@blamejs/exceptd-skills 0.13.90 → 0.13.91

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +385 -0
  6. package/data/atlas-ttps.json +1 -0
  7. package/data/attack-techniques.json +2 -0
  8. package/data/cve-catalog.json +104 -0
  9. package/data/cwe-catalog.json +2 -0
  10. package/data/framework-control-gaps.json +8 -0
  11. package/data/zeroday-lessons.json +50 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/CHANGELOG.md CHANGED
@@ -1,5 +1,9 @@
1
1
  # Changelog
2
2
 
3
+ ## 0.13.91 — 2026-05-25
4
+
5
+ CVE catalog — MLflow recipe template-injection XSS. Adds **CVE-2024-27132** (CWE-79, NIST CVSS 9.6 CRITICAL): MLflow renders recipe template variables without sufficient sanitization, so running an untrusted recipe executes script in the victim's MLflow session (stored XSS) and pivots to client-side remote code execution against the tracking-server UI; fixed in 2.10.0. Maps ATLAS AML.T0049 and ATT&CK T1189 / T1059.007, with a zero-day lesson (NEW-CTRL-097) requiring the MLOps platform UI to output-encode all user/community-supplied content it renders (recipe variables, run metadata, model cards) and stay off untrusted networks. Complements the existing MLflow path-traversal entry (CVE-2023-43472). CVE count 363 → 364.
6
+
3
7
  ## 0.13.90 — 2026-05-25
4
8
 
5
9
  CVE catalog — vLLM distributed-serving ZeroMQ transport. Adds two flaws in vLLM's multi-node serving transport, both fixed in 0.8.5. **CVE-2025-32444** (CWE-502, NIST CVSS 9.8) — the Mooncake KV-transfer integration exchanges serialized data over unsecured ZeroMQ sockets, giving an unauthenticated network attacker remote code execution; unlike the off-by-default V0-engine ShadowMQ flaw, the Mooncake sockets are network-reachable when the integration is enabled. **CVE-2025-30202** (CWE-770, NIST CVSS 7.5) — multi-node deployments bind the primary host's XPUB ZeroMQ socket to all interfaces, exposing the broadcast data stream and enabling denial of service. Both map ATLAS AML.T0049 and ATT&CK T1190 (+ T1059 / T1499 / T1040), and they reuse the inference-IPC deserialization-safety control (NEW-CTRL-086) shared with the ShadowMQ family — a safe serializer, peer authentication, and loopback/trusted-segment binding across every inference engine. CVE count 361 → 363.
package/data/_indexes/_meta.json CHANGED
@@ -1,21 +1,21 @@
1
1
  {
2
2
  "schema_version": "1.1.0",
3
- "generated_at": "2026-05-26T01:16:05.835Z",
3
+ "generated_at": "2026-05-26T01:37:09.110Z",
4
4
  "generator": "scripts/build-indexes.js",
5
5
  "source_count": 54,
6
6
  "source_hashes": {
7
- "manifest.json": "f74359c7b5150ab289a33fa9bdde7e9b461386dff56c09c610f9717a7ef66d82",
8
- "data/atlas-ttps.json": "52d6520ba54c4d42a6733476dd0ceab80c96c1f234577c75469a68e957a7698e",
9
- "data/attack-techniques.json": "42393f480e6d998f5878b8b878cc268be2f349b5c064fc58f3a45b545708d7c0",
10
- "data/cve-catalog.json": "e4f4658a5d8678305d37498da2a3d81c1a8f6a7c546ecf1291a2d3aeae94a3e0",
11
- "data/cwe-catalog.json": "6646fd3e6dbe3d9e2f925ddf0e8d8ae0515d7b4385360afbe2206f348e43fcfc",
7
+ "manifest.json": "a4eac1fd8a86e102e599b78383b701c7711dfab4a783ae62a85737babb34fc2f",
8
+ "data/atlas-ttps.json": "1a6452f10f8919689c664fe01651513bf14041533de01e86521d1fef93a78b84",
9
+ "data/attack-techniques.json": "cea9e6be34a28b3fd4b8d5d0987f6b1e0579df59944c4a2580577a0255eb209c",
10
+ "data/cve-catalog.json": "71467957a802aa26762120adecf504d9d15f073e229c996147883348e8888f79",
11
+ "data/cwe-catalog.json": "6efc5e5d437b3057deda7e2892d758ae602d21bb9db5de99710d27675e12ea54",
12
12
  "data/d3fend-catalog.json": "9a54bccb9f24f84b32024216cc3f53819a053721ac8ab43c326859e68fc0ffaf",
13
13
  "data/dlp-controls.json": "d2406c482dddd30e49203879999dc4b3a7fd4d0494d6a61d86b91ee76415df19",
14
14
  "data/exploit-availability.json": "ec2656f0d9a893610e27b43eb6035fe9b18e057c9f6dfaac7e7d4959bbcbb795",
15
- "data/framework-control-gaps.json": "964fd894535e467005ec1a5648f6167a0277fe4d4493110d6909f0ee95e59a67",
15
+ "data/framework-control-gaps.json": "9791a8528960a5443dcb6cdc18fef55d43462cd0550870ed8898107123823df5",
16
16
  "data/global-frameworks.json": "9ba563a85f7f8d6c3c957de64945e20925a89d0ed6ea6fc561cf093811acf558",
17
17
  "data/rfc-references.json": "66ef2e1f444a2cf0c2700a754f0a66030bb8a91d9e68394b9537ea1fe8b904fe",
18
- "data/zeroday-lessons.json": "a606ceab361958fffcbe48b624a965d83055f70d4768e1d262f2798fda92e67c",
18
+ "data/zeroday-lessons.json": "ec7a19887bc372240279f28271010d3c9db18c76c62c9c8fb15b7685a484d5d5",
19
19
  "skills/kernel-lpe-triage/skill.md": "08b3e9815ba481c57c80f5fc0ccbf5bb7cbb41f570c235ba6ff9596b8c07354d",
20
20
  "skills/ai-attack-surface/skill.md": "c4c1eb22a38ca7a959b5725222bab8fbd4f4044a548a93f3e288e6f698334b72",
21
21
  "skills/mcp-agent-trust/skill.md": "89ac89084391d2341b6513fefb1be2d36b93de1c130f057696219c1c59440f13",
@@ -72,7 +72,7 @@
72
72
  "dlp_refs": 0
73
73
  },
74
74
  "trigger_table_entries": 538,
75
- "chains_cve_entries": 352,
75
+ "chains_cve_entries": 353,
76
76
  "chains_cwe_entries": 171,
77
77
  "jurisdictions_indexed": 29,
78
78
  "handoff_dag_nodes": 42,
package/data/_indexes/activity-feed.json CHANGED
@@ -149,7 +149,7 @@
149
149
  "artifact": "data/cve-catalog.json",
150
150
  "path": "data/cve-catalog.json",
151
151
  "schema_version": "1.0.0",
152
- "entry_count": 363
152
+ "entry_count": 364
153
153
  },
154
154
  {
155
155
  "date": "2026-05-18",
@@ -165,7 +165,7 @@
165
165
  "artifact": "data/zeroday-lessons.json",
166
166
  "path": "data/zeroday-lessons.json",
167
167
  "schema_version": "1.1.0",
168
- "entry_count": 358
168
+ "entry_count": 359
169
169
  },
170
170
  {
171
171
  "date": "2026-05-17",
package/data/_indexes/catalog-summaries.json CHANGED
@@ -62,7 +62,7 @@
62
62
  "rebuild_after_days": 365,
63
63
  "note": "Per-entry last_verified governs decay. Skills depending on this catalog must check entry freshness before high-stakes use."
64
64
  },
65
- "entry_count": 363,
65
+ "entry_count": 364,
66
66
  "sample_keys": [
67
67
  "CVE-2025-53773",
68
68
  "CVE-2026-30615",
@@ -238,7 +238,7 @@
238
238
  "rebuild_after_days": 365,
239
239
  "note": "Per-entry last_verified governs decay. Skills depending on this catalog must check entry freshness before high-stakes use."
240
240
  },
241
- "entry_count": 358,
241
+ "entry_count": 359,
242
242
  "sample_keys": [
243
243
  "CVE-2026-31431",
244
244
  "CVE-2025-53773",
package/data/_indexes/chains.json CHANGED
@@ -31965,6 +31965,368 @@
31965
31965
  ]
31966
31966
  }
31967
31967
  },
31968
+ "CVE-2024-27132": {
31969
+ "name": "MLflow Recipe Template Injection XSS to Client-Side RCE",
31970
+ "rwep": 29,
31971
+ "cvss": 9.6,
31972
+ "cisa_kev": false,
31973
+ "epss_score": null,
31974
+ "referencing_skills": [
31975
+ "kernel-lpe-triage",
31976
+ "ai-attack-surface",
31977
+ "compliance-theater",
31978
+ "attack-surface-pentest",
31979
+ "ot-ics-security",
31980
+ "coordinated-vuln-disclosure",
31981
+ "sector-energy"
31982
+ ],
31983
+ "chain": {
31984
+ "cwes": [
31985
+ {
31986
+ "id": "CWE-1037",
31987
+ "name": "Processor Optimization Removal or Modification of Security-critical Code",
31988
+ "category": "Hardware / Side Channel"
31989
+ },
31990
+ {
31991
+ "id": "CWE-1039",
31992
+ "name": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations",
31993
+ "category": "AI/ML"
31994
+ },
31995
+ {
31996
+ "id": "CWE-125",
31997
+ "name": "Out-of-bounds Read",
31998
+ "category": "Memory Safety"
31999
+ },
32000
+ {
32001
+ "id": "CWE-1357",
32002
+ "name": "Reliance on Insufficiently Trustworthy Component",
32003
+ "category": "Supply Chain"
32004
+ },
32005
+ {
32006
+ "id": "CWE-1395",
32007
+ "name": "Dependency on Vulnerable Third-Party Component",
32008
+ "category": "Supply Chain"
32009
+ },
32010
+ {
32011
+ "id": "CWE-1426",
32012
+ "name": "Improper Validation of Generative AI Output",
32013
+ "category": "AI/ML"
32014
+ },
32015
+ {
32016
+ "id": "CWE-22",
32017
+ "name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
32018
+ "category": "Path/Resource"
32019
+ },
32020
+ {
32021
+ "id": "CWE-269",
32022
+ "name": "Improper Privilege Management",
32023
+ "category": "Authorization"
32024
+ },
32025
+ {
32026
+ "id": "CWE-287",
32027
+ "name": "Improper Authentication",
32028
+ "category": "Authentication"
32029
+ },
32030
+ {
32031
+ "id": "CWE-306",
32032
+ "name": "Missing Authentication for Critical Function",
32033
+ "category": "Authentication"
32034
+ },
32035
+ {
32036
+ "id": "CWE-352",
32037
+ "name": "Cross-Site Request Forgery (CSRF)",
32038
+ "category": "Session"
32039
+ },
32040
+ {
32041
+ "id": "CWE-362",
32042
+ "name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
32043
+ "category": "Concurrency"
32044
+ },
32045
+ {
32046
+ "id": "CWE-416",
32047
+ "name": "Use After Free",
32048
+ "category": "Memory Safety"
32049
+ },
32050
+ {
32051
+ "id": "CWE-434",
32052
+ "name": "Unrestricted Upload of File with Dangerous Type",
32053
+ "category": "File Handling"
32054
+ },
32055
+ {
32056
+ "id": "CWE-672",
32057
+ "name": "Operation on a Resource after Expiration or Release",
32058
+ "category": "Memory Safety"
32059
+ },
32060
+ {
32061
+ "id": "CWE-732",
32062
+ "name": "Incorrect Permission Assignment for Critical Resource",
32063
+ "category": "Authorization"
32064
+ },
32065
+ {
32066
+ "id": "CWE-78",
32067
+ "name": "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)",
32068
+ "category": "Injection"
32069
+ },
32070
+ {
32071
+ "id": "CWE-787",
32072
+ "name": "Out-of-bounds Write",
32073
+ "category": "Memory Safety"
32074
+ },
32075
+ {
32076
+ "id": "CWE-79",
32077
+ "name": "Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)",
32078
+ "category": "Injection"
32079
+ },
32080
+ {
32081
+ "id": "CWE-798",
32082
+ "name": "Use of Hard-coded Credentials",
32083
+ "category": "Credentials"
32084
+ },
32085
+ {
32086
+ "id": "CWE-89",
32087
+ "name": "Improper Neutralization of Special Elements used in an SQL Command (SQL Injection)",
32088
+ "category": "Injection"
32089
+ },
32090
+ {
32091
+ "id": "CWE-918",
32092
+ "name": "Server-Side Request Forgery (SSRF)",
32093
+ "category": "Network"
32094
+ },
32095
+ {
32096
+ "id": "CWE-94",
32097
+ "name": "Improper Control of Generation of Code (Code Injection)",
32098
+ "category": "Injection"
32099
+ }
32100
+ ],
32101
+ "atlas": [
32102
+ {
32103
+ "id": "AML.T0010",
32104
+ "name": "ML Supply Chain Compromise",
32105
+ "tactic": "Initial Access"
32106
+ },
32107
+ {
32108
+ "id": "AML.T0016",
32109
+ "name": "Obtain Capabilities: Develop Capabilities",
32110
+ "tactic": "Resource Development"
32111
+ },
32112
+ {
32113
+ "id": "AML.T0017",
32114
+ "name": "Discover ML Model Ontology",
32115
+ "tactic": "Discovery"
32116
+ },
32117
+ {
32118
+ "id": "AML.T0018",
32119
+ "name": "Backdoor ML Model",
32120
+ "tactic": "Persistence"
32121
+ },
32122
+ {
32123
+ "id": "AML.T0020",
32124
+ "name": "Poison Training Data",
32125
+ "tactic": "ML Attack Staging"
32126
+ },
32127
+ {
32128
+ "id": "AML.T0043",
32129
+ "name": "Craft Adversarial Data",
32130
+ "tactic": "ML Attack Staging"
32131
+ },
32132
+ {
32133
+ "id": "AML.T0051",
32134
+ "name": "LLM Prompt Injection",
32135
+ "tactic": "Execution"
32136
+ },
32137
+ {
32138
+ "id": "AML.T0054",
32139
+ "name": "LLM Jailbreak",
32140
+ "tactic": "Defense Evasion"
32141
+ },
32142
+ {
32143
+ "id": "AML.T0096",
32144
+ "name": "AI API as Covert C2 Channel",
32145
+ "tactic": "Command and Control"
32146
+ }
32147
+ ],
32148
+ "d3fend": [
32149
+ {
32150
+ "id": "D3-ASLR",
32151
+ "name": "Address Space Layout Randomization",
32152
+ "tactic": "Harden"
32153
+ },
32154
+ {
32155
+ "id": "D3-CSPP",
32156
+ "name": "Client-server Payload Profiling",
32157
+ "tactic": "Detect"
32158
+ },
32159
+ {
32160
+ "id": "D3-EAL",
32161
+ "name": "Executable Allowlisting",
32162
+ "tactic": "Harden"
32163
+ },
32164
+ {
32165
+ "id": "D3-IOPR",
32166
+ "name": "Input/Output Profiling Resource",
32167
+ "tactic": "Detect"
32168
+ },
32169
+ {
32170
+ "id": "D3-NTA",
32171
+ "name": "Network Traffic Analysis",
32172
+ "tactic": "Detect"
32173
+ },
32174
+ {
32175
+ "id": "D3-PHRA",
32176
+ "name": "Process Hardware Resource Access",
32177
+ "tactic": "Isolate"
32178
+ },
32179
+ {
32180
+ "id": "D3-PSEP",
32181
+ "name": "Process Segment Execution Prevention",
32182
+ "tactic": "Harden"
32183
+ }
32184
+ ],
32185
+ "framework_gaps": [
32186
+ {
32187
+ "id": "ALL-AI-PIPELINE-INTEGRITY",
32188
+ "framework": "ALL",
32189
+ "control_name": "AI Pipeline Integrity"
32190
+ },
32191
+ {
32192
+ "id": "ALL-PROMPT-INJECTION-ACCESS-CONTROL",
32193
+ "framework": "ALL",
32194
+ "control_name": "Prompt Injection as Access Control Failure"
32195
+ },
32196
+ {
32197
+ "id": "CIS-Controls-v8-Control7",
32198
+ "framework": "CIS Controls v8",
32199
+ "control_name": "Continuous Vulnerability Management"
32200
+ },
32201
+ {
32202
+ "id": "CMMC-2.0-Level-2",
32203
+ "framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
32204
+ "control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
32205
+ },
32206
+ {
32207
+ "id": "FedRAMP-Rev5-Moderate",
32208
+ "framework": "FedRAMP Rev 5 Moderate",
32209
+ "control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
32210
+ },
32211
+ {
32212
+ "id": "IEC-62443-3-3",
32213
+ "framework": "IEC 62443-3-3 (Industrial communication networks — security for IACS)",
32214
+ "control_name": "System security requirements and security levels"
32215
+ },
32216
+ {
32217
+ "id": "ISO-27001-2022-A.8.28",
32218
+ "framework": "ISO/IEC 27001:2022",
32219
+ "control_name": "Secure coding"
32220
+ },
32221
+ {
32222
+ "id": "ISO-27001-2022-A.8.8",
32223
+ "framework": "ISO/IEC 27001:2022",
32224
+ "control_name": "Management of technical vulnerabilities"
32225
+ },
32226
+ {
32227
+ "id": "ISO-IEC-23894-2023-clause-7",
32228
+ "framework": "ISO/IEC 23894:2023 (AI Risk Management Guidance)",
32229
+ "control_name": "AI risk management process"
32230
+ },
32231
+ {
32232
+ "id": "NERC-CIP-007-6-R4",
32233
+ "framework": "NERC CIP-007-6 (BES Cyber System Security Management)",
32234
+ "control_name": "Security event monitoring"
32235
+ },
32236
+ {
32237
+ "id": "NIS2-Art21-patch-management",
32238
+ "framework": "EU NIS2 Directive",
32239
+ "control_name": "Vulnerability handling and disclosure"
32240
+ },
32241
+ {
32242
+ "id": "NIST-800-115",
32243
+ "framework": "NIST SP 800-115 (Technical Guide to Information Security Testing and Assessment)",
32244
+ "control_name": "Technical Guide to Information Security Testing and Assessment"
32245
+ },
32246
+ {
32247
+ "id": "NIST-800-218-SSDF",
32248
+ "framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
32249
+ "control_name": "Secure Software Development Framework"
32250
+ },
32251
+ {
32252
+ "id": "NIST-800-53-AC-2",
32253
+ "framework": "NIST SP 800-53 Rev 5",
32254
+ "control_name": "Account Management"
32255
+ },
32256
+ {
32257
+ "id": "NIST-800-53-SC-8",
32258
+ "framework": "NIST SP 800-53 Rev 5",
32259
+ "control_name": "Transmission Confidentiality and Integrity"
32260
+ },
32261
+ {
32262
+ "id": "NIST-800-53-SI-2",
32263
+ "framework": "NIST SP 800-53 Rev 5",
32264
+ "control_name": "Flaw Remediation"
32265
+ },
32266
+ {
32267
+ "id": "NIST-800-53-SI-3",
32268
+ "framework": "NIST SP 800-53 Rev 5",
32269
+ "control_name": "Malicious Code Protection"
32270
+ },
32271
+ {
32272
+ "id": "NIST-800-82r3",
32273
+ "framework": "NIST SP 800-82 Rev 3 (Guide to OT Security)",
32274
+ "control_name": "Guide to Operational Technology (OT) Security"
32275
+ },
32276
+ {
32277
+ "id": "OWASP-LLM-Top-10-2025-LLM01",
32278
+ "framework": "OWASP Top 10 for LLM Applications 2025",
32279
+ "control_name": "Prompt Injection"
32280
+ },
32281
+ {
32282
+ "id": "OWASP-LLM-Top-10-2025-LLM02",
32283
+ "framework": "OWASP Top 10 for LLM Applications 2025",
32284
+ "control_name": "Sensitive Information Disclosure"
32285
+ },
32286
+ {
32287
+ "id": "OWASP-Pen-Testing-Guide-v5",
32288
+ "framework": "OWASP Web Security Testing Guide v5 (WSTG)",
32289
+ "control_name": "Web application penetration testing methodology"
32290
+ },
32291
+ {
32292
+ "id": "PCI-DSS-4.0-6.3.3",
32293
+ "framework": "PCI DSS 4.0",
32294
+ "control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
32295
+ },
32296
+ {
32297
+ "id": "PTES-Pre-engagement",
32298
+ "framework": "Penetration Testing Execution Standard (PTES)",
32299
+ "control_name": "Pre-engagement Interactions"
32300
+ },
32301
+ {
32302
+ "id": "SOC2-CC6-logical-access",
32303
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
32304
+ "control_name": "Logical and Physical Access Controls"
32305
+ },
32306
+ {
32307
+ "id": "SOC2-CC9-vendor-management",
32308
+ "framework": "SOC 2 (AICPA Trust Services Criteria)",
32309
+ "control_name": "Risk Mitigation — Vendor and Business Partner Risk"
32310
+ }
32311
+ ],
32312
+ "attack_refs": [
32313
+ "T0855",
32314
+ "T0883",
32315
+ "T1059",
32316
+ "T1068",
32317
+ "T1078",
32318
+ "T1133",
32319
+ "T1190",
32320
+ "T1548.001",
32321
+ "T1566"
32322
+ ],
32323
+ "rfc_refs": [
32324
+ "RFC-4301",
32325
+ "RFC-4303",
32326
+ "RFC-7296"
32327
+ ]
32328
+ }
32329
+ },
31968
32330
  "CVE-2026-41091": {
31969
32331
  "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
31970
32332
  "rwep": 45,
@@ -58350,6 +58712,7 @@
58350
58712
  "CVE-2024-11393",
58351
58713
  "CVE-2024-11394",
58352
58714
  "CVE-2024-1561",
58715
+ "CVE-2024-27132",
58353
58716
  "CVE-2024-3094",
58354
58717
  "CVE-2024-3154",
58355
58718
  "CVE-2024-37032",
@@ -58740,6 +59103,7 @@
58740
59103
  "CVE-2024-11393",
58741
59104
  "CVE-2024-11394",
58742
59105
  "CVE-2024-1561",
59106
+ "CVE-2024-27132",
58743
59107
  "CVE-2024-37032",
58744
59108
  "CVE-2024-39722",
58745
59109
  "CVE-2024-42478",
@@ -58921,6 +59285,7 @@
58921
59285
  "CVE-2024-11393",
58922
59286
  "CVE-2024-11394",
58923
59287
  "CVE-2024-1561",
59288
+ "CVE-2024-27132",
58924
59289
  "CVE-2024-37032",
58925
59290
  "CVE-2024-39722",
58926
59291
  "CVE-2024-42478",
@@ -59116,6 +59481,7 @@
59116
59481
  "CVE-2024-11393",
59117
59482
  "CVE-2024-11394",
59118
59483
  "CVE-2024-1561",
59484
+ "CVE-2024-27132",
59119
59485
  "CVE-2024-37032",
59120
59486
  "CVE-2024-39722",
59121
59487
  "CVE-2024-42478",
@@ -59415,6 +59781,7 @@
59415
59781
  "CVE-2024-11393",
59416
59782
  "CVE-2024-11394",
59417
59783
  "CVE-2024-1561",
59784
+ "CVE-2024-27132",
59418
59785
  "CVE-2024-3094",
59419
59786
  "CVE-2024-3154",
59420
59787
  "CVE-2024-37032",
@@ -59675,6 +60042,7 @@
59675
60042
  "CVE-2024-1561",
59676
60043
  "CVE-2024-1708",
59677
60044
  "CVE-2024-21762",
60045
+ "CVE-2024-27132",
59678
60046
  "CVE-2024-27199",
59679
60047
  "CVE-2024-27443",
59680
60048
  "CVE-2024-37032",
@@ -60511,6 +60879,7 @@
60511
60879
  "CVE-2024-11393",
60512
60880
  "CVE-2024-11394",
60513
60881
  "CVE-2024-1561",
60882
+ "CVE-2024-27132",
60514
60883
  "CVE-2024-3094",
60515
60884
  "CVE-2024-3154",
60516
60885
  "CVE-2024-37032",
@@ -61131,6 +61500,7 @@
61131
61500
  "CVE-2024-11393",
61132
61501
  "CVE-2024-11394",
61133
61502
  "CVE-2024-1561",
61503
+ "CVE-2024-27132",
61134
61504
  "CVE-2024-3094",
61135
61505
  "CVE-2024-3154",
61136
61506
  "CVE-2024-37032",
@@ -61389,6 +61759,7 @@
61389
61759
  "CVE-2024-11393",
61390
61760
  "CVE-2024-11394",
61391
61761
  "CVE-2024-1561",
61762
+ "CVE-2024-27132",
61392
61763
  "CVE-2024-3094",
61393
61764
  "CVE-2024-37032",
61394
61765
  "CVE-2024-39722",
@@ -62073,6 +62444,7 @@
62073
62444
  "CVE-2024-11393",
62074
62445
  "CVE-2024-11394",
62075
62446
  "CVE-2024-1561",
62447
+ "CVE-2024-27132",
62076
62448
  "CVE-2024-3094",
62077
62449
  "CVE-2024-3154",
62078
62450
  "CVE-2024-37032",
@@ -62340,6 +62712,7 @@
62340
62712
  "CVE-2024-1561",
62341
62713
  "CVE-2024-1708",
62342
62714
  "CVE-2024-21762",
62715
+ "CVE-2024-27132",
62343
62716
  "CVE-2024-27199",
62344
62717
  "CVE-2024-27443",
62345
62718
  "CVE-2024-37032",
@@ -62781,6 +63154,7 @@
62781
63154
  "CVE-2024-1561",
62782
63155
  "CVE-2024-1708",
62783
63156
  "CVE-2024-21762",
63157
+ "CVE-2024-27132",
62784
63158
  "CVE-2024-27199",
62785
63159
  "CVE-2024-27443",
62786
63160
  "CVE-2024-37032",
@@ -63248,6 +63622,7 @@
63248
63622
  "CVE-2024-11393",
63249
63623
  "CVE-2024-11394",
63250
63624
  "CVE-2024-1561",
63625
+ "CVE-2024-27132",
63251
63626
  "CVE-2024-3094",
63252
63627
  "CVE-2024-3154",
63253
63628
  "CVE-2024-37032",
@@ -64067,6 +64442,7 @@
64067
64442
  "CVE-2024-1561",
64068
64443
  "CVE-2024-1708",
64069
64444
  "CVE-2024-21762",
64445
+ "CVE-2024-27132",
64070
64446
  "CVE-2024-27199",
64071
64447
  "CVE-2024-27443",
64072
64448
  "CVE-2024-37032",
@@ -64598,6 +64974,7 @@
64598
64974
  "CVE-2024-11393",
64599
64975
  "CVE-2024-11394",
64600
64976
  "CVE-2024-1561",
64977
+ "CVE-2024-27132",
64601
64978
  "CVE-2024-3094",
64602
64979
  "CVE-2024-3154",
64603
64980
  "CVE-2024-37032",
@@ -64943,6 +65320,7 @@
64943
65320
  "CVE-2024-1561",
64944
65321
  "CVE-2024-1708",
64945
65322
  "CVE-2024-21762",
65323
+ "CVE-2024-27132",
64946
65324
  "CVE-2024-27199",
64947
65325
  "CVE-2024-27443",
64948
65326
  "CVE-2024-3094",
@@ -65493,6 +65871,7 @@
65493
65871
  "CVE-2024-11393",
65494
65872
  "CVE-2024-11394",
65495
65873
  "CVE-2024-1561",
65874
+ "CVE-2024-27132",
65496
65875
  "CVE-2024-3094",
65497
65876
  "CVE-2024-3154",
65498
65877
  "CVE-2024-37032",
@@ -66448,6 +66827,7 @@
66448
66827
  "CVE-2024-11393",
66449
66828
  "CVE-2024-11394",
66450
66829
  "CVE-2024-1561",
66830
+ "CVE-2024-27132",
66451
66831
  "CVE-2024-3094",
66452
66832
  "CVE-2024-3154",
66453
66833
  "CVE-2024-37032",
@@ -66567,6 +66947,7 @@
66567
66947
  "CVE-2024-11393",
66568
66948
  "CVE-2024-11394",
66569
66949
  "CVE-2024-1561",
66950
+ "CVE-2024-27132",
66570
66951
  "CVE-2024-37032",
66571
66952
  "CVE-2024-39722",
66572
66953
  "CVE-2024-42478",
@@ -66756,6 +67137,7 @@
66756
67137
  "CVE-2024-11393",
66757
67138
  "CVE-2024-11394",
66758
67139
  "CVE-2024-1561",
67140
+ "CVE-2024-27132",
66759
67141
  "CVE-2024-37032",
66760
67142
  "CVE-2024-39722",
66761
67143
  "CVE-2024-42478",
@@ -67199,6 +67581,7 @@
67199
67581
  "CVE-2024-1561",
67200
67582
  "CVE-2024-1708",
67201
67583
  "CVE-2024-21762",
67584
+ "CVE-2024-27132",
67202
67585
  "CVE-2024-27199",
67203
67586
  "CVE-2024-27443",
67204
67587
  "CVE-2024-3094",
@@ -67656,6 +68039,7 @@
67656
68039
  "CVE-2024-11393",
67657
68040
  "CVE-2024-11394",
67658
68041
  "CVE-2024-1561",
68042
+ "CVE-2024-27132",
67659
68043
  "CVE-2024-3094",
67660
68044
  "CVE-2024-3154",
67661
68045
  "CVE-2024-37032",
@@ -67968,6 +68352,7 @@
67968
68352
  "CVE-2024-11393",
67969
68353
  "CVE-2024-11394",
67970
68354
  "CVE-2024-1561",
68355
+ "CVE-2024-27132",
67971
68356
  "CVE-2024-3094",
67972
68357
  "CVE-2024-37032",
67973
68358
  "CVE-2024-39722",
package/data/atlas-ttps.json CHANGED
@@ -1715,6 +1715,7 @@
1715
1715
  "CVE-2023-48022",
1716
1716
  "CVE-2023-51449",
1717
1717
  "CVE-2024-1561",
1718
+ "CVE-2024-27132",
1718
1719
  "CVE-2024-37032",
1719
1720
  "CVE-2024-39722",
1720
1721
  "CVE-2024-42478",
package/data/attack-techniques.json CHANGED
@@ -384,6 +384,7 @@
384
384
  "cve_refs": [
385
385
  "CVE-2021-26829",
386
386
  "CVE-2024-11182",
387
+ "CVE-2024-27132",
387
388
  "CVE-2024-27443",
388
389
  "CVE-2024-42009",
389
390
  "CVE-2025-0133",
@@ -2481,6 +2482,7 @@
2481
2482
  "name": "Drive-by Compromise",
2482
2483
  "version": "v19",
2483
2484
  "cve_refs": [
2485
+ "CVE-2024-27132",
2484
2486
  "CVE-2025-10585",
2485
2487
  "CVE-2025-14174",
2486
2488
  "CVE-2025-24201",