|
31061
|
+
"id": "OWASP-Pen-Testing-Guide-v5",
|
|
31062
|
+
"framework": "OWASP Web Security Testing Guide v5 (WSTG)",
|
|
31063
|
+
"control_name": "Web application penetration testing methodology"
|
|
31064
|
+
},
|
|
31065
|
+
{
|
|
31066
|
+
"id": "PCI-DSS-4.0-6.3.3",
|
|
31067
|
+
"framework": "PCI DSS 4.0",
|
|
31068
|
+
"control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
|
|
31069
|
+
},
|
|
31070
|
+
{
|
|
31071
|
+
"id": "PTES-Pre-engagement",
|
|
31072
|
+
"framework": "Penetration Testing Execution Standard (PTES)",
|
|
31073
|
+
"control_name": "Pre-engagement Interactions"
|
|
31074
|
+
},
|
|
31075
|
+
{
|
|
31076
|
+
"id": "SOC2-CC6-logical-access",
|
|
31077
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
31078
|
+
"control_name": "Logical and Physical Access Controls"
|
|
31079
|
+
},
|
|
31080
|
+
{
|
|
31081
|
+
"id": "SOC2-CC9-vendor-management",
|
|
31082
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
31083
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
31084
|
+
}
|
|
31085
|
+
],
|
|
31086
|
+
"attack_refs": [
|
|
31087
|
+
"T0855",
|
|
31088
|
+
"T0883",
|
|
31089
|
+
"T1059",
|
|
31090
|
+
"T1068",
|
|
31091
|
+
"T1078",
|
|
31092
|
+
"T1133",
|
|
31093
|
+
"T1190",
|
|
31094
|
+
"T1548.001",
|
|
31095
|
+
"T1566"
|
|
31096
|
+
],
|
|
31097
|
+
"rfc_refs": [
|
|
31098
|
+
"RFC-4301",
|
|
31099
|
+
"RFC-4303",
|
|
31100
|
+
"RFC-7296"
|
|
31101
|
+
]
|
|
31102
|
+
}
|
|
31103
|
+
},
|
|
30018
31104
|
"CVE-2026-41091": {
|
|
30019
31105
|
"name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
|
|
30020
31106
|
"rwep": 45,
|
|
@@ -56431,6 +57517,9 @@
|
|
|
56431
57517
|
"CVE-2026-22688",
|
|
56432
57518
|
"CVE-2026-24206",
|
|
56433
57519
|
"CVE-2026-24207",
|
|
57520
|
+
"CVE-2026-24213",
|
|
57521
|
+
"CVE-2026-24214",
|
|
57522
|
+
"CVE-2026-24215",
|
|
56434
57523
|
"CVE-2026-25592",
|
|
56435
57524
|
"CVE-2026-26015",
|
|
56436
57525
|
"CVE-2026-30615",
|
|
@@ -56812,6 +57901,9 @@
|
|
|
56812
57901
|
"CVE-2026-22688",
|
|
56813
57902
|
"CVE-2026-24206",
|
|
56814
57903
|
"CVE-2026-24207",
|
|
57904
|
+
"CVE-2026-24213",
|
|
57905
|
+
"CVE-2026-24214",
|
|
57906
|
+
"CVE-2026-24215",
|
|
56815
57907
|
"CVE-2026-25592",
|
|
56816
57908
|
"CVE-2026-26015",
|
|
56817
57909
|
"CVE-2026-30616",
|
|
@@ -56988,6 +58080,9 @@
|
|
|
56988
58080
|
"CVE-2026-22688",
|
|
56989
58081
|
"CVE-2026-24206",
|
|
56990
58082
|
"CVE-2026-24207",
|
|
58083
|
+
"CVE-2026-24213",
|
|
58084
|
+
"CVE-2026-24214",
|
|
58085
|
+
"CVE-2026-24215",
|
|
56991
58086
|
"CVE-2026-25592",
|
|
56992
58087
|
"CVE-2026-26015",
|
|
56993
58088
|
"CVE-2026-30616",
|
|
@@ -57178,6 +58273,9 @@
|
|
|
57178
58273
|
"CVE-2026-22688",
|
|
57179
58274
|
"CVE-2026-24206",
|
|
57180
58275
|
"CVE-2026-24207",
|
|
58276
|
+
"CVE-2026-24213",
|
|
58277
|
+
"CVE-2026-24214",
|
|
58278
|
+
"CVE-2026-24215",
|
|
57181
58279
|
"CVE-2026-25592",
|
|
57182
58280
|
"CVE-2026-26015",
|
|
57183
58281
|
"CVE-2026-30616",
|
|
@@ -57474,6 +58572,9 @@
|
|
|
57474
58572
|
"CVE-2026-22778",
|
|
57475
58573
|
"CVE-2026-24206",
|
|
57476
58574
|
"CVE-2026-24207",
|
|
58575
|
+
"CVE-2026-24213",
|
|
58576
|
+
"CVE-2026-24214",
|
|
58577
|
+
"CVE-2026-24215",
|
|
57477
58578
|
"CVE-2026-25592",
|
|
57478
58579
|
"CVE-2026-26015",
|
|
57479
58580
|
"CVE-2026-30615",
|
|
@@ -57899,6 +59000,9 @@
|
|
|
57899
59000
|
"CVE-2026-24061",
|
|
57900
59001
|
"CVE-2026-24206",
|
|
57901
59002
|
"CVE-2026-24207",
|
|
59003
|
+
"CVE-2026-24213",
|
|
59004
|
+
"CVE-2026-24214",
|
|
59005
|
+
"CVE-2026-24215",
|
|
57902
59006
|
"CVE-2026-2441",
|
|
57903
59007
|
"CVE-2026-24423",
|
|
57904
59008
|
"CVE-2026-24858",
|
|
@@ -58560,6 +59664,9 @@
|
|
|
58560
59664
|
"CVE-2026-22688",
|
|
58561
59665
|
"CVE-2026-24206",
|
|
58562
59666
|
"CVE-2026-24207",
|
|
59667
|
+
"CVE-2026-24213",
|
|
59668
|
+
"CVE-2026-24214",
|
|
59669
|
+
"CVE-2026-24215",
|
|
58563
59670
|
"CVE-2026-25592",
|
|
58564
59671
|
"CVE-2026-26015",
|
|
58565
59672
|
"CVE-2026-30615",
|
|
@@ -59175,6 +60282,9 @@
|
|
|
59175
60282
|
"CVE-2026-22688",
|
|
59176
60283
|
"CVE-2026-24206",
|
|
59177
60284
|
"CVE-2026-24207",
|
|
60285
|
+
"CVE-2026-24213",
|
|
60286
|
+
"CVE-2026-24214",
|
|
60287
|
+
"CVE-2026-24215",
|
|
59178
60288
|
"CVE-2026-25592",
|
|
59179
60289
|
"CVE-2026-26015",
|
|
59180
60290
|
"CVE-2026-30615",
|
|
@@ -59424,6 +60534,9 @@
|
|
|
59424
60534
|
"CVE-2026-22688",
|
|
59425
60535
|
"CVE-2026-24206",
|
|
59426
60536
|
"CVE-2026-24207",
|
|
60537
|
+
"CVE-2026-24213",
|
|
60538
|
+
"CVE-2026-24214",
|
|
60539
|
+
"CVE-2026-24215",
|
|
59427
60540
|
"CVE-2026-25592",
|
|
59428
60541
|
"CVE-2026-26015",
|
|
59429
60542
|
"CVE-2026-30615",
|
|
@@ -60107,6 +61220,9 @@
|
|
|
60107
61220
|
"CVE-2026-22688",
|
|
60108
61221
|
"CVE-2026-24206",
|
|
60109
61222
|
"CVE-2026-24207",
|
|
61223
|
+
"CVE-2026-24213",
|
|
61224
|
+
"CVE-2026-24214",
|
|
61225
|
+
"CVE-2026-24215",
|
|
60110
61226
|
"CVE-2026-25592",
|
|
60111
61227
|
"CVE-2026-26015",
|
|
60112
61228
|
"CVE-2026-30615",
|
|
@@ -60537,6 +61653,9 @@
|
|
|
60537
61653
|
"CVE-2026-24061",
|
|
60538
61654
|
"CVE-2026-24206",
|
|
60539
61655
|
"CVE-2026-24207",
|
|
61656
|
+
"CVE-2026-24213",
|
|
61657
|
+
"CVE-2026-24214",
|
|
61658
|
+
"CVE-2026-24215",
|
|
60540
61659
|
"CVE-2026-2441",
|
|
60541
61660
|
"CVE-2026-24423",
|
|
60542
61661
|
"CVE-2026-24858",
|
|
@@ -60973,6 +62092,9 @@
|
|
|
60973
62092
|
"CVE-2026-24061",
|
|
60974
62093
|
"CVE-2026-24206",
|
|
60975
62094
|
"CVE-2026-24207",
|
|
62095
|
+
"CVE-2026-24213",
|
|
62096
|
+
"CVE-2026-24214",
|
|
62097
|
+
"CVE-2026-24215",
|
|
60976
62098
|
"CVE-2026-2441",
|
|
60977
62099
|
"CVE-2026-24423",
|
|
60978
62100
|
"CVE-2026-24858",
|
|
@@ -61267,6 +62389,9 @@
|
|
|
61267
62389
|
"CVE-2026-22688",
|
|
61268
62390
|
"CVE-2026-24206",
|
|
61269
62391
|
"CVE-2026-24207",
|
|
62392
|
+
"CVE-2026-24213",
|
|
62393
|
+
"CVE-2026-24214",
|
|
62394
|
+
"CVE-2026-24215",
|
|
61270
62395
|
"CVE-2026-25592",
|
|
61271
62396
|
"CVE-2026-26015",
|
|
61272
62397
|
"CVE-2026-30615",
|
|
@@ -62249,6 +63374,9 @@
|
|
|
62249
63374
|
"CVE-2026-24061",
|
|
62250
63375
|
"CVE-2026-24206",
|
|
62251
63376
|
"CVE-2026-24207",
|
|
63377
|
+
"CVE-2026-24213",
|
|
63378
|
+
"CVE-2026-24214",
|
|
63379
|
+
"CVE-2026-24215",
|
|
62252
63380
|
"CVE-2026-2441",
|
|
62253
63381
|
"CVE-2026-24423",
|
|
62254
63382
|
"CVE-2026-24858",
|
|
@@ -62607,6 +63735,9 @@
|
|
|
62607
63735
|
"CVE-2026-22688",
|
|
62608
63736
|
"CVE-2026-24206",
|
|
62609
63737
|
"CVE-2026-24207",
|
|
63738
|
+
"CVE-2026-24213",
|
|
63739
|
+
"CVE-2026-24214",
|
|
63740
|
+
"CVE-2026-24215",
|
|
62610
63741
|
"CVE-2026-25592",
|
|
62611
63742
|
"CVE-2026-26015",
|
|
62612
63743
|
"CVE-2026-30615",
|
|
@@ -63120,6 +64251,9 @@
|
|
|
63120
64251
|
"CVE-2026-24061",
|
|
63121
64252
|
"CVE-2026-24206",
|
|
63122
64253
|
"CVE-2026-24207",
|
|
64254
|
+
"CVE-2026-24213",
|
|
64255
|
+
"CVE-2026-24214",
|
|
64256
|
+
"CVE-2026-24215",
|
|
63123
64257
|
"CVE-2026-2441",
|
|
63124
64258
|
"CVE-2026-24423",
|
|
63125
64259
|
"CVE-2026-24858",
|
|
@@ -63490,6 +64624,9 @@
|
|
|
63490
64624
|
"CVE-2026-22688",
|
|
63491
64625
|
"CVE-2026-24206",
|
|
63492
64626
|
"CVE-2026-24207",
|
|
64627
|
+
"CVE-2026-24213",
|
|
64628
|
+
"CVE-2026-24214",
|
|
64629
|
+
"CVE-2026-24215",
|
|
63493
64630
|
"CVE-2026-25592",
|
|
63494
64631
|
"CVE-2026-26015",
|
|
63495
64632
|
"CVE-2026-30615",
|
|
@@ -64442,6 +65579,9 @@
|
|
|
64442
65579
|
"CVE-2026-22688",
|
|
64443
65580
|
"CVE-2026-24206",
|
|
64444
65581
|
"CVE-2026-24207",
|
|
65582
|
+
"CVE-2026-24213",
|
|
65583
|
+
"CVE-2026-24214",
|
|
65584
|
+
"CVE-2026-24215",
|
|
64445
65585
|
"CVE-2026-25592",
|
|
64446
65586
|
"CVE-2026-26015",
|
|
64447
65587
|
"CVE-2026-30615",
|
|
@@ -64550,6 +65690,9 @@
|
|
|
64550
65690
|
"CVE-2026-22688",
|
|
64551
65691
|
"CVE-2026-24206",
|
|
64552
65692
|
"CVE-2026-24207",
|
|
65693
|
+
"CVE-2026-24213",
|
|
65694
|
+
"CVE-2026-24214",
|
|
65695
|
+
"CVE-2026-24215",
|
|
64553
65696
|
"CVE-2026-25592",
|
|
64554
65697
|
"CVE-2026-26015",
|
|
64555
65698
|
"CVE-2026-30616",
|
|
@@ -64735,6 +65878,9 @@
|
|
|
64735
65878
|
"CVE-2026-22778",
|
|
64736
65879
|
"CVE-2026-24206",
|
|
64737
65880
|
"CVE-2026-24207",
|
|
65881
|
+
"CVE-2026-24213",
|
|
65882
|
+
"CVE-2026-24214",
|
|
65883
|
+
"CVE-2026-24215",
|
|
64738
65884
|
"CVE-2026-25592",
|
|
64739
65885
|
"CVE-2026-26015",
|
|
64740
65886
|
"CVE-2026-30616",
|
|
@@ -65337,6 +66483,9 @@
|
|
|
65337
66483
|
"CVE-2026-22769",
|
|
65338
66484
|
"CVE-2026-23760",
|
|
65339
66485
|
"CVE-2026-24061",
|
|
66486
|
+
"CVE-2026-24213",
|
|
66487
|
+
"CVE-2026-24214",
|
|
66488
|
+
"CVE-2026-24215",
|
|
65340
66489
|
"CVE-2026-2441",
|
|
65341
66490
|
"CVE-2026-24423",
|
|
65342
66491
|
"CVE-2026-24858",
|
|
@@ -65630,6 +66779,9 @@
|
|
|
65630
66779
|
"CVE-2026-22688",
|
|
65631
66780
|
"CVE-2026-24206",
|
|
65632
66781
|
"CVE-2026-24207",
|
|
66782
|
+
"CVE-2026-24213",
|
|
66783
|
+
"CVE-2026-24214",
|
|
66784
|
+
"CVE-2026-24215",
|
|
65633
66785
|
"CVE-2026-25592",
|
|
65634
66786
|
"CVE-2026-26015",
|
|
65635
66787
|
"CVE-2026-30615",
|
|
@@ -65937,6 +67089,9 @@
|
|
|
65937
67089
|
"CVE-2026-22778",
|
|
65938
67090
|
"CVE-2026-24206",
|
|
65939
67091
|
"CVE-2026-24207",
|
|
67092
|
+
"CVE-2026-24213",
|
|
67093
|
+
"CVE-2026-24214",
|
|
67094
|
+
"CVE-2026-24215",
|
|
65940
67095
|
"CVE-2026-25592",
|
|
65941
67096
|
"CVE-2026-26015",
|
|
65942
67097
|
"CVE-2026-30615",
|