@blamejs/exceptd-skills 0.13.94 → 0.13.96

package/data/atlas-ttps.json

@@ -676,6 +676,8 @@
     "cve_refs": [
       "CVE-2023-51449",
       "CVE-2024-1561",
+      "CVE-2024-4889",
+      "CVE-2024-6587",
       "CVE-2026-42208",
       "MAL-2026-3083"
     ],
@@ -1727,6 +1729,8 @@
       "CVE-2024-39722",
       "CVE-2024-42478",
       "CVE-2024-42479",
+      "CVE-2024-4889",
+      "CVE-2024-6587",
       "CVE-2025-30202",
       "CVE-2025-32444",
       "CVE-2025-64496",

package/data/attack-techniques.json

@@ -285,10 +285,12 @@
       "CVE-2024-21576",
       "CVE-2024-37032",
       "CVE-2024-42479",
+      "CVE-2024-4889",
       "CVE-2024-50050",
       "CVE-2025-1094",
       "CVE-2025-11837",
       "CVE-2025-1550",
+      "CVE-2025-1753",
       "CVE-2025-23254",
       "CVE-2025-30165",
       "CVE-2025-32444",
@@ -870,9 +872,11 @@
       "CVE-2024-42478",
       "CVE-2024-42479",
       "CVE-2024-43468",
+      "CVE-2024-4889",
       "CVE-2024-50050",
       "CVE-2024-56145",
       "CVE-2024-57726",
+      "CVE-2024-6587",
       "CVE-2024-7694",
       "CVE-2024-8069",
       "CVE-2025-10035",
@@ -1528,6 +1532,7 @@
     "name": "Unsecured Credentials: Credentials In Files",
     "version": "v19",
     "cve_refs": [
+      "CVE-2024-6587",
       "CVE-2025-21085",
       "CVE-2026-30615",
       "MAL-2026-3083",

package/data/cve-catalog.json

@@ -55,7 +55,7 @@
     "ai_discovery_methodology": {
       "field_added": "2026-05-15",
       "agents_md_target": "Hard Rule #7 — '41% of 2025 zero-days were AI-discovered'. Catalog target rate floor: 0.40.",
-      "current_rate": 0.033,
+      "current_rate": 0.032,
       "current_floor_enforced_by_test": 0.03,
       "ladder_to_target": [
         0.03,
@@ -14440,6 +14440,316 @@
     "_intake_method": "manual-verified-curation",
     "_kev_short_description": "AnythingLLM's upload handler mishandles non-ASCII filenames (multer) so a manager/admin upload path-traverses to an arbitrary write and RCE (CWE-22); fixed in 1.3.1."
   },
+  "CVE-2025-1753": {
+    "name": "LlamaIndex CLI --files OS Command Injection",
+    "type": "RCE",
+    "cvss_score": 7.8,
+    "cvss_vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+    "cvss_note": "CNA (huntr.dev) CVSS v3.0 base 7.8 (HIGH); NVD has not published its own assessed score. The LlamaIndex CLI passes the --files argument directly to a shell-execution call (os.system) without neutralization (CWE-78).",
+    "cisa_kev": false,
+    "poc_available": true,
+    "poc_description": "Documented in the huntr.dev advisory: the LlamaIndex CLI passes the --files argument into a shell-execution call unsanitized, so shell metacharacters in --files execute arbitrary OS commands. The fix introduces shlex escaping.",
+    "ai_discovered": false,
+    "ai_discovery_source": "human_researcher",
+    "ai_discovery_notes": "Disclosed via huntr.dev. LlamaIndex is a widely used RAG / LLM data-framework; the abused surface is its command-line interface.",
+    "ai_assisted_weaponization": false,
+    "ai_assisted_notes": "No AI-assisted weaponization; classic OS command injection in the framework CLI.",
+    "active_exploitation": "none",
+    "active_exploitation_notes": "Advisory disclosure with a coordinated fix; no confirmed in-the-wild exploitation reported as of curation.",
+    "affected": "LlamaIndex CLI (llama-index-cli) at v0.12.20 (fixed by the shlex-escaping patch).",
+    "affected_versions": [
+      "LlamaIndex CLI 0.12.20"
+    ],
+    "vector": "The LlamaIndex CLI builds a shell command from the user-supplied --files argument and runs it through a shell-execution call without neutralizing special elements (CWE-78). A user who can influence the --files value (e.g. via a wrapper, script, or automation that forwards untrusted input) executes arbitrary OS commands. The fix escapes input with shlex.",
+    "complexity": "low",
+    "complexity_notes": "CNA AV:L / AC:L / PR:L — local execution context; the precondition is untrusted input reaching the CLI --files argument.",
+    "patch_available": true,
+    "patch_required_reboot": false,
+    "live_patch_available": false,
+    "live_patch_tools": [],
+    "live_patch_notes": "Remediation is upgrading llama-index-cli to the release that adds shlex escaping; no host reboot.",
+    "vendor_update_paths": [
+      "Upgrade llama-index-cli past 0.12.20 to the shlex-escaped release. Do not forward untrusted input into the CLI's --files argument; prefer argv-array invocation over shell strings in any wrapper."
+    ],
+    "framework_control_gaps": {
+      "NIST-800-53-SI-2": "Flaw-remediation cadence does not track LLM data-framework CLIs as managed, command-injection-bearing software.",
+      "NIST-800-53-SI-10": "Input-validation control is not applied to CLI arguments the framework forwards to a shell.",
+      "ISO-27001-2022-A.8.8": "Vulnerability management rarely enumerates an LLM framework's CLI argument handling as a command-injection surface.",
+      "NIS2-Art21-patch-management": "Article 21 measures do not reach LLM-framework tooling as a managed surface.",
+      "DORA-Art-9": "ICT protection measures do not model command injection in an LLM data-framework CLI as an ICT-risk event.",
+      "UK-CAF-B4": "System Security objective has no objective for neutralizing shell input in AI-framework CLIs.",
+      "AU-ISM-1546": "Patch-application control does not single out LLM data-framework tooling.",
+      "ALL-AI-PIPELINE-INTEGRITY": "No framework treats an AI tool's CLI arguments as untrusted input that must be neutralized before shell execution; building shell strings from arguments is command injection."
+    },
+    "atlas_refs": [],
+    "attack_refs": [
+      "T1059"
+    ],
+    "rwep_score": 23,
+    "rwep_factors": {
+      "cisa_kev": 0,
+      "poc_available": 20,
+      "ai_factor": 0,
+      "active_exploitation": 0,
+      "blast_radius": 18,
+      "patch_available": -15,
+      "live_patch_available": 0,
+      "reboot_required": 0
+    },
+    "rwep_notes": "Standard (RWEP 23, \"patch within 30 days\" band per lib/scoring.js timeline). Not KEV, no confirmed in-the-wild exploitation, patched at disclosure (Hard Rule #3); local execution context (CNA AV:L) lowers reachability. poc_available=20 + blast_radius=18 minus patch 15.",
+    "epss_score": null,
+    "epss_date": "2026-05-25",
+    "epss_note": "EPSS not pulled for this entry; retrieve via FIRST EPSS API in a future refresh.",
+    "epss_source": "https://api.first.org/data/v1/epss?cve=CVE-2025-1753",
+    "cwe_refs": [
+      "CWE-78"
+    ],
+    "iocs": {
+      "behavioral": [
+        "LlamaIndex CLI invocations whose --files value contains shell metacharacters (;, |, $(), backticks).",
+        "Unexpected child processes spawned by the llama-index CLI during a --files operation.",
+        "Wrappers/automation forwarding untrusted input into the llama-index CLI --files argument.",
+        "llama-index-cli at 0.12.20 (pre-shlex-fix) reachable with untrusted --files input — the exposed precondition."
+      ],
+      "_ioc_source_note": "Behavioral signatures anchored to the primary disclosure: the huntr bounty report (https://huntr.com/bounties/19e1c67e-1d77-451d-b10b-acbe99900b22), the GitHub Security Advisory GHSA-g99h-56mw-8263, and the fix commit run-llama/llama_index b57e76738c53ca82d88658b82f2d82d1c7839c7d (which adds shlex.quote escaping to the --files argument). The shell metacharacters in --files reaching the shell-exec call, and child processes spawned during a --files operation, are the indicator anchors; NVD CVE-2025-1753 (CWE-78) corroborates."
+    },
+    "source_verified": "2026-05-25",
+    "verification_sources": [
+      "https://nvd.nist.gov/vuln/detail/CVE-2025-1753",
+      "https://huntr.com/bounties/19e1c67e-1d77-451d-b10b-acbe99900b22",
+      "https://github.com/advisories/GHSA-g99h-56mw-8263",
+      "https://github.com/run-llama/llama_index/commit/b57e76738c53ca82d88658b82f2d82d1c7839c7d"
+    ],
+    "vendor_advisories": [
+      {
+        "vendor": "GitHub Security Advisory",
+        "advisory_id": "GHSA-g99h-56mw-8263",
+        "url": "https://github.com/advisories/GHSA-g99h-56mw-8263",
+        "severity": "high",
+        "published_date": "2025-05-28"
+      },
+      {
+        "vendor": "NVD",
+        "advisory_id": "CVE-2025-1753",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-1753",
+        "severity": "high",
+        "published_date": "2025-05-28"
+      }
+    ],
+    "last_updated": "2026-05-25",
+    "discovery_attribution_note": "Manually curated from NVD (CWE-78; CNA huntr.dev CVSS 7.8, no NVD-assessed score) + the huntr.dev advisory. LlamaIndex CLI OS command injection (shell-string built from --files).",
+    "_auto_imported": false,
+    "_intake_method": "manual-verified-curation",
+    "_kev_short_description": "LlamaIndex's CLI builds a shell command from the --files argument and runs it unsanitized (CWE-78), executing arbitrary OS commands; fixed by adding shlex escaping."
+  },
+  "CVE-2024-6587": {
+    "name": "BerriAI LiteLLM api_base SSRF API-Key Interception",
+    "type": "INFO-DISCLOSURE",
+    "cvss_score": 7.5,
+    "cvss_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+    "cvss_note": "NVD/NIST CVSS v3.1 base 7.5 (HIGH, confidentiality-only); huntr.dev CNA scored the same. Server-side request forgery via the user-supplied api_base parameter (CWE-918).",
+    "cisa_kev": false,
+    "poc_available": true,
+    "poc_description": "Documented in the huntr.dev advisory and demonstrated at Pwn2Own as the SSRF link of a full-chain RCE: a request with a crafted api_base causes the proxy to forward the provider API key to the attacker.",
+    "ai_discovered": false,
+    "ai_discovery_source": "human_researcher",
+    "ai_discovery_notes": "Disclosed via huntr.dev. LiteLLM is a widely used LLM proxy/gateway that holds provider API keys for many models; the abused surface is its request/secret-management plane.",
+    "ai_assisted_weaponization": false,
+    "ai_assisted_notes": "No AI-assisted weaponization; SSRF in the LLM gateway.",
+    "active_exploitation": "none",
+    "active_exploitation_notes": "Advisory disclosure with a coordinated fix; no confirmed in-the-wild exploitation reported as of curation (CVE-2024-6587 was demonstrated at Pwn2Own as a research chain).",
+    "affected": "BerriAI LiteLLM before 1.44.8 (the api_base handling on POST /chat/completions); reported against 1.38.10, vulnerable range < 1.44.8 per GHSA-g26j-5385-hhw3, patched in 1.44.8.",
+    "affected_versions": [
+      "BerriAI LiteLLM < 1.44.8"
+    ],
+    "vector": "LiteLLM lets a user specify the api_base parameter on POST /chat/completions, and the proxy sends the request - including the configured provider API key - to that attacker-chosen domain (CWE-918 SSRF). A malicious user thereby intercepts the LLM provider API key the gateway holds. This SSRF was the first link in a Pwn2Own full-chain RCE against LiteLLM.",
+    "complexity": "low",
+    "complexity_notes": "NVD AV:N / AC:L. PR:N - unauthenticated request parameter.",
+    "patch_available": true,
+    "patch_required_reboot": false,
+    "live_patch_available": false,
+    "live_patch_tools": [],
+    "live_patch_notes": "Remediation is upgrading LiteLLM to 1.44.8 or later (validates api_base); redeploy, no host reboot.",
+    "vendor_update_paths": [
+      "Upgrade BerriAI LiteLLM to 1.44.8 or later. Restrict who can set request/config parameters, allow-list permitted api_base / provider endpoints, isolate the proxy's credential store, and do not expose the LiteLLM admin/config surface to untrusted users."
+    ],
+    "framework_control_gaps": {
+      "NIST-800-53-IA-2": "Authenticator (API key) management does not isolate the LLM gateway's stored provider keys from request-controlled egress; an SSRF exfiltrates them.",
+      "NIST-800-53-SI-2": "Flaw-remediation cadence does not track the LLM proxy/gateway as managed, credential-bearing software.",
+      "ISO-27001-2022-A.8.8": "Vulnerability management rarely enumerates the LLM gateway's request/secret-management plane as an SSRF / code-injection surface.",
+      "NIS2-Art21-patch-management": "Article 21 measures do not reach the LLM gateway as a privileged credential-holding control plane.",
+      "DORA-Art-9": "ICT protection measures do not model API-key exfiltration / code execution in an LLM gateway as an ICT-risk event.",
+      "UK-CAF-B2": "Identity and Access Control objective has no requirement to isolate the LLM gateway's provider credentials from request-controlled flows.",
+      "AU-ISM-1546": "Patch-application control does not single out LLM proxy/gateway software.",
+      "ALL-AI-PIPELINE-INTEGRITY": "No framework treats the LLM gateway as a high-value credential store whose request/config plane must be isolated; SSRF or config code-injection there yields mass key theft or proxy RCE."
+    },
+    "atlas_refs": [
+      "AML.T0049",
+      "AML.T0055"
+    ],
+    "attack_refs": [
+      "T1190",
+      "T1552.001"
+    ],
+    "rwep_score": 29,
+    "rwep_factors": {
+      "cisa_kev": 0,
+      "poc_available": 20,
+      "ai_factor": 0,
+      "active_exploitation": 0,
+      "blast_radius": 24,
+      "patch_available": -15,
+      "live_patch_available": 0,
+      "reboot_required": 0
+    },
+    "rwep_notes": "Standard (RWEP 29, \"patch within 30 days\" band per lib/scoring.js timeline). Not KEV, no confirmed in-the-wild exploitation, patched at/after disclosure (Hard Rule #3). poc_available=20 + blast_radius=24 (LiteLLM is a widely used LLM gateway holding provider keys) minus patch 15.",
+    "epss_score": null,
+    "epss_date": "2026-05-25",
+    "epss_note": "EPSS not pulled for this entry; retrieve via FIRST EPSS API in a future refresh.",
+    "epss_source": "https://api.first.org/data/v1/epss?cve=CVE-2024-6587",
+    "cwe_refs": [
+      "CWE-918"
+    ],
+    "iocs": {
+      "behavioral": [
+        "POST /chat/completions requests to LiteLLM carrying a user-supplied api_base pointing at a non-provider / attacker domain.",
+        "Outbound requests from the LiteLLM proxy (carrying provider API keys) to domains not on the approved provider allow-list.",
+        "Provider API keys appearing in traffic to unexpected endpoints.",
+        "BerriAI LiteLLM at BerriAI LiteLLM < 1.44.8 exposed to untrusted request/config input - the exposed precondition."
+      ],
+      "_ioc_source_note": "Behavioral signatures anchored to the huntr.dev advisory and the GitHub Security Advisory (https://github.com/advisories/GHSA-g26j-5385-hhw3), plus NVD CVE-2024-6587 (CWE-918). The user-supplied api_base egress carrying the provider key is the indicator anchor."
+    },
+    "source_verified": "2026-05-25",
+    "verification_sources": [
+      "https://nvd.nist.gov/vuln/detail/CVE-2024-6587",
+      "https://github.com/advisories/GHSA-g26j-5385-hhw3"
+    ],
+    "vendor_advisories": [
+      {
+        "vendor": "GitHub Security Advisory",
+        "advisory_id": "GHSA-g26j-5385-hhw3",
+        "url": "https://github.com/advisories/GHSA-g26j-5385-hhw3",
+        "severity": "high",
+        "published_date": "2024-09-13"
+      },
+      {
+        "vendor": "NVD",
+        "advisory_id": "CVE-2024-6587",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6587",
+        "severity": "high",
+        "published_date": "2024-09-13"
+      }
+    ],
+    "last_updated": "2026-05-25",
+    "discovery_attribution_note": "Manually curated from NVD (CWE-918; NIST CVSS 7.5) + the huntr.dev / GitHub advisory. BerriAI LiteLLM gateway flaw; same gateway credential-plane class as CVE-2026-42208 (shares NEW-CTRL-013).",
+    "_auto_imported": false,
+    "_intake_method": "manual-verified-curation",
+    "_kev_short_description": "BerriAI LiteLLM honors a user-supplied api_base on /chat/completions and forwards the configured provider API key to the attacker's domain (CWE-918 SSRF), leaking the gateway's keys."
+  },
+  "CVE-2024-4889": {
+    "name": "BerriAI LiteLLM Config Code Injection via UI_LOGO_PATH / KMS",
+    "type": "RCE",
+    "cvss_score": 7.2,
+    "cvss_vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
+    "cvss_note": "NVD/NIST CVSS v3.1 base 7.2 (HIGH, PR:H); huntr.dev CNA scored the same. Code injection through unvalidated input in the secret-management dynamic-evaluation path (CWE-94).",
+    "cisa_kev": false,
+    "poc_available": true,
+    "poc_description": "Documented in the huntr.dev advisory: an admin-influenced UI_LOGO_PATH drives the secret-management code into evaluating attacker content.",
+    "ai_discovered": false,
+    "ai_discovery_source": "human_researcher",
+    "ai_discovery_notes": "Disclosed via huntr.dev. LiteLLM is a widely used LLM proxy/gateway that holds provider API keys for many models; the abused surface is its request/secret-management plane.",
+    "ai_assisted_weaponization": false,
+    "ai_assisted_notes": "No AI-assisted weaponization; code injection in the LLM gateway.",
+    "active_exploitation": "none",
+    "active_exploitation_notes": "Advisory disclosure with a coordinated fix; no confirmed in-the-wild exploitation reported as of curation (CVE-2024-6587 was demonstrated at Pwn2Own as a research chain).",
+    "affected": "BerriAI LiteLLM before 1.44.16.",
+    "affected_versions": [
+      "BerriAI LiteLLM < 1.44.16"
+    ],
+    "vector": "With Google KMS and SAVE_CONFIG_TO_DB configured, an admin-controlled UI_LOGO_PATH pointing at a remote server lets unvalidated input reach a dynamic-evaluation path in LiteLLM's secret-management code (CWE-94), allowing code execution on the proxy that holds the deployment's provider credentials.",
+    "complexity": "low",
+    "complexity_notes": "NVD AV:N / AC:L. PR:H - requires admin-level config influence.",
+    "patch_available": true,
+    "patch_required_reboot": false,
+    "live_patch_available": false,
+    "live_patch_tools": [],
+    "live_patch_notes": "Remediation is upgrading LiteLLM to 1.44.16 or later; redeploy, no host reboot.",
+    "vendor_update_paths": [
+      "Upgrade BerriAI LiteLLM to a patched release (1.44.16+). Restrict who can set request/config parameters, allow-list permitted api_base / provider endpoints, isolate the proxy's credential store, and do not expose the LiteLLM admin/config surface to untrusted users."
+    ],
+    "framework_control_gaps": {
+      "NIST-800-53-IA-2": "Authenticator (API key) management does not isolate the LLM gateway's stored provider keys from request-controlled egress; an SSRF exfiltrates them.",
+      "NIST-800-53-SI-2": "Flaw-remediation cadence does not track the LLM proxy/gateway as managed, credential-bearing software.",
+      "ISO-27001-2022-A.8.8": "Vulnerability management rarely enumerates the LLM gateway's request/secret-management plane as an SSRF / code-injection surface.",
+      "NIS2-Art21-patch-management": "Article 21 measures do not reach the LLM gateway as a privileged credential-holding control plane.",
+      "DORA-Art-9": "ICT protection measures do not model API-key exfiltration / code execution in an LLM gateway as an ICT-risk event.",
+      "UK-CAF-B2": "Identity and Access Control objective has no requirement to isolate the LLM gateway's provider credentials from request-controlled flows.",
+      "AU-ISM-1546": "Patch-application control does not single out LLM proxy/gateway software.",
+      "ALL-AI-PIPELINE-INTEGRITY": "No framework treats the LLM gateway as a high-value credential store whose request/config plane must be isolated; SSRF or config code-injection there yields mass key theft or proxy RCE."
+    },
+    "atlas_refs": [
+      "AML.T0049",
+      "AML.T0055"
+    ],
+    "attack_refs": [
+      "T1190",
+      "T1059"
+    ],
+    "rwep_score": 27,
+    "rwep_factors": {
+      "cisa_kev": 0,
+      "poc_available": 20,
+      "ai_factor": 0,
+      "active_exploitation": 0,
+      "blast_radius": 22,
+      "patch_available": -15,
+      "live_patch_available": 0,
+      "reboot_required": 0
+    },
+    "rwep_notes": "Standard (RWEP 27, \"patch within 30 days\" band per lib/scoring.js timeline). Not KEV, no confirmed in-the-wild exploitation, patched at/after disclosure (Hard Rule #3). poc_available=20 + blast_radius=22 (LiteLLM is a widely used LLM gateway holding provider keys) minus patch 15.",
+    "epss_score": null,
+    "epss_date": "2026-05-25",
+    "epss_note": "EPSS not pulled for this entry; retrieve via FIRST EPSS API in a future refresh.",
+    "epss_source": "https://api.first.org/data/v1/epss?cve=CVE-2024-4889",
+    "cwe_refs": [
+      "CWE-94"
+    ],
+    "iocs": {
+      "behavioral": [
+        "LiteLLM admin config changes setting UI_LOGO_PATH to a remote/attacker-controlled URL with KMS + SAVE_CONFIG_TO_DB enabled.",
+        "Code/process execution on the LiteLLM proxy host during config load or secret-management operations.",
+        "Outbound fetches from the LiteLLM proxy to unexpected hosts during configuration.",
+        "BerriAI LiteLLM at BerriAI LiteLLM < 1.44.16 exposed to untrusted request/config input - the exposed precondition."
+      ],
+      "_ioc_source_note": "Behavioral signatures anchored to the huntr.dev advisory and the GitHub Security Advisory (https://github.com/advisories/GHSA-423v-966v-frxg), plus NVD CVE-2024-4889 (CWE-94). The UI_LOGO_PATH/KMS dynamic-evaluation path is the indicator anchor."
+    },
+    "source_verified": "2026-05-25",
+    "verification_sources": [
+      "https://nvd.nist.gov/vuln/detail/CVE-2024-4889",
+      "https://github.com/advisories/GHSA-423v-966v-frxg"
+    ],
+    "vendor_advisories": [
+      {
+        "vendor": "GitHub Security Advisory",
+        "advisory_id": "GHSA-423v-966v-frxg",
+        "url": "https://github.com/advisories/GHSA-423v-966v-frxg",
+        "severity": "high",
+        "published_date": "2024-06-06"
+      },
+      {
+        "vendor": "NVD",
+        "advisory_id": "CVE-2024-4889",
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4889",
+        "severity": "high",
+        "published_date": "2024-06-06"
+      }
+    ],
+    "last_updated": "2026-05-25",
+    "discovery_attribution_note": "Manually curated from NVD (CWE-94; NIST CVSS 7.2) + the huntr.dev / GitHub advisory. BerriAI LiteLLM gateway flaw; same gateway credential-plane class as CVE-2026-42208 (shares NEW-CTRL-013).",
+    "_auto_imported": false,
+    "_intake_method": "manual-verified-curation",
+    "_kev_short_description": "BerriAI LiteLLM's secret-management path evaluates unvalidated input (UI_LOGO_PATH + KMS config, CWE-94), allowing an admin-influenced value to execute code on the credential-bearing proxy; fixed in 1.44.16."
+  },
   "CVE-2026-41091": {
     "name": "Microsoft Defender (Malware Protection Engine) Link-Following LPE to SYSTEM",
     "type": "LPE",

package/data/cwe-catalog.json

@@ -197,6 +197,7 @@
       "CVE-2024-12987",
       "CVE-2025-11953",
       "CVE-2025-12686",
+      "CVE-2025-1753",
       "CVE-2025-48703",
       "CVE-2025-54136",
       "CVE-2025-54948",
@@ -378,6 +379,7 @@
       "CVE-2024-21513",
       "CVE-2024-21576",
       "CVE-2024-27132",
+      "CVE-2024-4889",
       "CVE-2024-56145",
       "CVE-2025-11837",
       "CVE-2025-1550",
@@ -1848,6 +1850,7 @@
       "CVE-2023-43654",
       "CVE-2023-48022",
       "CVE-2023-51449",
+      "CVE-2024-6587",
       "CVE-2025-61884"
     ],
     "framework_controls_partially_addressing": [

package/data/framework-control-gaps.json

@@ -51,8 +51,11 @@
       "CVE-2024-39722",
       "CVE-2024-42478",
       "CVE-2024-42479",
+      "CVE-2024-4889",
       "CVE-2024-50050",
+      "CVE-2024-6587",
       "CVE-2025-1550",
+      "CVE-2025-1753",
       "CVE-2025-23254",
       "CVE-2025-23266",
       "CVE-2025-30165",
@@ -1409,11 +1412,13 @@
       "CVE-2024-42478",
       "CVE-2024-42479",
       "CVE-2024-43468",
+      "CVE-2024-4889",
       "CVE-2024-50050",
       "CVE-2024-54085",
       "CVE-2024-56145",
       "CVE-2024-57726",
       "CVE-2024-57728",
+      "CVE-2024-6587",
       "CVE-2024-7399",
       "CVE-2024-7694",
       "CVE-2024-8068",
@@ -1429,6 +1434,7 @@
       "CVE-2025-14733",
       "CVE-2025-1550",
       "CVE-2025-15556",
+      "CVE-2025-1753",
       "CVE-2025-20281",
       "CVE-2025-20333",
       "CVE-2025-20337",
@@ -1826,11 +1832,14 @@
       "CVE-2024-39722",
       "CVE-2024-42478",
       "CVE-2024-42479",
+      "CVE-2024-4889",
       "CVE-2024-50050",
+      "CVE-2024-6587",
       "CVE-2025-10585",
       "CVE-2025-1094",
       "CVE-2025-14174",
       "CVE-2025-1550",
+      "CVE-2025-1753",
       "CVE-2025-23254",
       "CVE-2025-23266",
       "CVE-2025-30165",
@@ -2286,6 +2295,7 @@
       "CVE-2025-0133",
       "CVE-2025-1094",
       "CVE-2025-1550",
+      "CVE-2025-1753",
       "CVE-2025-23254",
       "CVE-2025-30165",
       "CVE-2025-60455",
@@ -2459,11 +2469,13 @@
       "CVE-2024-42478",
       "CVE-2024-42479",
       "CVE-2024-43468",
+      "CVE-2024-4889",
       "CVE-2024-50050",
       "CVE-2024-54085",
       "CVE-2024-56145",
       "CVE-2024-57726",
       "CVE-2024-57728",
+      "CVE-2024-6587",
       "CVE-2024-7399",
       "CVE-2024-7694",
       "CVE-2024-8068",
@@ -2480,6 +2492,7 @@
       "CVE-2025-14733",
       "CVE-2025-1550",
       "CVE-2025-15556",
+      "CVE-2025-1753",
       "CVE-2025-20281",
       "CVE-2025-20333",
       "CVE-2025-20337",
@@ -3724,6 +3737,8 @@
       "CVE-2022-1471",
       "CVE-2023-43654",
       "CVE-2023-48022",
+      "CVE-2024-4889",
+      "CVE-2024-6587",
       "CVE-2026-24206",
       "CVE-2026-24207"
     ],
@@ -4953,8 +4968,11 @@
       "CVE-2024-39722",
       "CVE-2024-42478",
       "CVE-2024-42479",
+      "CVE-2024-4889",
       "CVE-2024-50050",
+      "CVE-2024-6587",
       "CVE-2025-1550",
+      "CVE-2025-1753",
       "CVE-2025-23254",
       "CVE-2025-23266",
       "CVE-2025-30165",
@@ -5496,6 +5514,7 @@
       "CVE-2024-42479",
       "CVE-2024-50050",
       "CVE-2025-1550",
+      "CVE-2025-1753",
       "CVE-2025-23254",
       "CVE-2025-23266",
       "CVE-2025-30165",
@@ -5578,8 +5597,11 @@
       "CVE-2024-39722",
       "CVE-2024-42478",
       "CVE-2024-42479",
+      "CVE-2024-4889",
       "CVE-2024-50050",
+      "CVE-2024-6587",
       "CVE-2025-1550",
+      "CVE-2025-1753",
       "CVE-2025-23254",
       "CVE-2025-23266",
       "CVE-2025-30165",
@@ -5887,6 +5909,8 @@
       "CVE-2023-43654",
       "CVE-2023-48022",
       "CVE-2024-1709",
+      "CVE-2024-4889",
+      "CVE-2024-6587",
       "CVE-2026-20182",
       "CVE-2026-24206",
       "CVE-2026-24207"