@blamejs/exceptd-skills 0.14.26 → 0.14.28
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +21 -0
- package/data/_indexes/_meta.json +10 -10
- package/data/_indexes/activity-feed.json +4 -4
- package/data/_indexes/catalog-summaries.json +9 -9
- package/data/_indexes/chains.json +1639 -0
- package/data/_indexes/frequency.json +3 -0
- package/data/atlas-ttps.json +29 -17
- package/data/attack-techniques.json +54 -37
- package/data/cve-catalog.json +742 -2
- package/data/cwe-catalog.json +53 -19
- package/data/framework-control-gaps.json +225 -116
- package/data/playbooks/framework.json +1 -0
- package/data/playbooks/sbom.json +1 -0
- package/data/zeroday-lessons.json +491 -0
- package/manifest.json +44 -44
- package/package.json +1 -1
- package/sbom.cdx.json +28 -28
|
@@ -7,6 +7,1537 @@
|
|
|
7
7
|
"CWE"
|
|
8
8
|
]
|
|
9
9
|
},
|
|
10
|
+
"CVE-2025-0282": {
|
|
11
|
+
"name": "Ivanti Connect Secure / Policy Secure / Neurons for ZTA stack-overflow preauth RCE",
|
|
12
|
+
"rwep": 85,
|
|
13
|
+
"cvss": 9,
|
|
14
|
+
"cisa_kev": true,
|
|
15
|
+
"epss_score": 0.94129,
|
|
16
|
+
"referencing_skills": [
|
|
17
|
+
"kernel-lpe-triage",
|
|
18
|
+
"coordinated-vuln-disclosure"
|
|
19
|
+
],
|
|
20
|
+
"chain": {
|
|
21
|
+
"cwes": [
|
|
22
|
+
{
|
|
23
|
+
"id": "CWE-125",
|
|
24
|
+
"name": "Out-of-bounds Read",
|
|
25
|
+
"category": "Memory Safety"
|
|
26
|
+
},
|
|
27
|
+
{
|
|
28
|
+
"id": "CWE-1357",
|
|
29
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
30
|
+
"category": "Supply Chain"
|
|
31
|
+
},
|
|
32
|
+
{
|
|
33
|
+
"id": "CWE-362",
|
|
34
|
+
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
|
|
35
|
+
"category": "Concurrency"
|
|
36
|
+
},
|
|
37
|
+
{
|
|
38
|
+
"id": "CWE-416",
|
|
39
|
+
"name": "Use After Free",
|
|
40
|
+
"category": "Memory Safety"
|
|
41
|
+
},
|
|
42
|
+
{
|
|
43
|
+
"id": "CWE-672",
|
|
44
|
+
"name": "Operation on a Resource after Expiration or Release",
|
|
45
|
+
"category": "Memory Safety"
|
|
46
|
+
},
|
|
47
|
+
{
|
|
48
|
+
"id": "CWE-787",
|
|
49
|
+
"name": "Out-of-bounds Write",
|
|
50
|
+
"category": "Memory Safety"
|
|
51
|
+
}
|
|
52
|
+
],
|
|
53
|
+
"atlas": [],
|
|
54
|
+
"d3fend": [
|
|
55
|
+
{
|
|
56
|
+
"id": "D3-ASLR",
|
|
57
|
+
"name": "Address Space Layout Randomization",
|
|
58
|
+
"tactic": "Harden"
|
|
59
|
+
},
|
|
60
|
+
{
|
|
61
|
+
"id": "D3-EAL",
|
|
62
|
+
"name": "Executable Allowlisting",
|
|
63
|
+
"tactic": "Harden"
|
|
64
|
+
},
|
|
65
|
+
{
|
|
66
|
+
"id": "D3-PHRA",
|
|
67
|
+
"name": "Process Hardware Resource Access",
|
|
68
|
+
"tactic": "Isolate"
|
|
69
|
+
},
|
|
70
|
+
{
|
|
71
|
+
"id": "D3-PSEP",
|
|
72
|
+
"name": "Process Segment Execution Prevention",
|
|
73
|
+
"tactic": "Harden"
|
|
74
|
+
}
|
|
75
|
+
],
|
|
76
|
+
"framework_gaps": [
|
|
77
|
+
{
|
|
78
|
+
"id": "CIS-Controls-v8-Control7",
|
|
79
|
+
"framework": "CIS Controls v8",
|
|
80
|
+
"control_name": "Continuous Vulnerability Management"
|
|
81
|
+
},
|
|
82
|
+
{
|
|
83
|
+
"id": "ISO-27001-2022-A.8.8",
|
|
84
|
+
"framework": "ISO/IEC 27001:2022",
|
|
85
|
+
"control_name": "Management of technical vulnerabilities"
|
|
86
|
+
},
|
|
87
|
+
{
|
|
88
|
+
"id": "NIS2-Art21-patch-management",
|
|
89
|
+
"framework": "EU NIS2 Directive",
|
|
90
|
+
"control_name": "Vulnerability handling and disclosure"
|
|
91
|
+
},
|
|
92
|
+
{
|
|
93
|
+
"id": "NIST-800-218-SSDF",
|
|
94
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
95
|
+
"control_name": "Secure Software Development Framework"
|
|
96
|
+
},
|
|
97
|
+
{
|
|
98
|
+
"id": "NIST-800-53-SC-8",
|
|
99
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
100
|
+
"control_name": "Transmission Confidentiality and Integrity"
|
|
101
|
+
},
|
|
102
|
+
{
|
|
103
|
+
"id": "NIST-800-53-SI-2",
|
|
104
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
105
|
+
"control_name": "Flaw Remediation"
|
|
106
|
+
},
|
|
107
|
+
{
|
|
108
|
+
"id": "PCI-DSS-4.0-6.3.3",
|
|
109
|
+
"framework": "PCI DSS 4.0",
|
|
110
|
+
"control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
|
|
111
|
+
},
|
|
112
|
+
{
|
|
113
|
+
"id": "SOC2-CC9-vendor-management",
|
|
114
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
115
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
116
|
+
}
|
|
117
|
+
],
|
|
118
|
+
"attack_refs": [
|
|
119
|
+
"T1068",
|
|
120
|
+
"T1548.001"
|
|
121
|
+
],
|
|
122
|
+
"rfc_refs": [
|
|
123
|
+
"RFC-4301",
|
|
124
|
+
"RFC-4303",
|
|
125
|
+
"RFC-7296"
|
|
126
|
+
]
|
|
127
|
+
}
|
|
128
|
+
},
|
|
129
|
+
"CVE-2025-22457": {
|
|
130
|
+
"name": "Ivanti Connect Secure / Policy Secure / ZTA Gateways stack-overflow preauth RCE (weaponized follow-on)",
|
|
131
|
+
"rwep": 83,
|
|
132
|
+
"cvss": 9,
|
|
133
|
+
"cisa_kev": true,
|
|
134
|
+
"epss_score": 0.58941,
|
|
135
|
+
"referencing_skills": [
|
|
136
|
+
"kernel-lpe-triage",
|
|
137
|
+
"coordinated-vuln-disclosure"
|
|
138
|
+
],
|
|
139
|
+
"chain": {
|
|
140
|
+
"cwes": [
|
|
141
|
+
{
|
|
142
|
+
"id": "CWE-125",
|
|
143
|
+
"name": "Out-of-bounds Read",
|
|
144
|
+
"category": "Memory Safety"
|
|
145
|
+
},
|
|
146
|
+
{
|
|
147
|
+
"id": "CWE-1357",
|
|
148
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
149
|
+
"category": "Supply Chain"
|
|
150
|
+
},
|
|
151
|
+
{
|
|
152
|
+
"id": "CWE-362",
|
|
153
|
+
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
|
|
154
|
+
"category": "Concurrency"
|
|
155
|
+
},
|
|
156
|
+
{
|
|
157
|
+
"id": "CWE-416",
|
|
158
|
+
"name": "Use After Free",
|
|
159
|
+
"category": "Memory Safety"
|
|
160
|
+
},
|
|
161
|
+
{
|
|
162
|
+
"id": "CWE-672",
|
|
163
|
+
"name": "Operation on a Resource after Expiration or Release",
|
|
164
|
+
"category": "Memory Safety"
|
|
165
|
+
},
|
|
166
|
+
{
|
|
167
|
+
"id": "CWE-787",
|
|
168
|
+
"name": "Out-of-bounds Write",
|
|
169
|
+
"category": "Memory Safety"
|
|
170
|
+
}
|
|
171
|
+
],
|
|
172
|
+
"atlas": [],
|
|
173
|
+
"d3fend": [
|
|
174
|
+
{
|
|
175
|
+
"id": "D3-ASLR",
|
|
176
|
+
"name": "Address Space Layout Randomization",
|
|
177
|
+
"tactic": "Harden"
|
|
178
|
+
},
|
|
179
|
+
{
|
|
180
|
+
"id": "D3-EAL",
|
|
181
|
+
"name": "Executable Allowlisting",
|
|
182
|
+
"tactic": "Harden"
|
|
183
|
+
},
|
|
184
|
+
{
|
|
185
|
+
"id": "D3-PHRA",
|
|
186
|
+
"name": "Process Hardware Resource Access",
|
|
187
|
+
"tactic": "Isolate"
|
|
188
|
+
},
|
|
189
|
+
{
|
|
190
|
+
"id": "D3-PSEP",
|
|
191
|
+
"name": "Process Segment Execution Prevention",
|
|
192
|
+
"tactic": "Harden"
|
|
193
|
+
}
|
|
194
|
+
],
|
|
195
|
+
"framework_gaps": [
|
|
196
|
+
{
|
|
197
|
+
"id": "CIS-Controls-v8-Control7",
|
|
198
|
+
"framework": "CIS Controls v8",
|
|
199
|
+
"control_name": "Continuous Vulnerability Management"
|
|
200
|
+
},
|
|
201
|
+
{
|
|
202
|
+
"id": "ISO-27001-2022-A.8.8",
|
|
203
|
+
"framework": "ISO/IEC 27001:2022",
|
|
204
|
+
"control_name": "Management of technical vulnerabilities"
|
|
205
|
+
},
|
|
206
|
+
{
|
|
207
|
+
"id": "NIS2-Art21-patch-management",
|
|
208
|
+
"framework": "EU NIS2 Directive",
|
|
209
|
+
"control_name": "Vulnerability handling and disclosure"
|
|
210
|
+
},
|
|
211
|
+
{
|
|
212
|
+
"id": "NIST-800-218-SSDF",
|
|
213
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
214
|
+
"control_name": "Secure Software Development Framework"
|
|
215
|
+
},
|
|
216
|
+
{
|
|
217
|
+
"id": "NIST-800-53-SC-8",
|
|
218
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
219
|
+
"control_name": "Transmission Confidentiality and Integrity"
|
|
220
|
+
},
|
|
221
|
+
{
|
|
222
|
+
"id": "NIST-800-53-SI-2",
|
|
223
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
224
|
+
"control_name": "Flaw Remediation"
|
|
225
|
+
},
|
|
226
|
+
{
|
|
227
|
+
"id": "PCI-DSS-4.0-6.3.3",
|
|
228
|
+
"framework": "PCI DSS 4.0",
|
|
229
|
+
"control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
|
|
230
|
+
},
|
|
231
|
+
{
|
|
232
|
+
"id": "SOC2-CC9-vendor-management",
|
|
233
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
234
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
235
|
+
}
|
|
236
|
+
],
|
|
237
|
+
"attack_refs": [
|
|
238
|
+
"T1068",
|
|
239
|
+
"T1548.001"
|
|
240
|
+
],
|
|
241
|
+
"rfc_refs": [
|
|
242
|
+
"RFC-4301",
|
|
243
|
+
"RFC-4303",
|
|
244
|
+
"RFC-7296"
|
|
245
|
+
]
|
|
246
|
+
}
|
|
247
|
+
},
|
|
248
|
+
"CVE-2025-31324": {
|
|
249
|
+
"name": "SAP NetWeaver Visual Composer Metadata Uploader unauthenticated file-upload RCE",
|
|
250
|
+
"rwep": 78,
|
|
251
|
+
"cvss": 10,
|
|
252
|
+
"cisa_kev": true,
|
|
253
|
+
"epss_score": 0.3151,
|
|
254
|
+
"referencing_skills": [
|
|
255
|
+
"kernel-lpe-triage",
|
|
256
|
+
"coordinated-vuln-disclosure"
|
|
257
|
+
],
|
|
258
|
+
"chain": {
|
|
259
|
+
"cwes": [
|
|
260
|
+
{
|
|
261
|
+
"id": "CWE-125",
|
|
262
|
+
"name": "Out-of-bounds Read",
|
|
263
|
+
"category": "Memory Safety"
|
|
264
|
+
},
|
|
265
|
+
{
|
|
266
|
+
"id": "CWE-1357",
|
|
267
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
268
|
+
"category": "Supply Chain"
|
|
269
|
+
},
|
|
270
|
+
{
|
|
271
|
+
"id": "CWE-362",
|
|
272
|
+
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
|
|
273
|
+
"category": "Concurrency"
|
|
274
|
+
},
|
|
275
|
+
{
|
|
276
|
+
"id": "CWE-416",
|
|
277
|
+
"name": "Use After Free",
|
|
278
|
+
"category": "Memory Safety"
|
|
279
|
+
},
|
|
280
|
+
{
|
|
281
|
+
"id": "CWE-672",
|
|
282
|
+
"name": "Operation on a Resource after Expiration or Release",
|
|
283
|
+
"category": "Memory Safety"
|
|
284
|
+
},
|
|
285
|
+
{
|
|
286
|
+
"id": "CWE-787",
|
|
287
|
+
"name": "Out-of-bounds Write",
|
|
288
|
+
"category": "Memory Safety"
|
|
289
|
+
}
|
|
290
|
+
],
|
|
291
|
+
"atlas": [],
|
|
292
|
+
"d3fend": [
|
|
293
|
+
{
|
|
294
|
+
"id": "D3-ASLR",
|
|
295
|
+
"name": "Address Space Layout Randomization",
|
|
296
|
+
"tactic": "Harden"
|
|
297
|
+
},
|
|
298
|
+
{
|
|
299
|
+
"id": "D3-EAL",
|
|
300
|
+
"name": "Executable Allowlisting",
|
|
301
|
+
"tactic": "Harden"
|
|
302
|
+
},
|
|
303
|
+
{
|
|
304
|
+
"id": "D3-PHRA",
|
|
305
|
+
"name": "Process Hardware Resource Access",
|
|
306
|
+
"tactic": "Isolate"
|
|
307
|
+
},
|
|
308
|
+
{
|
|
309
|
+
"id": "D3-PSEP",
|
|
310
|
+
"name": "Process Segment Execution Prevention",
|
|
311
|
+
"tactic": "Harden"
|
|
312
|
+
}
|
|
313
|
+
],
|
|
314
|
+
"framework_gaps": [
|
|
315
|
+
{
|
|
316
|
+
"id": "CIS-Controls-v8-Control7",
|
|
317
|
+
"framework": "CIS Controls v8",
|
|
318
|
+
"control_name": "Continuous Vulnerability Management"
|
|
319
|
+
},
|
|
320
|
+
{
|
|
321
|
+
"id": "ISO-27001-2022-A.8.8",
|
|
322
|
+
"framework": "ISO/IEC 27001:2022",
|
|
323
|
+
"control_name": "Management of technical vulnerabilities"
|
|
324
|
+
},
|
|
325
|
+
{
|
|
326
|
+
"id": "NIS2-Art21-patch-management",
|
|
327
|
+
"framework": "EU NIS2 Directive",
|
|
328
|
+
"control_name": "Vulnerability handling and disclosure"
|
|
329
|
+
},
|
|
330
|
+
{
|
|
331
|
+
"id": "NIST-800-218-SSDF",
|
|
332
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
333
|
+
"control_name": "Secure Software Development Framework"
|
|
334
|
+
},
|
|
335
|
+
{
|
|
336
|
+
"id": "NIST-800-53-SC-8",
|
|
337
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
338
|
+
"control_name": "Transmission Confidentiality and Integrity"
|
|
339
|
+
},
|
|
340
|
+
{
|
|
341
|
+
"id": "NIST-800-53-SI-2",
|
|
342
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
343
|
+
"control_name": "Flaw Remediation"
|
|
344
|
+
},
|
|
345
|
+
{
|
|
346
|
+
"id": "PCI-DSS-4.0-6.3.3",
|
|
347
|
+
"framework": "PCI DSS 4.0",
|
|
348
|
+
"control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
|
|
349
|
+
},
|
|
350
|
+
{
|
|
351
|
+
"id": "SOC2-CC9-vendor-management",
|
|
352
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
353
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
354
|
+
}
|
|
355
|
+
],
|
|
356
|
+
"attack_refs": [
|
|
357
|
+
"T1068",
|
|
358
|
+
"T1548.001"
|
|
359
|
+
],
|
|
360
|
+
"rfc_refs": [
|
|
361
|
+
"RFC-4301",
|
|
362
|
+
"RFC-4303",
|
|
363
|
+
"RFC-7296"
|
|
364
|
+
]
|
|
365
|
+
}
|
|
366
|
+
},
|
|
367
|
+
"CVE-2025-31161": {
|
|
368
|
+
"name": "CrushFTP HTTP authorization-header authentication bypass (crushadmin takeover)",
|
|
369
|
+
"rwep": 76,
|
|
370
|
+
"cvss": 9.8,
|
|
371
|
+
"cisa_kev": true,
|
|
372
|
+
"epss_score": 0.88937,
|
|
373
|
+
"referencing_skills": [
|
|
374
|
+
"kernel-lpe-triage",
|
|
375
|
+
"coordinated-vuln-disclosure"
|
|
376
|
+
],
|
|
377
|
+
"chain": {
|
|
378
|
+
"cwes": [
|
|
379
|
+
{
|
|
380
|
+
"id": "CWE-125",
|
|
381
|
+
"name": "Out-of-bounds Read",
|
|
382
|
+
"category": "Memory Safety"
|
|
383
|
+
},
|
|
384
|
+
{
|
|
385
|
+
"id": "CWE-1357",
|
|
386
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
387
|
+
"category": "Supply Chain"
|
|
388
|
+
},
|
|
389
|
+
{
|
|
390
|
+
"id": "CWE-362",
|
|
391
|
+
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
|
|
392
|
+
"category": "Concurrency"
|
|
393
|
+
},
|
|
394
|
+
{
|
|
395
|
+
"id": "CWE-416",
|
|
396
|
+
"name": "Use After Free",
|
|
397
|
+
"category": "Memory Safety"
|
|
398
|
+
},
|
|
399
|
+
{
|
|
400
|
+
"id": "CWE-672",
|
|
401
|
+
"name": "Operation on a Resource after Expiration or Release",
|
|
402
|
+
"category": "Memory Safety"
|
|
403
|
+
},
|
|
404
|
+
{
|
|
405
|
+
"id": "CWE-787",
|
|
406
|
+
"name": "Out-of-bounds Write",
|
|
407
|
+
"category": "Memory Safety"
|
|
408
|
+
}
|
|
409
|
+
],
|
|
410
|
+
"atlas": [],
|
|
411
|
+
"d3fend": [
|
|
412
|
+
{
|
|
413
|
+
"id": "D3-ASLR",
|
|
414
|
+
"name": "Address Space Layout Randomization",
|
|
415
|
+
"tactic": "Harden"
|
|
416
|
+
},
|
|
417
|
+
{
|
|
418
|
+
"id": "D3-EAL",
|
|
419
|
+
"name": "Executable Allowlisting",
|
|
420
|
+
"tactic": "Harden"
|
|
421
|
+
},
|
|
422
|
+
{
|
|
423
|
+
"id": "D3-PHRA",
|
|
424
|
+
"name": "Process Hardware Resource Access",
|
|
425
|
+
"tactic": "Isolate"
|
|
426
|
+
},
|
|
427
|
+
{
|
|
428
|
+
"id": "D3-PSEP",
|
|
429
|
+
"name": "Process Segment Execution Prevention",
|
|
430
|
+
"tactic": "Harden"
|
|
431
|
+
}
|
|
432
|
+
],
|
|
433
|
+
"framework_gaps": [
|
|
434
|
+
{
|
|
435
|
+
"id": "CIS-Controls-v8-Control7",
|
|
436
|
+
"framework": "CIS Controls v8",
|
|
437
|
+
"control_name": "Continuous Vulnerability Management"
|
|
438
|
+
},
|
|
439
|
+
{
|
|
440
|
+
"id": "ISO-27001-2022-A.8.8",
|
|
441
|
+
"framework": "ISO/IEC 27001:2022",
|
|
442
|
+
"control_name": "Management of technical vulnerabilities"
|
|
443
|
+
},
|
|
444
|
+
{
|
|
445
|
+
"id": "NIS2-Art21-patch-management",
|
|
446
|
+
"framework": "EU NIS2 Directive",
|
|
447
|
+
"control_name": "Vulnerability handling and disclosure"
|
|
448
|
+
},
|
|
449
|
+
{
|
|
450
|
+
"id": "NIST-800-218-SSDF",
|
|
451
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
452
|
+
"control_name": "Secure Software Development Framework"
|
|
453
|
+
},
|
|
454
|
+
{
|
|
455
|
+
"id": "NIST-800-53-SC-8",
|
|
456
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
457
|
+
"control_name": "Transmission Confidentiality and Integrity"
|
|
458
|
+
},
|
|
459
|
+
{
|
|
460
|
+
"id": "NIST-800-53-SI-2",
|
|
461
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
462
|
+
"control_name": "Flaw Remediation"
|
|
463
|
+
},
|
|
464
|
+
{
|
|
465
|
+
"id": "PCI-DSS-4.0-6.3.3",
|
|
466
|
+
"framework": "PCI DSS 4.0",
|
|
467
|
+
"control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
|
|
468
|
+
},
|
|
469
|
+
{
|
|
470
|
+
"id": "SOC2-CC9-vendor-management",
|
|
471
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
472
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
473
|
+
}
|
|
474
|
+
],
|
|
475
|
+
"attack_refs": [
|
|
476
|
+
"T1068",
|
|
477
|
+
"T1548.001"
|
|
478
|
+
],
|
|
479
|
+
"rfc_refs": [
|
|
480
|
+
"RFC-4301",
|
|
481
|
+
"RFC-4303",
|
|
482
|
+
"RFC-7296"
|
|
483
|
+
]
|
|
484
|
+
}
|
|
485
|
+
},
|
|
486
|
+
"CVE-2025-30066": {
|
|
487
|
+
"name": "tj-actions/changed-files GitHub Action Supply-Chain Compromise (secret exfiltration to workflow logs)",
|
|
488
|
+
"rwep": 78,
|
|
489
|
+
"cvss": 8.6,
|
|
490
|
+
"cisa_kev": true,
|
|
491
|
+
"epss_score": 0.9183,
|
|
492
|
+
"referencing_skills": [
|
|
493
|
+
"mcp-agent-trust",
|
|
494
|
+
"supply-chain-integrity",
|
|
495
|
+
"identity-assurance",
|
|
496
|
+
"sector-healthcare",
|
|
497
|
+
"sector-federal-government",
|
|
498
|
+
"cloud-security",
|
|
499
|
+
"container-runtime-security",
|
|
500
|
+
"mlops-security",
|
|
501
|
+
"age-gates-child-safety"
|
|
502
|
+
],
|
|
503
|
+
"chain": {
|
|
504
|
+
"cwes": [
|
|
505
|
+
{
|
|
506
|
+
"id": "CWE-1188",
|
|
507
|
+
"name": "Initialization of a Resource with an Insecure Default",
|
|
508
|
+
"category": "Configuration"
|
|
509
|
+
},
|
|
510
|
+
{
|
|
511
|
+
"id": "CWE-1357",
|
|
512
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
513
|
+
"category": "Supply Chain"
|
|
514
|
+
},
|
|
515
|
+
{
|
|
516
|
+
"id": "CWE-1395",
|
|
517
|
+
"name": "Dependency on Vulnerable Third-Party Component",
|
|
518
|
+
"category": "Supply Chain"
|
|
519
|
+
},
|
|
520
|
+
{
|
|
521
|
+
"id": "CWE-1426",
|
|
522
|
+
"name": "Improper Validation of Generative AI Output",
|
|
523
|
+
"category": "AI/ML"
|
|
524
|
+
},
|
|
525
|
+
{
|
|
526
|
+
"id": "CWE-200",
|
|
527
|
+
"name": "Exposure of Sensitive Information to an Unauthorized Actor",
|
|
528
|
+
"category": "Information Exposure"
|
|
529
|
+
},
|
|
530
|
+
{
|
|
531
|
+
"id": "CWE-22",
|
|
532
|
+
"name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
|
|
533
|
+
"category": "Path/Resource"
|
|
534
|
+
},
|
|
535
|
+
{
|
|
536
|
+
"id": "CWE-269",
|
|
537
|
+
"name": "Improper Privilege Management",
|
|
538
|
+
"category": "Authorization"
|
|
539
|
+
},
|
|
540
|
+
{
|
|
541
|
+
"id": "CWE-287",
|
|
542
|
+
"name": "Improper Authentication",
|
|
543
|
+
"category": "Authentication"
|
|
544
|
+
},
|
|
545
|
+
{
|
|
546
|
+
"id": "CWE-306",
|
|
547
|
+
"name": "Missing Authentication for Critical Function",
|
|
548
|
+
"category": "Authentication"
|
|
549
|
+
},
|
|
550
|
+
{
|
|
551
|
+
"id": "CWE-345",
|
|
552
|
+
"name": "Insufficient Verification of Data Authenticity",
|
|
553
|
+
"category": "Authenticity / Supply Chain"
|
|
554
|
+
},
|
|
555
|
+
{
|
|
556
|
+
"id": "CWE-352",
|
|
557
|
+
"name": "Cross-Site Request Forgery (CSRF)",
|
|
558
|
+
"category": "Session"
|
|
559
|
+
},
|
|
560
|
+
{
|
|
561
|
+
"id": "CWE-434",
|
|
562
|
+
"name": "Unrestricted Upload of File with Dangerous Type",
|
|
563
|
+
"category": "File Handling"
|
|
564
|
+
},
|
|
565
|
+
{
|
|
566
|
+
"id": "CWE-494",
|
|
567
|
+
"name": "Download of Code Without Integrity Check",
|
|
568
|
+
"category": "Supply Chain"
|
|
569
|
+
},
|
|
570
|
+
{
|
|
571
|
+
"id": "CWE-502",
|
|
572
|
+
"name": "Deserialization of Untrusted Data",
|
|
573
|
+
"category": "Serialization"
|
|
574
|
+
},
|
|
575
|
+
{
|
|
576
|
+
"id": "CWE-732",
|
|
577
|
+
"name": "Incorrect Permission Assignment for Critical Resource",
|
|
578
|
+
"category": "Authorization"
|
|
579
|
+
},
|
|
580
|
+
{
|
|
581
|
+
"id": "CWE-77",
|
|
582
|
+
"name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
|
|
583
|
+
"category": "Injection"
|
|
584
|
+
},
|
|
585
|
+
{
|
|
586
|
+
"id": "CWE-787",
|
|
587
|
+
"name": "Out-of-bounds Write",
|
|
588
|
+
"category": "Memory Safety"
|
|
589
|
+
},
|
|
590
|
+
{
|
|
591
|
+
"id": "CWE-798",
|
|
592
|
+
"name": "Use of Hard-coded Credentials",
|
|
593
|
+
"category": "Credentials"
|
|
594
|
+
},
|
|
595
|
+
{
|
|
596
|
+
"id": "CWE-829",
|
|
597
|
+
"name": "Inclusion of Functionality from Untrusted Control Sphere",
|
|
598
|
+
"category": "Supply Chain"
|
|
599
|
+
},
|
|
600
|
+
{
|
|
601
|
+
"id": "CWE-862",
|
|
602
|
+
"name": "Missing Authorization",
|
|
603
|
+
"category": "Authorization"
|
|
604
|
+
},
|
|
605
|
+
{
|
|
606
|
+
"id": "CWE-863",
|
|
607
|
+
"name": "Incorrect Authorization",
|
|
608
|
+
"category": "Authorization"
|
|
609
|
+
},
|
|
610
|
+
{
|
|
611
|
+
"id": "CWE-918",
|
|
612
|
+
"name": "Server-Side Request Forgery (SSRF)",
|
|
613
|
+
"category": "Network"
|
|
614
|
+
},
|
|
615
|
+
{
|
|
616
|
+
"id": "CWE-94",
|
|
617
|
+
"name": "Improper Control of Generation of Code (Code Injection)",
|
|
618
|
+
"category": "Injection"
|
|
619
|
+
}
|
|
620
|
+
],
|
|
621
|
+
"atlas": [
|
|
622
|
+
{
|
|
623
|
+
"id": "AML.T0010",
|
|
624
|
+
"name": "ML Supply Chain Compromise",
|
|
625
|
+
"tactic": "Initial Access"
|
|
626
|
+
},
|
|
627
|
+
{
|
|
628
|
+
"id": "AML.T0016",
|
|
629
|
+
"name": "Obtain Capabilities: Develop Capabilities",
|
|
630
|
+
"tactic": "Resource Development"
|
|
631
|
+
},
|
|
632
|
+
{
|
|
633
|
+
"id": "AML.T0017",
|
|
634
|
+
"name": "Discover ML Model Ontology",
|
|
635
|
+
"tactic": "Discovery"
|
|
636
|
+
},
|
|
637
|
+
{
|
|
638
|
+
"id": "AML.T0018",
|
|
639
|
+
"name": "Backdoor ML Model",
|
|
640
|
+
"tactic": "Persistence"
|
|
641
|
+
},
|
|
642
|
+
{
|
|
643
|
+
"id": "AML.T0020",
|
|
644
|
+
"name": "Poison Training Data",
|
|
645
|
+
"tactic": "ML Attack Staging"
|
|
646
|
+
},
|
|
647
|
+
{
|
|
648
|
+
"id": "AML.T0043",
|
|
649
|
+
"name": "Craft Adversarial Data",
|
|
650
|
+
"tactic": "ML Attack Staging"
|
|
651
|
+
},
|
|
652
|
+
{
|
|
653
|
+
"id": "AML.T0051",
|
|
654
|
+
"name": "LLM Prompt Injection",
|
|
655
|
+
"tactic": "Execution"
|
|
656
|
+
},
|
|
657
|
+
{
|
|
658
|
+
"id": "AML.T0096",
|
|
659
|
+
"name": "AI API as Covert C2 Channel",
|
|
660
|
+
"tactic": "Command and Control"
|
|
661
|
+
}
|
|
662
|
+
],
|
|
663
|
+
"d3fend": [
|
|
664
|
+
{
|
|
665
|
+
"id": "D3-CBAN",
|
|
666
|
+
"name": "Certificate-based Authentication",
|
|
667
|
+
"tactic": "Harden"
|
|
668
|
+
},
|
|
669
|
+
{
|
|
670
|
+
"id": "D3-CSPP",
|
|
671
|
+
"name": "Client-server Payload Profiling",
|
|
672
|
+
"tactic": "Detect"
|
|
673
|
+
},
|
|
674
|
+
{
|
|
675
|
+
"id": "D3-EAL",
|
|
676
|
+
"name": "Executable Allowlisting",
|
|
677
|
+
"tactic": "Harden"
|
|
678
|
+
},
|
|
679
|
+
{
|
|
680
|
+
"id": "D3-EHB",
|
|
681
|
+
"name": "Executable Hashbased Allowlist",
|
|
682
|
+
"tactic": "Harden"
|
|
683
|
+
},
|
|
684
|
+
{
|
|
685
|
+
"id": "D3-MFA",
|
|
686
|
+
"name": "Multi-factor Authentication",
|
|
687
|
+
"tactic": "Harden"
|
|
688
|
+
}
|
|
689
|
+
],
|
|
690
|
+
"framework_gaps": [
|
|
691
|
+
{
|
|
692
|
+
"id": "ALL-MCP-TOOL-TRUST",
|
|
693
|
+
"framework": "ALL",
|
|
694
|
+
"control_name": "MCP/Agent Tool Trust Boundaries"
|
|
695
|
+
},
|
|
696
|
+
{
|
|
697
|
+
"id": "CMMC-2.0-Level-2",
|
|
698
|
+
"framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
|
|
699
|
+
"control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
|
|
700
|
+
},
|
|
701
|
+
{
|
|
702
|
+
"id": "CycloneDX-v1.6-SBOM",
|
|
703
|
+
"framework": "CycloneDX v1.6 (OWASP SBOM standard)",
|
|
704
|
+
"control_name": "Software Bill of Materials"
|
|
705
|
+
},
|
|
706
|
+
{
|
|
707
|
+
"id": "FedRAMP-Rev5-Moderate",
|
|
708
|
+
"framework": "FedRAMP Rev 5 Moderate",
|
|
709
|
+
"control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
|
|
710
|
+
},
|
|
711
|
+
{
|
|
712
|
+
"id": "HIPAA-Security-Rule-164.312(a)(1)",
|
|
713
|
+
"framework": "HIPAA Security Rule (45 CFR § 164.312)",
|
|
714
|
+
"control_name": "Access control standard (technical safeguards)"
|
|
715
|
+
},
|
|
716
|
+
{
|
|
717
|
+
"id": "HITRUST-CSF-v11.4-09.l",
|
|
718
|
+
"framework": "HITRUST CSF v11.4",
|
|
719
|
+
"control_name": "Outsourced services management"
|
|
720
|
+
},
|
|
721
|
+
{
|
|
722
|
+
"id": "ISO-27001-2022-A.8.28",
|
|
723
|
+
"framework": "ISO/IEC 27001:2022",
|
|
724
|
+
"control_name": "Secure coding"
|
|
725
|
+
},
|
|
726
|
+
{
|
|
727
|
+
"id": "ISO-27001-2022-A.8.30",
|
|
728
|
+
"framework": "ISO/IEC 27001:2022",
|
|
729
|
+
"control_name": "Outsourced development"
|
|
730
|
+
},
|
|
731
|
+
{
|
|
732
|
+
"id": "ISO-IEC-42001-2023-clause-6.1.2",
|
|
733
|
+
"framework": "ISO/IEC 42001:2023 (AI Management System)",
|
|
734
|
+
"control_name": "AI risk assessment"
|
|
735
|
+
},
|
|
736
|
+
{
|
|
737
|
+
"id": "NIST-800-218-SSDF",
|
|
738
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
739
|
+
"control_name": "Secure Software Development Framework"
|
|
740
|
+
},
|
|
741
|
+
{
|
|
742
|
+
"id": "NIST-800-53-AC-2",
|
|
743
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
744
|
+
"control_name": "Account Management"
|
|
745
|
+
},
|
|
746
|
+
{
|
|
747
|
+
"id": "NIST-800-53-CM-7",
|
|
748
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
749
|
+
"control_name": "Least Functionality"
|
|
750
|
+
},
|
|
751
|
+
{
|
|
752
|
+
"id": "NIST-800-53-SA-12",
|
|
753
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
754
|
+
"control_name": "Supply Chain Protection"
|
|
755
|
+
},
|
|
756
|
+
{
|
|
757
|
+
"id": "NIST-800-63B-rev4",
|
|
758
|
+
"framework": "NIST SP 800-63B Rev 4 (Digital Identity Guidelines — Authentication & Lifecycle Mgmt)",
|
|
759
|
+
"control_name": "Authentication and Lifecycle Management (AAL/IAL/FAL)"
|
|
760
|
+
},
|
|
761
|
+
{
|
|
762
|
+
"id": "NIST-AI-RMF-MEASURE-2.5",
|
|
763
|
+
"framework": "NIST AI RMF 1.0",
|
|
764
|
+
"control_name": "AI system to human interaction evaluation"
|
|
765
|
+
},
|
|
766
|
+
{
|
|
767
|
+
"id": "OWASP-LLM-Top-10-2025-LLM06",
|
|
768
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
769
|
+
"control_name": "Excessive Agency"
|
|
770
|
+
},
|
|
771
|
+
{
|
|
772
|
+
"id": "OWASP-LLM-Top-10-2025-LLM08",
|
|
773
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
774
|
+
"control_name": "Vector and Embedding Weaknesses"
|
|
775
|
+
},
|
|
776
|
+
{
|
|
777
|
+
"id": "PSD2-RTS-SCA",
|
|
778
|
+
"framework": "EU PSD2 Regulatory Technical Standards on Strong Customer Authentication (Commission Delegated Regulation (EU) 2018/389)",
|
|
779
|
+
"control_name": "Strong Customer Authentication and Common and Secure Communication"
|
|
780
|
+
},
|
|
781
|
+
{
|
|
782
|
+
"id": "SLSA-v1.0-Build-L3",
|
|
783
|
+
"framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
|
|
784
|
+
"control_name": "Hardened build platform with non-falsifiable provenance"
|
|
785
|
+
},
|
|
786
|
+
{
|
|
787
|
+
"id": "SOC2-CC6-logical-access",
|
|
788
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
789
|
+
"control_name": "Logical and Physical Access Controls"
|
|
790
|
+
},
|
|
791
|
+
{
|
|
792
|
+
"id": "SOC2-CC9-vendor-management",
|
|
793
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
794
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
795
|
+
},
|
|
796
|
+
{
|
|
797
|
+
"id": "SPDX-v3.0-SBOM",
|
|
798
|
+
"framework": "SPDX v3.0 (ISO/IEC 5962-aligned SBOM standard)",
|
|
799
|
+
"control_name": "Software Package Data Exchange — SBOM"
|
|
800
|
+
},
|
|
801
|
+
{
|
|
802
|
+
"id": "SWIFT-CSCF-v2026-1.1",
|
|
803
|
+
"framework": "SWIFT Customer Security Controls Framework v2026",
|
|
804
|
+
"control_name": "SWIFT Environment Protection"
|
|
805
|
+
},
|
|
806
|
+
{
|
|
807
|
+
"id": "VEX-CSAF-v2.1",
|
|
808
|
+
"framework": "VEX via OASIS CSAF 2.1 (Common Security Advisory Framework)",
|
|
809
|
+
"control_name": "Vulnerability Exploitability eXchange profile"
|
|
810
|
+
}
|
|
811
|
+
],
|
|
812
|
+
"attack_refs": [
|
|
813
|
+
"T1059",
|
|
814
|
+
"T1068",
|
|
815
|
+
"T1078",
|
|
816
|
+
"T1110",
|
|
817
|
+
"T1190",
|
|
818
|
+
"T1195.001",
|
|
819
|
+
"T1195.002",
|
|
820
|
+
"T1530",
|
|
821
|
+
"T1552",
|
|
822
|
+
"T1554",
|
|
823
|
+
"T1556",
|
|
824
|
+
"T1565",
|
|
825
|
+
"T1567",
|
|
826
|
+
"T1610",
|
|
827
|
+
"T1611"
|
|
828
|
+
],
|
|
829
|
+
"rfc_refs": [
|
|
830
|
+
"RFC-6749",
|
|
831
|
+
"RFC-7519",
|
|
832
|
+
"RFC-8032",
|
|
833
|
+
"RFC-8446",
|
|
834
|
+
"RFC-8725",
|
|
835
|
+
"RFC-9114",
|
|
836
|
+
"RFC-9180",
|
|
837
|
+
"RFC-9421",
|
|
838
|
+
"RFC-9700"
|
|
839
|
+
]
|
|
840
|
+
}
|
|
841
|
+
},
|
|
842
|
+
"CVE-2025-30154": {
|
|
843
|
+
"name": "reviewdog/action-setup GitHub Action Supply-Chain Compromise (secret exfiltration to workflow logs)",
|
|
844
|
+
"rwep": 72,
|
|
845
|
+
"cvss": 8.6,
|
|
846
|
+
"cisa_kev": true,
|
|
847
|
+
"epss_score": 0.34556,
|
|
848
|
+
"referencing_skills": [
|
|
849
|
+
"mcp-agent-trust",
|
|
850
|
+
"supply-chain-integrity",
|
|
851
|
+
"identity-assurance",
|
|
852
|
+
"sector-healthcare",
|
|
853
|
+
"sector-federal-government",
|
|
854
|
+
"cloud-security",
|
|
855
|
+
"container-runtime-security",
|
|
856
|
+
"mlops-security",
|
|
857
|
+
"age-gates-child-safety"
|
|
858
|
+
],
|
|
859
|
+
"chain": {
|
|
860
|
+
"cwes": [
|
|
861
|
+
{
|
|
862
|
+
"id": "CWE-1188",
|
|
863
|
+
"name": "Initialization of a Resource with an Insecure Default",
|
|
864
|
+
"category": "Configuration"
|
|
865
|
+
},
|
|
866
|
+
{
|
|
867
|
+
"id": "CWE-1357",
|
|
868
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
869
|
+
"category": "Supply Chain"
|
|
870
|
+
},
|
|
871
|
+
{
|
|
872
|
+
"id": "CWE-1395",
|
|
873
|
+
"name": "Dependency on Vulnerable Third-Party Component",
|
|
874
|
+
"category": "Supply Chain"
|
|
875
|
+
},
|
|
876
|
+
{
|
|
877
|
+
"id": "CWE-1426",
|
|
878
|
+
"name": "Improper Validation of Generative AI Output",
|
|
879
|
+
"category": "AI/ML"
|
|
880
|
+
},
|
|
881
|
+
{
|
|
882
|
+
"id": "CWE-200",
|
|
883
|
+
"name": "Exposure of Sensitive Information to an Unauthorized Actor",
|
|
884
|
+
"category": "Information Exposure"
|
|
885
|
+
},
|
|
886
|
+
{
|
|
887
|
+
"id": "CWE-22",
|
|
888
|
+
"name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
|
|
889
|
+
"category": "Path/Resource"
|
|
890
|
+
},
|
|
891
|
+
{
|
|
892
|
+
"id": "CWE-269",
|
|
893
|
+
"name": "Improper Privilege Management",
|
|
894
|
+
"category": "Authorization"
|
|
895
|
+
},
|
|
896
|
+
{
|
|
897
|
+
"id": "CWE-287",
|
|
898
|
+
"name": "Improper Authentication",
|
|
899
|
+
"category": "Authentication"
|
|
900
|
+
},
|
|
901
|
+
{
|
|
902
|
+
"id": "CWE-306",
|
|
903
|
+
"name": "Missing Authentication for Critical Function",
|
|
904
|
+
"category": "Authentication"
|
|
905
|
+
},
|
|
906
|
+
{
|
|
907
|
+
"id": "CWE-345",
|
|
908
|
+
"name": "Insufficient Verification of Data Authenticity",
|
|
909
|
+
"category": "Authenticity / Supply Chain"
|
|
910
|
+
},
|
|
911
|
+
{
|
|
912
|
+
"id": "CWE-352",
|
|
913
|
+
"name": "Cross-Site Request Forgery (CSRF)",
|
|
914
|
+
"category": "Session"
|
|
915
|
+
},
|
|
916
|
+
{
|
|
917
|
+
"id": "CWE-434",
|
|
918
|
+
"name": "Unrestricted Upload of File with Dangerous Type",
|
|
919
|
+
"category": "File Handling"
|
|
920
|
+
},
|
|
921
|
+
{
|
|
922
|
+
"id": "CWE-494",
|
|
923
|
+
"name": "Download of Code Without Integrity Check",
|
|
924
|
+
"category": "Supply Chain"
|
|
925
|
+
},
|
|
926
|
+
{
|
|
927
|
+
"id": "CWE-502",
|
|
928
|
+
"name": "Deserialization of Untrusted Data",
|
|
929
|
+
"category": "Serialization"
|
|
930
|
+
},
|
|
931
|
+
{
|
|
932
|
+
"id": "CWE-732",
|
|
933
|
+
"name": "Incorrect Permission Assignment for Critical Resource",
|
|
934
|
+
"category": "Authorization"
|
|
935
|
+
},
|
|
936
|
+
{
|
|
937
|
+
"id": "CWE-77",
|
|
938
|
+
"name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
|
|
939
|
+
"category": "Injection"
|
|
940
|
+
},
|
|
941
|
+
{
|
|
942
|
+
"id": "CWE-787",
|
|
943
|
+
"name": "Out-of-bounds Write",
|
|
944
|
+
"category": "Memory Safety"
|
|
945
|
+
},
|
|
946
|
+
{
|
|
947
|
+
"id": "CWE-798",
|
|
948
|
+
"name": "Use of Hard-coded Credentials",
|
|
949
|
+
"category": "Credentials"
|
|
950
|
+
},
|
|
951
|
+
{
|
|
952
|
+
"id": "CWE-829",
|
|
953
|
+
"name": "Inclusion of Functionality from Untrusted Control Sphere",
|
|
954
|
+
"category": "Supply Chain"
|
|
955
|
+
},
|
|
956
|
+
{
|
|
957
|
+
"id": "CWE-862",
|
|
958
|
+
"name": "Missing Authorization",
|
|
959
|
+
"category": "Authorization"
|
|
960
|
+
},
|
|
961
|
+
{
|
|
962
|
+
"id": "CWE-863",
|
|
963
|
+
"name": "Incorrect Authorization",
|
|
964
|
+
"category": "Authorization"
|
|
965
|
+
},
|
|
966
|
+
{
|
|
967
|
+
"id": "CWE-918",
|
|
968
|
+
"name": "Server-Side Request Forgery (SSRF)",
|
|
969
|
+
"category": "Network"
|
|
970
|
+
},
|
|
971
|
+
{
|
|
972
|
+
"id": "CWE-94",
|
|
973
|
+
"name": "Improper Control of Generation of Code (Code Injection)",
|
|
974
|
+
"category": "Injection"
|
|
975
|
+
}
|
|
976
|
+
],
|
|
977
|
+
"atlas": [
|
|
978
|
+
{
|
|
979
|
+
"id": "AML.T0010",
|
|
980
|
+
"name": "ML Supply Chain Compromise",
|
|
981
|
+
"tactic": "Initial Access"
|
|
982
|
+
},
|
|
983
|
+
{
|
|
984
|
+
"id": "AML.T0016",
|
|
985
|
+
"name": "Obtain Capabilities: Develop Capabilities",
|
|
986
|
+
"tactic": "Resource Development"
|
|
987
|
+
},
|
|
988
|
+
{
|
|
989
|
+
"id": "AML.T0017",
|
|
990
|
+
"name": "Discover ML Model Ontology",
|
|
991
|
+
"tactic": "Discovery"
|
|
992
|
+
},
|
|
993
|
+
{
|
|
994
|
+
"id": "AML.T0018",
|
|
995
|
+
"name": "Backdoor ML Model",
|
|
996
|
+
"tactic": "Persistence"
|
|
997
|
+
},
|
|
998
|
+
{
|
|
999
|
+
"id": "AML.T0020",
|
|
1000
|
+
"name": "Poison Training Data",
|
|
1001
|
+
"tactic": "ML Attack Staging"
|
|
1002
|
+
},
|
|
1003
|
+
{
|
|
1004
|
+
"id": "AML.T0043",
|
|
1005
|
+
"name": "Craft Adversarial Data",
|
|
1006
|
+
"tactic": "ML Attack Staging"
|
|
1007
|
+
},
|
|
1008
|
+
{
|
|
1009
|
+
"id": "AML.T0051",
|
|
1010
|
+
"name": "LLM Prompt Injection",
|
|
1011
|
+
"tactic": "Execution"
|
|
1012
|
+
},
|
|
1013
|
+
{
|
|
1014
|
+
"id": "AML.T0096",
|
|
1015
|
+
"name": "AI API as Covert C2 Channel",
|
|
1016
|
+
"tactic": "Command and Control"
|
|
1017
|
+
}
|
|
1018
|
+
],
|
|
1019
|
+
"d3fend": [
|
|
1020
|
+
{
|
|
1021
|
+
"id": "D3-CBAN",
|
|
1022
|
+
"name": "Certificate-based Authentication",
|
|
1023
|
+
"tactic": "Harden"
|
|
1024
|
+
},
|
|
1025
|
+
{
|
|
1026
|
+
"id": "D3-CSPP",
|
|
1027
|
+
"name": "Client-server Payload Profiling",
|
|
1028
|
+
"tactic": "Detect"
|
|
1029
|
+
},
|
|
1030
|
+
{
|
|
1031
|
+
"id": "D3-EAL",
|
|
1032
|
+
"name": "Executable Allowlisting",
|
|
1033
|
+
"tactic": "Harden"
|
|
1034
|
+
},
|
|
1035
|
+
{
|
|
1036
|
+
"id": "D3-EHB",
|
|
1037
|
+
"name": "Executable Hashbased Allowlist",
|
|
1038
|
+
"tactic": "Harden"
|
|
1039
|
+
},
|
|
1040
|
+
{
|
|
1041
|
+
"id": "D3-MFA",
|
|
1042
|
+
"name": "Multi-factor Authentication",
|
|
1043
|
+
"tactic": "Harden"
|
|
1044
|
+
}
|
|
1045
|
+
],
|
|
1046
|
+
"framework_gaps": [
|
|
1047
|
+
{
|
|
1048
|
+
"id": "ALL-MCP-TOOL-TRUST",
|
|
1049
|
+
"framework": "ALL",
|
|
1050
|
+
"control_name": "MCP/Agent Tool Trust Boundaries"
|
|
1051
|
+
},
|
|
1052
|
+
{
|
|
1053
|
+
"id": "CMMC-2.0-Level-2",
|
|
1054
|
+
"framework": "CMMC 2.0 (Cybersecurity Maturity Model Certification) Level 2",
|
|
1055
|
+
"control_name": "Level 2 — Advanced (110 NIST 800-171 Rev 2 controls)"
|
|
1056
|
+
},
|
|
1057
|
+
{
|
|
1058
|
+
"id": "CycloneDX-v1.6-SBOM",
|
|
1059
|
+
"framework": "CycloneDX v1.6 (OWASP SBOM standard)",
|
|
1060
|
+
"control_name": "Software Bill of Materials"
|
|
1061
|
+
},
|
|
1062
|
+
{
|
|
1063
|
+
"id": "FedRAMP-Rev5-Moderate",
|
|
1064
|
+
"framework": "FedRAMP Rev 5 Moderate",
|
|
1065
|
+
"control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
|
|
1066
|
+
},
|
|
1067
|
+
{
|
|
1068
|
+
"id": "HIPAA-Security-Rule-164.312(a)(1)",
|
|
1069
|
+
"framework": "HIPAA Security Rule (45 CFR § 164.312)",
|
|
1070
|
+
"control_name": "Access control standard (technical safeguards)"
|
|
1071
|
+
},
|
|
1072
|
+
{
|
|
1073
|
+
"id": "HITRUST-CSF-v11.4-09.l",
|
|
1074
|
+
"framework": "HITRUST CSF v11.4",
|
|
1075
|
+
"control_name": "Outsourced services management"
|
|
1076
|
+
},
|
|
1077
|
+
{
|
|
1078
|
+
"id": "ISO-27001-2022-A.8.28",
|
|
1079
|
+
"framework": "ISO/IEC 27001:2022",
|
|
1080
|
+
"control_name": "Secure coding"
|
|
1081
|
+
},
|
|
1082
|
+
{
|
|
1083
|
+
"id": "ISO-27001-2022-A.8.30",
|
|
1084
|
+
"framework": "ISO/IEC 27001:2022",
|
|
1085
|
+
"control_name": "Outsourced development"
|
|
1086
|
+
},
|
|
1087
|
+
{
|
|
1088
|
+
"id": "ISO-IEC-42001-2023-clause-6.1.2",
|
|
1089
|
+
"framework": "ISO/IEC 42001:2023 (AI Management System)",
|
|
1090
|
+
"control_name": "AI risk assessment"
|
|
1091
|
+
},
|
|
1092
|
+
{
|
|
1093
|
+
"id": "NIST-800-218-SSDF",
|
|
1094
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
1095
|
+
"control_name": "Secure Software Development Framework"
|
|
1096
|
+
},
|
|
1097
|
+
{
|
|
1098
|
+
"id": "NIST-800-53-AC-2",
|
|
1099
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
1100
|
+
"control_name": "Account Management"
|
|
1101
|
+
},
|
|
1102
|
+
{
|
|
1103
|
+
"id": "NIST-800-53-CM-7",
|
|
1104
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
1105
|
+
"control_name": "Least Functionality"
|
|
1106
|
+
},
|
|
1107
|
+
{
|
|
1108
|
+
"id": "NIST-800-53-SA-12",
|
|
1109
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
1110
|
+
"control_name": "Supply Chain Protection"
|
|
1111
|
+
},
|
|
1112
|
+
{
|
|
1113
|
+
"id": "NIST-800-63B-rev4",
|
|
1114
|
+
"framework": "NIST SP 800-63B Rev 4 (Digital Identity Guidelines — Authentication & Lifecycle Mgmt)",
|
|
1115
|
+
"control_name": "Authentication and Lifecycle Management (AAL/IAL/FAL)"
|
|
1116
|
+
},
|
|
1117
|
+
{
|
|
1118
|
+
"id": "NIST-AI-RMF-MEASURE-2.5",
|
|
1119
|
+
"framework": "NIST AI RMF 1.0",
|
|
1120
|
+
"control_name": "AI system to human interaction evaluation"
|
|
1121
|
+
},
|
|
1122
|
+
{
|
|
1123
|
+
"id": "OWASP-LLM-Top-10-2025-LLM06",
|
|
1124
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
1125
|
+
"control_name": "Excessive Agency"
|
|
1126
|
+
},
|
|
1127
|
+
{
|
|
1128
|
+
"id": "OWASP-LLM-Top-10-2025-LLM08",
|
|
1129
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
1130
|
+
"control_name": "Vector and Embedding Weaknesses"
|
|
1131
|
+
},
|
|
1132
|
+
{
|
|
1133
|
+
"id": "PSD2-RTS-SCA",
|
|
1134
|
+
"framework": "EU PSD2 Regulatory Technical Standards on Strong Customer Authentication (Commission Delegated Regulation (EU) 2018/389)",
|
|
1135
|
+
"control_name": "Strong Customer Authentication and Common and Secure Communication"
|
|
1136
|
+
},
|
|
1137
|
+
{
|
|
1138
|
+
"id": "SLSA-v1.0-Build-L3",
|
|
1139
|
+
"framework": "SLSA v1.0 (Supply-chain Levels for Software Artifacts) — Build Track",
|
|
1140
|
+
"control_name": "Hardened build platform with non-falsifiable provenance"
|
|
1141
|
+
},
|
|
1142
|
+
{
|
|
1143
|
+
"id": "SOC2-CC6-logical-access",
|
|
1144
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
1145
|
+
"control_name": "Logical and Physical Access Controls"
|
|
1146
|
+
},
|
|
1147
|
+
{
|
|
1148
|
+
"id": "SOC2-CC9-vendor-management",
|
|
1149
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
1150
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
1151
|
+
},
|
|
1152
|
+
{
|
|
1153
|
+
"id": "SPDX-v3.0-SBOM",
|
|
1154
|
+
"framework": "SPDX v3.0 (ISO/IEC 5962-aligned SBOM standard)",
|
|
1155
|
+
"control_name": "Software Package Data Exchange — SBOM"
|
|
1156
|
+
},
|
|
1157
|
+
{
|
|
1158
|
+
"id": "SWIFT-CSCF-v2026-1.1",
|
|
1159
|
+
"framework": "SWIFT Customer Security Controls Framework v2026",
|
|
1160
|
+
"control_name": "SWIFT Environment Protection"
|
|
1161
|
+
},
|
|
1162
|
+
{
|
|
1163
|
+
"id": "VEX-CSAF-v2.1",
|
|
1164
|
+
"framework": "VEX via OASIS CSAF 2.1 (Common Security Advisory Framework)",
|
|
1165
|
+
"control_name": "Vulnerability Exploitability eXchange profile"
|
|
1166
|
+
}
|
|
1167
|
+
],
|
|
1168
|
+
"attack_refs": [
|
|
1169
|
+
"T1059",
|
|
1170
|
+
"T1068",
|
|
1171
|
+
"T1078",
|
|
1172
|
+
"T1110",
|
|
1173
|
+
"T1190",
|
|
1174
|
+
"T1195.001",
|
|
1175
|
+
"T1195.002",
|
|
1176
|
+
"T1530",
|
|
1177
|
+
"T1552",
|
|
1178
|
+
"T1554",
|
|
1179
|
+
"T1556",
|
|
1180
|
+
"T1565",
|
|
1181
|
+
"T1567",
|
|
1182
|
+
"T1610",
|
|
1183
|
+
"T1611"
|
|
1184
|
+
],
|
|
1185
|
+
"rfc_refs": [
|
|
1186
|
+
"RFC-6749",
|
|
1187
|
+
"RFC-7519",
|
|
1188
|
+
"RFC-8032",
|
|
1189
|
+
"RFC-8446",
|
|
1190
|
+
"RFC-8725",
|
|
1191
|
+
"RFC-9114",
|
|
1192
|
+
"RFC-9180",
|
|
1193
|
+
"RFC-9421",
|
|
1194
|
+
"RFC-9700"
|
|
1195
|
+
]
|
|
1196
|
+
}
|
|
1197
|
+
},
|
|
1198
|
+
"CVE-2026-48027": {
|
|
1199
|
+
"name": "Nx Console IDE Extension Supply-Chain Compromise (malicious marketplace version)",
|
|
1200
|
+
"rwep": 74,
|
|
1201
|
+
"cvss": 9.8,
|
|
1202
|
+
"cisa_kev": true,
|
|
1203
|
+
"epss_score": null,
|
|
1204
|
+
"referencing_skills": [
|
|
1205
|
+
"kernel-lpe-triage",
|
|
1206
|
+
"mcp-agent-trust",
|
|
1207
|
+
"identity-assurance",
|
|
1208
|
+
"coordinated-vuln-disclosure",
|
|
1209
|
+
"sector-healthcare",
|
|
1210
|
+
"cloud-security",
|
|
1211
|
+
"age-gates-child-safety"
|
|
1212
|
+
],
|
|
1213
|
+
"chain": {
|
|
1214
|
+
"cwes": [
|
|
1215
|
+
{
|
|
1216
|
+
"id": "CWE-1188",
|
|
1217
|
+
"name": "Initialization of a Resource with an Insecure Default",
|
|
1218
|
+
"category": "Configuration"
|
|
1219
|
+
},
|
|
1220
|
+
{
|
|
1221
|
+
"id": "CWE-125",
|
|
1222
|
+
"name": "Out-of-bounds Read",
|
|
1223
|
+
"category": "Memory Safety"
|
|
1224
|
+
},
|
|
1225
|
+
{
|
|
1226
|
+
"id": "CWE-1357",
|
|
1227
|
+
"name": "Reliance on Insufficiently Trustworthy Component",
|
|
1228
|
+
"category": "Supply Chain"
|
|
1229
|
+
},
|
|
1230
|
+
{
|
|
1231
|
+
"id": "CWE-1426",
|
|
1232
|
+
"name": "Improper Validation of Generative AI Output",
|
|
1233
|
+
"category": "AI/ML"
|
|
1234
|
+
},
|
|
1235
|
+
{
|
|
1236
|
+
"id": "CWE-200",
|
|
1237
|
+
"name": "Exposure of Sensitive Information to an Unauthorized Actor",
|
|
1238
|
+
"category": "Information Exposure"
|
|
1239
|
+
},
|
|
1240
|
+
{
|
|
1241
|
+
"id": "CWE-22",
|
|
1242
|
+
"name": "Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)",
|
|
1243
|
+
"category": "Path/Resource"
|
|
1244
|
+
},
|
|
1245
|
+
{
|
|
1246
|
+
"id": "CWE-269",
|
|
1247
|
+
"name": "Improper Privilege Management",
|
|
1248
|
+
"category": "Authorization"
|
|
1249
|
+
},
|
|
1250
|
+
{
|
|
1251
|
+
"id": "CWE-287",
|
|
1252
|
+
"name": "Improper Authentication",
|
|
1253
|
+
"category": "Authentication"
|
|
1254
|
+
},
|
|
1255
|
+
{
|
|
1256
|
+
"id": "CWE-306",
|
|
1257
|
+
"name": "Missing Authentication for Critical Function",
|
|
1258
|
+
"category": "Authentication"
|
|
1259
|
+
},
|
|
1260
|
+
{
|
|
1261
|
+
"id": "CWE-345",
|
|
1262
|
+
"name": "Insufficient Verification of Data Authenticity",
|
|
1263
|
+
"category": "Authenticity / Supply Chain"
|
|
1264
|
+
},
|
|
1265
|
+
{
|
|
1266
|
+
"id": "CWE-352",
|
|
1267
|
+
"name": "Cross-Site Request Forgery (CSRF)",
|
|
1268
|
+
"category": "Session"
|
|
1269
|
+
},
|
|
1270
|
+
{
|
|
1271
|
+
"id": "CWE-362",
|
|
1272
|
+
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)",
|
|
1273
|
+
"category": "Concurrency"
|
|
1274
|
+
},
|
|
1275
|
+
{
|
|
1276
|
+
"id": "CWE-416",
|
|
1277
|
+
"name": "Use After Free",
|
|
1278
|
+
"category": "Memory Safety"
|
|
1279
|
+
},
|
|
1280
|
+
{
|
|
1281
|
+
"id": "CWE-434",
|
|
1282
|
+
"name": "Unrestricted Upload of File with Dangerous Type",
|
|
1283
|
+
"category": "File Handling"
|
|
1284
|
+
},
|
|
1285
|
+
{
|
|
1286
|
+
"id": "CWE-494",
|
|
1287
|
+
"name": "Download of Code Without Integrity Check",
|
|
1288
|
+
"category": "Supply Chain"
|
|
1289
|
+
},
|
|
1290
|
+
{
|
|
1291
|
+
"id": "CWE-672",
|
|
1292
|
+
"name": "Operation on a Resource after Expiration or Release",
|
|
1293
|
+
"category": "Memory Safety"
|
|
1294
|
+
},
|
|
1295
|
+
{
|
|
1296
|
+
"id": "CWE-732",
|
|
1297
|
+
"name": "Incorrect Permission Assignment for Critical Resource",
|
|
1298
|
+
"category": "Authorization"
|
|
1299
|
+
},
|
|
1300
|
+
{
|
|
1301
|
+
"id": "CWE-77",
|
|
1302
|
+
"name": "Improper Neutralization of Special Elements used in a Command (Command Injection)",
|
|
1303
|
+
"category": "Injection"
|
|
1304
|
+
},
|
|
1305
|
+
{
|
|
1306
|
+
"id": "CWE-787",
|
|
1307
|
+
"name": "Out-of-bounds Write",
|
|
1308
|
+
"category": "Memory Safety"
|
|
1309
|
+
},
|
|
1310
|
+
{
|
|
1311
|
+
"id": "CWE-798",
|
|
1312
|
+
"name": "Use of Hard-coded Credentials",
|
|
1313
|
+
"category": "Credentials"
|
|
1314
|
+
},
|
|
1315
|
+
{
|
|
1316
|
+
"id": "CWE-862",
|
|
1317
|
+
"name": "Missing Authorization",
|
|
1318
|
+
"category": "Authorization"
|
|
1319
|
+
},
|
|
1320
|
+
{
|
|
1321
|
+
"id": "CWE-863",
|
|
1322
|
+
"name": "Incorrect Authorization",
|
|
1323
|
+
"category": "Authorization"
|
|
1324
|
+
},
|
|
1325
|
+
{
|
|
1326
|
+
"id": "CWE-918",
|
|
1327
|
+
"name": "Server-Side Request Forgery (SSRF)",
|
|
1328
|
+
"category": "Network"
|
|
1329
|
+
},
|
|
1330
|
+
{
|
|
1331
|
+
"id": "CWE-94",
|
|
1332
|
+
"name": "Improper Control of Generation of Code (Code Injection)",
|
|
1333
|
+
"category": "Injection"
|
|
1334
|
+
}
|
|
1335
|
+
],
|
|
1336
|
+
"atlas": [
|
|
1337
|
+
{
|
|
1338
|
+
"id": "AML.T0010",
|
|
1339
|
+
"name": "ML Supply Chain Compromise",
|
|
1340
|
+
"tactic": "Initial Access"
|
|
1341
|
+
},
|
|
1342
|
+
{
|
|
1343
|
+
"id": "AML.T0016",
|
|
1344
|
+
"name": "Obtain Capabilities: Develop Capabilities",
|
|
1345
|
+
"tactic": "Resource Development"
|
|
1346
|
+
},
|
|
1347
|
+
{
|
|
1348
|
+
"id": "AML.T0017",
|
|
1349
|
+
"name": "Discover ML Model Ontology",
|
|
1350
|
+
"tactic": "Discovery"
|
|
1351
|
+
},
|
|
1352
|
+
{
|
|
1353
|
+
"id": "AML.T0051",
|
|
1354
|
+
"name": "LLM Prompt Injection",
|
|
1355
|
+
"tactic": "Execution"
|
|
1356
|
+
},
|
|
1357
|
+
{
|
|
1358
|
+
"id": "AML.T0096",
|
|
1359
|
+
"name": "AI API as Covert C2 Channel",
|
|
1360
|
+
"tactic": "Command and Control"
|
|
1361
|
+
}
|
|
1362
|
+
],
|
|
1363
|
+
"d3fend": [
|
|
1364
|
+
{
|
|
1365
|
+
"id": "D3-ASLR",
|
|
1366
|
+
"name": "Address Space Layout Randomization",
|
|
1367
|
+
"tactic": "Harden"
|
|
1368
|
+
},
|
|
1369
|
+
{
|
|
1370
|
+
"id": "D3-CBAN",
|
|
1371
|
+
"name": "Certificate-based Authentication",
|
|
1372
|
+
"tactic": "Harden"
|
|
1373
|
+
},
|
|
1374
|
+
{
|
|
1375
|
+
"id": "D3-CSPP",
|
|
1376
|
+
"name": "Client-server Payload Profiling",
|
|
1377
|
+
"tactic": "Detect"
|
|
1378
|
+
},
|
|
1379
|
+
{
|
|
1380
|
+
"id": "D3-EAL",
|
|
1381
|
+
"name": "Executable Allowlisting",
|
|
1382
|
+
"tactic": "Harden"
|
|
1383
|
+
},
|
|
1384
|
+
{
|
|
1385
|
+
"id": "D3-EHB",
|
|
1386
|
+
"name": "Executable Hashbased Allowlist",
|
|
1387
|
+
"tactic": "Harden"
|
|
1388
|
+
},
|
|
1389
|
+
{
|
|
1390
|
+
"id": "D3-MFA",
|
|
1391
|
+
"name": "Multi-factor Authentication",
|
|
1392
|
+
"tactic": "Harden"
|
|
1393
|
+
},
|
|
1394
|
+
{
|
|
1395
|
+
"id": "D3-PHRA",
|
|
1396
|
+
"name": "Process Hardware Resource Access",
|
|
1397
|
+
"tactic": "Isolate"
|
|
1398
|
+
},
|
|
1399
|
+
{
|
|
1400
|
+
"id": "D3-PSEP",
|
|
1401
|
+
"name": "Process Segment Execution Prevention",
|
|
1402
|
+
"tactic": "Harden"
|
|
1403
|
+
}
|
|
1404
|
+
],
|
|
1405
|
+
"framework_gaps": [
|
|
1406
|
+
{
|
|
1407
|
+
"id": "ALL-MCP-TOOL-TRUST",
|
|
1408
|
+
"framework": "ALL",
|
|
1409
|
+
"control_name": "MCP/Agent Tool Trust Boundaries"
|
|
1410
|
+
},
|
|
1411
|
+
{
|
|
1412
|
+
"id": "CIS-Controls-v8-Control7",
|
|
1413
|
+
"framework": "CIS Controls v8",
|
|
1414
|
+
"control_name": "Continuous Vulnerability Management"
|
|
1415
|
+
},
|
|
1416
|
+
{
|
|
1417
|
+
"id": "FedRAMP-Rev5-Moderate",
|
|
1418
|
+
"framework": "FedRAMP Rev 5 Moderate",
|
|
1419
|
+
"control_name": "FedRAMP Moderate baseline (NIST 800-53 Rev 5 tailoring)"
|
|
1420
|
+
},
|
|
1421
|
+
{
|
|
1422
|
+
"id": "HIPAA-Security-Rule-164.312(a)(1)",
|
|
1423
|
+
"framework": "HIPAA Security Rule (45 CFR § 164.312)",
|
|
1424
|
+
"control_name": "Access control standard (technical safeguards)"
|
|
1425
|
+
},
|
|
1426
|
+
{
|
|
1427
|
+
"id": "HITRUST-CSF-v11.4-09.l",
|
|
1428
|
+
"framework": "HITRUST CSF v11.4",
|
|
1429
|
+
"control_name": "Outsourced services management"
|
|
1430
|
+
},
|
|
1431
|
+
{
|
|
1432
|
+
"id": "ISO-27001-2022-A.8.30",
|
|
1433
|
+
"framework": "ISO/IEC 27001:2022",
|
|
1434
|
+
"control_name": "Outsourced development"
|
|
1435
|
+
},
|
|
1436
|
+
{
|
|
1437
|
+
"id": "ISO-27001-2022-A.8.8",
|
|
1438
|
+
"framework": "ISO/IEC 27001:2022",
|
|
1439
|
+
"control_name": "Management of technical vulnerabilities"
|
|
1440
|
+
},
|
|
1441
|
+
{
|
|
1442
|
+
"id": "NIS2-Art21-patch-management",
|
|
1443
|
+
"framework": "EU NIS2 Directive",
|
|
1444
|
+
"control_name": "Vulnerability handling and disclosure"
|
|
1445
|
+
},
|
|
1446
|
+
{
|
|
1447
|
+
"id": "NIST-800-218-SSDF",
|
|
1448
|
+
"framework": "NIST SP 800-218 (Secure Software Development Framework v1.1)",
|
|
1449
|
+
"control_name": "Secure Software Development Framework"
|
|
1450
|
+
},
|
|
1451
|
+
{
|
|
1452
|
+
"id": "NIST-800-53-AC-2",
|
|
1453
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
1454
|
+
"control_name": "Account Management"
|
|
1455
|
+
},
|
|
1456
|
+
{
|
|
1457
|
+
"id": "NIST-800-53-CM-7",
|
|
1458
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
1459
|
+
"control_name": "Least Functionality"
|
|
1460
|
+
},
|
|
1461
|
+
{
|
|
1462
|
+
"id": "NIST-800-53-SA-12",
|
|
1463
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
1464
|
+
"control_name": "Supply Chain Protection"
|
|
1465
|
+
},
|
|
1466
|
+
{
|
|
1467
|
+
"id": "NIST-800-53-SC-8",
|
|
1468
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
1469
|
+
"control_name": "Transmission Confidentiality and Integrity"
|
|
1470
|
+
},
|
|
1471
|
+
{
|
|
1472
|
+
"id": "NIST-800-53-SI-2",
|
|
1473
|
+
"framework": "NIST SP 800-53 Rev 5",
|
|
1474
|
+
"control_name": "Flaw Remediation"
|
|
1475
|
+
},
|
|
1476
|
+
{
|
|
1477
|
+
"id": "NIST-800-63B-rev4",
|
|
1478
|
+
"framework": "NIST SP 800-63B Rev 4 (Digital Identity Guidelines — Authentication & Lifecycle Mgmt)",
|
|
1479
|
+
"control_name": "Authentication and Lifecycle Management (AAL/IAL/FAL)"
|
|
1480
|
+
},
|
|
1481
|
+
{
|
|
1482
|
+
"id": "OWASP-LLM-Top-10-2025-LLM06",
|
|
1483
|
+
"framework": "OWASP Top 10 for LLM Applications 2025",
|
|
1484
|
+
"control_name": "Excessive Agency"
|
|
1485
|
+
},
|
|
1486
|
+
{
|
|
1487
|
+
"id": "PCI-DSS-4.0-6.3.3",
|
|
1488
|
+
"framework": "PCI DSS 4.0",
|
|
1489
|
+
"control_name": "All system components are protected from known vulnerabilities by installing applicable security patches/updates"
|
|
1490
|
+
},
|
|
1491
|
+
{
|
|
1492
|
+
"id": "PSD2-RTS-SCA",
|
|
1493
|
+
"framework": "EU PSD2 Regulatory Technical Standards on Strong Customer Authentication (Commission Delegated Regulation (EU) 2018/389)",
|
|
1494
|
+
"control_name": "Strong Customer Authentication and Common and Secure Communication"
|
|
1495
|
+
},
|
|
1496
|
+
{
|
|
1497
|
+
"id": "SOC2-CC6-logical-access",
|
|
1498
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
1499
|
+
"control_name": "Logical and Physical Access Controls"
|
|
1500
|
+
},
|
|
1501
|
+
{
|
|
1502
|
+
"id": "SOC2-CC9-vendor-management",
|
|
1503
|
+
"framework": "SOC 2 (AICPA Trust Services Criteria)",
|
|
1504
|
+
"control_name": "Risk Mitigation — Vendor and Business Partner Risk"
|
|
1505
|
+
},
|
|
1506
|
+
{
|
|
1507
|
+
"id": "SWIFT-CSCF-v2026-1.1",
|
|
1508
|
+
"framework": "SWIFT Customer Security Controls Framework v2026",
|
|
1509
|
+
"control_name": "SWIFT Environment Protection"
|
|
1510
|
+
}
|
|
1511
|
+
],
|
|
1512
|
+
"attack_refs": [
|
|
1513
|
+
"T1059",
|
|
1514
|
+
"T1068",
|
|
1515
|
+
"T1078",
|
|
1516
|
+
"T1110",
|
|
1517
|
+
"T1190",
|
|
1518
|
+
"T1195.001",
|
|
1519
|
+
"T1530",
|
|
1520
|
+
"T1548.001",
|
|
1521
|
+
"T1552",
|
|
1522
|
+
"T1556",
|
|
1523
|
+
"T1567"
|
|
1524
|
+
],
|
|
1525
|
+
"rfc_refs": [
|
|
1526
|
+
"RFC-4301",
|
|
1527
|
+
"RFC-4303",
|
|
1528
|
+
"RFC-6749",
|
|
1529
|
+
"RFC-7296",
|
|
1530
|
+
"RFC-7519",
|
|
1531
|
+
"RFC-8032",
|
|
1532
|
+
"RFC-8446",
|
|
1533
|
+
"RFC-8725",
|
|
1534
|
+
"RFC-9114",
|
|
1535
|
+
"RFC-9180",
|
|
1536
|
+
"RFC-9421",
|
|
1537
|
+
"RFC-9700"
|
|
1538
|
+
]
|
|
1539
|
+
}
|
|
1540
|
+
},
|
|
10
1541
|
"CVE-2025-53773": {
|
|
11
1542
|
"name": "GitHub Copilot / VS Code 'YOLO mode' Prompt Injection RCE",
|
|
12
1543
|
"rwep": 30,
|
|
@@ -77537,6 +79068,8 @@
|
|
|
77537
79068
|
"CVE-2025-23254",
|
|
77538
79069
|
"CVE-2025-23266",
|
|
77539
79070
|
"CVE-2025-27520",
|
|
79071
|
+
"CVE-2025-30066",
|
|
79072
|
+
"CVE-2025-30154",
|
|
77540
79073
|
"CVE-2025-30165",
|
|
77541
79074
|
"CVE-2025-30202",
|
|
77542
79075
|
"CVE-2025-32434",
|
|
@@ -77594,6 +79127,7 @@
|
|
|
77594
79127
|
"CVE-2026-45829",
|
|
77595
79128
|
"CVE-2026-46300",
|
|
77596
79129
|
"CVE-2026-46333",
|
|
79130
|
+
"CVE-2026-48027",
|
|
77597
79131
|
"CVE-2026-5760",
|
|
77598
79132
|
"CVE-2026-9082",
|
|
77599
79133
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
@@ -77793,6 +79327,8 @@
|
|
|
77793
79327
|
"CVE-2025-10164",
|
|
77794
79328
|
"CVE-2025-1094",
|
|
77795
79329
|
"CVE-2025-27520",
|
|
79330
|
+
"CVE-2025-30066",
|
|
79331
|
+
"CVE-2025-30154",
|
|
77796
79332
|
"CVE-2025-3248",
|
|
77797
79333
|
"CVE-2025-3466",
|
|
77798
79334
|
"CVE-2025-49844",
|
|
@@ -77811,6 +79347,7 @@
|
|
|
77811
79347
|
"CVE-2026-39884",
|
|
77812
79348
|
"CVE-2026-42208",
|
|
77813
79349
|
"CVE-2026-45321",
|
|
79350
|
+
"CVE-2026-48027",
|
|
77814
79351
|
"CVE-2026-5760",
|
|
77815
79352
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
77816
79353
|
"MAL-2026-3083",
|
|
@@ -78801,6 +80338,8 @@
|
|
|
78801
80338
|
"CVE-2025-23266",
|
|
78802
80339
|
"CVE-2025-25297",
|
|
78803
80340
|
"CVE-2025-27520",
|
|
80341
|
+
"CVE-2025-30066",
|
|
80342
|
+
"CVE-2025-30154",
|
|
78804
80343
|
"CVE-2025-30165",
|
|
78805
80344
|
"CVE-2025-30202",
|
|
78806
80345
|
"CVE-2025-32434",
|
|
@@ -78860,6 +80399,7 @@
|
|
|
78860
80399
|
"CVE-2026-42208",
|
|
78861
80400
|
"CVE-2026-45321",
|
|
78862
80401
|
"CVE-2026-45829",
|
|
80402
|
+
"CVE-2026-48027",
|
|
78863
80403
|
"CVE-2026-5760",
|
|
78864
80404
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
78865
80405
|
"MAL-2026-3083",
|
|
@@ -79103,6 +80643,7 @@
|
|
|
79103
80643
|
"CVE-2024-7694",
|
|
79104
80644
|
"CVE-2024-8068",
|
|
79105
80645
|
"CVE-2024-8069",
|
|
80646
|
+
"CVE-2025-0282",
|
|
79106
80647
|
"CVE-2025-10035",
|
|
79107
80648
|
"CVE-2025-10164",
|
|
79108
80649
|
"CVE-2025-10585",
|
|
@@ -79128,6 +80669,7 @@
|
|
|
79128
80669
|
"CVE-2025-21043",
|
|
79129
80670
|
"CVE-2025-21479",
|
|
79130
80671
|
"CVE-2025-21480",
|
|
80672
|
+
"CVE-2025-22457",
|
|
79131
80673
|
"CVE-2025-23254",
|
|
79132
80674
|
"CVE-2025-23266",
|
|
79133
80675
|
"CVE-2025-24016",
|
|
@@ -79149,7 +80691,9 @@
|
|
|
79149
80691
|
"CVE-2025-30202",
|
|
79150
80692
|
"CVE-2025-30397",
|
|
79151
80693
|
"CVE-2025-31125",
|
|
80694
|
+
"CVE-2025-31161",
|
|
79152
80695
|
"CVE-2025-31277",
|
|
80696
|
+
"CVE-2025-31324",
|
|
79153
80697
|
"CVE-2025-32432",
|
|
79154
80698
|
"CVE-2025-32433",
|
|
79155
80699
|
"CVE-2025-32434",
|
|
@@ -79338,6 +80882,7 @@
|
|
|
79338
80882
|
"CVE-2026-45829",
|
|
79339
80883
|
"CVE-2026-46300",
|
|
79340
80884
|
"CVE-2026-46333",
|
|
80885
|
+
"CVE-2026-48027",
|
|
79341
80886
|
"CVE-2026-5281",
|
|
79342
80887
|
"CVE-2026-6973",
|
|
79343
80888
|
"CVE-2026-9082",
|
|
@@ -79592,6 +81137,8 @@
|
|
|
79592
81137
|
"CVE-2025-23266",
|
|
79593
81138
|
"CVE-2025-25297",
|
|
79594
81139
|
"CVE-2025-27520",
|
|
81140
|
+
"CVE-2025-30066",
|
|
81141
|
+
"CVE-2025-30154",
|
|
79595
81142
|
"CVE-2025-30202",
|
|
79596
81143
|
"CVE-2025-32444",
|
|
79597
81144
|
"CVE-2025-3248",
|
|
@@ -79622,6 +81169,7 @@
|
|
|
79622
81169
|
"CVE-2026-42897",
|
|
79623
81170
|
"CVE-2026-43284",
|
|
79624
81171
|
"CVE-2026-45321",
|
|
81172
|
+
"CVE-2026-48027",
|
|
79625
81173
|
"CVE-2026-5760",
|
|
79626
81174
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
79627
81175
|
"MAL-2026-3083",
|
|
@@ -80009,6 +81557,8 @@
|
|
|
80009
81557
|
"CVE-2025-23254",
|
|
80010
81558
|
"CVE-2025-23266",
|
|
80011
81559
|
"CVE-2025-27520",
|
|
81560
|
+
"CVE-2025-30066",
|
|
81561
|
+
"CVE-2025-30154",
|
|
80012
81562
|
"CVE-2025-30165",
|
|
80013
81563
|
"CVE-2025-30202",
|
|
80014
81564
|
"CVE-2025-32434",
|
|
@@ -80066,6 +81616,7 @@
|
|
|
80066
81616
|
"CVE-2026-45829",
|
|
80067
81617
|
"CVE-2026-46300",
|
|
80068
81618
|
"CVE-2026-46333",
|
|
81619
|
+
"CVE-2026-48027",
|
|
80069
81620
|
"CVE-2026-5760",
|
|
80070
81621
|
"CVE-2026-9082",
|
|
80071
81622
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
@@ -80671,6 +82222,8 @@
|
|
|
80671
82222
|
"CVE-2025-23254",
|
|
80672
82223
|
"CVE-2025-23266",
|
|
80673
82224
|
"CVE-2025-27520",
|
|
82225
|
+
"CVE-2025-30066",
|
|
82226
|
+
"CVE-2025-30154",
|
|
80674
82227
|
"CVE-2025-30165",
|
|
80675
82228
|
"CVE-2025-30202",
|
|
80676
82229
|
"CVE-2025-32434",
|
|
@@ -80728,6 +82281,7 @@
|
|
|
80728
82281
|
"CVE-2026-45829",
|
|
80729
82282
|
"CVE-2026-46300",
|
|
80730
82283
|
"CVE-2026-46333",
|
|
82284
|
+
"CVE-2026-48027",
|
|
80731
82285
|
"CVE-2026-5760",
|
|
80732
82286
|
"CVE-2026-9082",
|
|
80733
82287
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
@@ -80956,6 +82510,8 @@
|
|
|
80956
82510
|
"CVE-2025-1753",
|
|
80957
82511
|
"CVE-2025-23254",
|
|
80958
82512
|
"CVE-2025-23266",
|
|
82513
|
+
"CVE-2025-30066",
|
|
82514
|
+
"CVE-2025-30154",
|
|
80959
82515
|
"CVE-2025-30165",
|
|
80960
82516
|
"CVE-2025-30202",
|
|
80961
82517
|
"CVE-2025-32434",
|
|
@@ -80999,6 +82555,7 @@
|
|
|
80999
82555
|
"CVE-2026-45829",
|
|
81000
82556
|
"CVE-2026-46300",
|
|
81001
82557
|
"CVE-2026-46333",
|
|
82558
|
+
"CVE-2026-48027",
|
|
81002
82559
|
"CVE-2026-9082",
|
|
81003
82560
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
81004
82561
|
"MAL-2026-3083"
|
|
@@ -81408,6 +82965,8 @@
|
|
|
81408
82965
|
"CVE-2024-3154",
|
|
81409
82966
|
"CVE-2024-5565",
|
|
81410
82967
|
"CVE-2025-27520",
|
|
82968
|
+
"CVE-2025-30066",
|
|
82969
|
+
"CVE-2025-30154",
|
|
81411
82970
|
"CVE-2025-3248",
|
|
81412
82971
|
"CVE-2025-3466",
|
|
81413
82972
|
"CVE-2025-49844",
|
|
@@ -81417,6 +82976,7 @@
|
|
|
81417
82976
|
"CVE-2026-31230",
|
|
81418
82977
|
"CVE-2026-33017",
|
|
81419
82978
|
"CVE-2026-45321",
|
|
82979
|
+
"CVE-2026-48027",
|
|
81420
82980
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
81421
82981
|
"MAL-2026-3083",
|
|
81422
82982
|
"MAL-2026-NODE-IPC-STEALER"
|
|
@@ -81689,6 +83249,8 @@
|
|
|
81689
83249
|
"CVE-2025-23254",
|
|
81690
83250
|
"CVE-2025-23266",
|
|
81691
83251
|
"CVE-2025-27520",
|
|
83252
|
+
"CVE-2025-30066",
|
|
83253
|
+
"CVE-2025-30154",
|
|
81692
83254
|
"CVE-2025-30165",
|
|
81693
83255
|
"CVE-2025-30202",
|
|
81694
83256
|
"CVE-2025-32434",
|
|
@@ -81746,6 +83308,7 @@
|
|
|
81746
83308
|
"CVE-2026-45829",
|
|
81747
83309
|
"CVE-2026-46300",
|
|
81748
83310
|
"CVE-2026-46333",
|
|
83311
|
+
"CVE-2026-48027",
|
|
81749
83312
|
"CVE-2026-5760",
|
|
81750
83313
|
"CVE-2026-9082",
|
|
81751
83314
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
@@ -81990,6 +83553,7 @@
|
|
|
81990
83553
|
"CVE-2024-7694",
|
|
81991
83554
|
"CVE-2024-8068",
|
|
81992
83555
|
"CVE-2024-8069",
|
|
83556
|
+
"CVE-2025-0282",
|
|
81993
83557
|
"CVE-2025-10035",
|
|
81994
83558
|
"CVE-2025-10164",
|
|
81995
83559
|
"CVE-2025-10585",
|
|
@@ -82015,6 +83579,7 @@
|
|
|
82015
83579
|
"CVE-2025-21043",
|
|
82016
83580
|
"CVE-2025-21479",
|
|
82017
83581
|
"CVE-2025-21480",
|
|
83582
|
+
"CVE-2025-22457",
|
|
82018
83583
|
"CVE-2025-23254",
|
|
82019
83584
|
"CVE-2025-23266",
|
|
82020
83585
|
"CVE-2025-24016",
|
|
@@ -82036,7 +83601,9 @@
|
|
|
82036
83601
|
"CVE-2025-30202",
|
|
82037
83602
|
"CVE-2025-30397",
|
|
82038
83603
|
"CVE-2025-31125",
|
|
83604
|
+
"CVE-2025-31161",
|
|
82039
83605
|
"CVE-2025-31277",
|
|
83606
|
+
"CVE-2025-31324",
|
|
82040
83607
|
"CVE-2025-32432",
|
|
82041
83608
|
"CVE-2025-32433",
|
|
82042
83609
|
"CVE-2025-32434",
|
|
@@ -82225,6 +83792,7 @@
|
|
|
82225
83792
|
"CVE-2026-45829",
|
|
82226
83793
|
"CVE-2026-46300",
|
|
82227
83794
|
"CVE-2026-46333",
|
|
83795
|
+
"CVE-2026-48027",
|
|
82228
83796
|
"CVE-2026-5281",
|
|
82229
83797
|
"CVE-2026-6973",
|
|
82230
83798
|
"CVE-2026-9082",
|
|
@@ -82455,6 +84023,7 @@
|
|
|
82455
84023
|
"CVE-2024-7694",
|
|
82456
84024
|
"CVE-2024-8068",
|
|
82457
84025
|
"CVE-2024-8069",
|
|
84026
|
+
"CVE-2025-0282",
|
|
82458
84027
|
"CVE-2025-10035",
|
|
82459
84028
|
"CVE-2025-10164",
|
|
82460
84029
|
"CVE-2025-10585",
|
|
@@ -82480,6 +84049,7 @@
|
|
|
82480
84049
|
"CVE-2025-21043",
|
|
82481
84050
|
"CVE-2025-21479",
|
|
82482
84051
|
"CVE-2025-21480",
|
|
84052
|
+
"CVE-2025-22457",
|
|
82483
84053
|
"CVE-2025-23254",
|
|
82484
84054
|
"CVE-2025-23266",
|
|
82485
84055
|
"CVE-2025-24016",
|
|
@@ -82501,7 +84071,9 @@
|
|
|
82501
84071
|
"CVE-2025-30202",
|
|
82502
84072
|
"CVE-2025-30397",
|
|
82503
84073
|
"CVE-2025-31125",
|
|
84074
|
+
"CVE-2025-31161",
|
|
82504
84075
|
"CVE-2025-31277",
|
|
84076
|
+
"CVE-2025-31324",
|
|
82505
84077
|
"CVE-2025-32432",
|
|
82506
84078
|
"CVE-2025-32433",
|
|
82507
84079
|
"CVE-2025-32434",
|
|
@@ -82690,6 +84262,7 @@
|
|
|
82690
84262
|
"CVE-2026-45829",
|
|
82691
84263
|
"CVE-2026-46300",
|
|
82692
84264
|
"CVE-2026-46333",
|
|
84265
|
+
"CVE-2026-48027",
|
|
82693
84266
|
"CVE-2026-5281",
|
|
82694
84267
|
"CVE-2026-6973",
|
|
82695
84268
|
"CVE-2026-9082",
|
|
@@ -82954,6 +84527,8 @@
|
|
|
82954
84527
|
"CVE-2025-23254",
|
|
82955
84528
|
"CVE-2025-23266",
|
|
82956
84529
|
"CVE-2025-27520",
|
|
84530
|
+
"CVE-2025-30066",
|
|
84531
|
+
"CVE-2025-30154",
|
|
82957
84532
|
"CVE-2025-30165",
|
|
82958
84533
|
"CVE-2025-30202",
|
|
82959
84534
|
"CVE-2025-32434",
|
|
@@ -83011,6 +84586,7 @@
|
|
|
83011
84586
|
"CVE-2026-45829",
|
|
83012
84587
|
"CVE-2026-46300",
|
|
83013
84588
|
"CVE-2026-46333",
|
|
84589
|
+
"CVE-2026-48027",
|
|
83014
84590
|
"CVE-2026-5760",
|
|
83015
84591
|
"CVE-2026-9082",
|
|
83016
84592
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
@@ -83214,6 +84790,8 @@
|
|
|
83214
84790
|
"CVE-2024-3154",
|
|
83215
84791
|
"CVE-2024-5565",
|
|
83216
84792
|
"CVE-2025-27520",
|
|
84793
|
+
"CVE-2025-30066",
|
|
84794
|
+
"CVE-2025-30154",
|
|
83217
84795
|
"CVE-2025-3248",
|
|
83218
84796
|
"CVE-2025-3466",
|
|
83219
84797
|
"CVE-2025-49844",
|
|
@@ -83223,6 +84801,7 @@
|
|
|
83223
84801
|
"CVE-2026-31230",
|
|
83224
84802
|
"CVE-2026-33017",
|
|
83225
84803
|
"CVE-2026-45321",
|
|
84804
|
+
"CVE-2026-48027",
|
|
83226
84805
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
83227
84806
|
"MAL-2026-3083",
|
|
83228
84807
|
"MAL-2026-NODE-IPC-STEALER",
|
|
@@ -83425,6 +85004,8 @@
|
|
|
83425
85004
|
"CVE-2025-10164",
|
|
83426
85005
|
"CVE-2025-1094",
|
|
83427
85006
|
"CVE-2025-27520",
|
|
85007
|
+
"CVE-2025-30066",
|
|
85008
|
+
"CVE-2025-30154",
|
|
83428
85009
|
"CVE-2025-3248",
|
|
83429
85010
|
"CVE-2025-3466",
|
|
83430
85011
|
"CVE-2025-51480",
|
|
@@ -83843,6 +85424,7 @@
|
|
|
83843
85424
|
"CVE-2024-7694",
|
|
83844
85425
|
"CVE-2024-8068",
|
|
83845
85426
|
"CVE-2024-8069",
|
|
85427
|
+
"CVE-2025-0282",
|
|
83846
85428
|
"CVE-2025-10035",
|
|
83847
85429
|
"CVE-2025-10164",
|
|
83848
85430
|
"CVE-2025-10585",
|
|
@@ -83868,6 +85450,7 @@
|
|
|
83868
85450
|
"CVE-2025-21043",
|
|
83869
85451
|
"CVE-2025-21479",
|
|
83870
85452
|
"CVE-2025-21480",
|
|
85453
|
+
"CVE-2025-22457",
|
|
83871
85454
|
"CVE-2025-23254",
|
|
83872
85455
|
"CVE-2025-23266",
|
|
83873
85456
|
"CVE-2025-24016",
|
|
@@ -83889,7 +85472,9 @@
|
|
|
83889
85472
|
"CVE-2025-30202",
|
|
83890
85473
|
"CVE-2025-30397",
|
|
83891
85474
|
"CVE-2025-31125",
|
|
85475
|
+
"CVE-2025-31161",
|
|
83892
85476
|
"CVE-2025-31277",
|
|
85477
|
+
"CVE-2025-31324",
|
|
83893
85478
|
"CVE-2025-32432",
|
|
83894
85479
|
"CVE-2025-32433",
|
|
83895
85480
|
"CVE-2025-32434",
|
|
@@ -84078,6 +85663,7 @@
|
|
|
84078
85663
|
"CVE-2026-45829",
|
|
84079
85664
|
"CVE-2026-46300",
|
|
84080
85665
|
"CVE-2026-46333",
|
|
85666
|
+
"CVE-2026-48027",
|
|
84081
85667
|
"CVE-2026-5281",
|
|
84082
85668
|
"CVE-2026-6973",
|
|
84083
85669
|
"CVE-2026-9082",
|
|
@@ -84406,6 +85992,8 @@
|
|
|
84406
85992
|
"CVE-2025-23254",
|
|
84407
85993
|
"CVE-2025-23266",
|
|
84408
85994
|
"CVE-2025-27520",
|
|
85995
|
+
"CVE-2025-30066",
|
|
85996
|
+
"CVE-2025-30154",
|
|
84409
85997
|
"CVE-2025-30165",
|
|
84410
85998
|
"CVE-2025-30202",
|
|
84411
85999
|
"CVE-2025-32434",
|
|
@@ -84463,6 +86051,7 @@
|
|
|
84463
86051
|
"CVE-2026-45829",
|
|
84464
86052
|
"CVE-2026-46300",
|
|
84465
86053
|
"CVE-2026-46333",
|
|
86054
|
+
"CVE-2026-48027",
|
|
84466
86055
|
"CVE-2026-5760",
|
|
84467
86056
|
"CVE-2026-9082",
|
|
84468
86057
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
@@ -84797,6 +86386,7 @@
|
|
|
84797
86386
|
"CVE-2024-8069",
|
|
84798
86387
|
"CVE-2024-9526",
|
|
84799
86388
|
"CVE-2025-0133",
|
|
86389
|
+
"CVE-2025-0282",
|
|
84800
86390
|
"CVE-2025-10035",
|
|
84801
86391
|
"CVE-2025-10164",
|
|
84802
86392
|
"CVE-2025-10585",
|
|
@@ -84822,6 +86412,7 @@
|
|
|
84822
86412
|
"CVE-2025-21043",
|
|
84823
86413
|
"CVE-2025-21479",
|
|
84824
86414
|
"CVE-2025-21480",
|
|
86415
|
+
"CVE-2025-22457",
|
|
84825
86416
|
"CVE-2025-23254",
|
|
84826
86417
|
"CVE-2025-23266",
|
|
84827
86418
|
"CVE-2025-24016",
|
|
@@ -84840,11 +86431,15 @@
|
|
|
84840
86431
|
"CVE-2025-27915",
|
|
84841
86432
|
"CVE-2025-27920",
|
|
84842
86433
|
"CVE-2025-29635",
|
|
86434
|
+
"CVE-2025-30066",
|
|
86435
|
+
"CVE-2025-30154",
|
|
84843
86436
|
"CVE-2025-30165",
|
|
84844
86437
|
"CVE-2025-30202",
|
|
84845
86438
|
"CVE-2025-30397",
|
|
84846
86439
|
"CVE-2025-31125",
|
|
86440
|
+
"CVE-2025-31161",
|
|
84847
86441
|
"CVE-2025-31277",
|
|
86442
|
+
"CVE-2025-31324",
|
|
84848
86443
|
"CVE-2025-32432",
|
|
84849
86444
|
"CVE-2025-32433",
|
|
84850
86445
|
"CVE-2025-32434",
|
|
@@ -85045,6 +86640,7 @@
|
|
|
85045
86640
|
"CVE-2026-45829",
|
|
85046
86641
|
"CVE-2026-46300",
|
|
85047
86642
|
"CVE-2026-46333",
|
|
86643
|
+
"CVE-2026-48027",
|
|
85048
86644
|
"CVE-2026-5281",
|
|
85049
86645
|
"CVE-2026-5760",
|
|
85050
86646
|
"CVE-2026-6973",
|
|
@@ -85379,6 +86975,8 @@
|
|
|
85379
86975
|
"CVE-2025-23254",
|
|
85380
86976
|
"CVE-2025-23266",
|
|
85381
86977
|
"CVE-2025-27520",
|
|
86978
|
+
"CVE-2025-30066",
|
|
86979
|
+
"CVE-2025-30154",
|
|
85382
86980
|
"CVE-2025-30165",
|
|
85383
86981
|
"CVE-2025-30202",
|
|
85384
86982
|
"CVE-2025-32434",
|
|
@@ -85428,6 +87026,7 @@
|
|
|
85428
87026
|
"CVE-2026-45829",
|
|
85429
87027
|
"CVE-2026-46300",
|
|
85430
87028
|
"CVE-2026-46333",
|
|
87029
|
+
"CVE-2026-48027",
|
|
85431
87030
|
"CVE-2026-9082",
|
|
85432
87031
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
85433
87032
|
"MAL-2026-3083"
|
|
@@ -85544,6 +87143,8 @@
|
|
|
85544
87143
|
},
|
|
85545
87144
|
"related_cves": [
|
|
85546
87145
|
"CVE-2024-3094",
|
|
87146
|
+
"CVE-2025-30066",
|
|
87147
|
+
"CVE-2025-30154",
|
|
85547
87148
|
"CVE-2026-30615",
|
|
85548
87149
|
"CVE-2026-45321",
|
|
85549
87150
|
"MAL-2026-3083",
|
|
@@ -85745,6 +87346,8 @@
|
|
|
85745
87346
|
"CVE-2025-10164",
|
|
85746
87347
|
"CVE-2025-1094",
|
|
85747
87348
|
"CVE-2025-27520",
|
|
87349
|
+
"CVE-2025-30066",
|
|
87350
|
+
"CVE-2025-30154",
|
|
85748
87351
|
"CVE-2025-3248",
|
|
85749
87352
|
"CVE-2025-3466",
|
|
85750
87353
|
"CVE-2025-49844",
|
|
@@ -85763,6 +87366,7 @@
|
|
|
85763
87366
|
"CVE-2026-39884",
|
|
85764
87367
|
"CVE-2026-42208",
|
|
85765
87368
|
"CVE-2026-45321",
|
|
87369
|
+
"CVE-2026-48027",
|
|
85766
87370
|
"CVE-2026-5760",
|
|
85767
87371
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
85768
87372
|
"MAL-2026-3083",
|
|
@@ -86052,6 +87656,8 @@
|
|
|
86052
87656
|
"CVE-2025-10164",
|
|
86053
87657
|
"CVE-2025-1094",
|
|
86054
87658
|
"CVE-2025-27520",
|
|
87659
|
+
"CVE-2025-30066",
|
|
87660
|
+
"CVE-2025-30154",
|
|
86055
87661
|
"CVE-2025-3248",
|
|
86056
87662
|
"CVE-2025-3466",
|
|
86057
87663
|
"CVE-2025-51480",
|
|
@@ -86069,6 +87675,7 @@
|
|
|
86069
87675
|
"CVE-2026-39884",
|
|
86070
87676
|
"CVE-2026-42208",
|
|
86071
87677
|
"CVE-2026-45321",
|
|
87678
|
+
"CVE-2026-48027",
|
|
86072
87679
|
"CVE-2026-5760",
|
|
86073
87680
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
86074
87681
|
"MAL-2026-3083",
|
|
@@ -86419,6 +88026,8 @@
|
|
|
86419
88026
|
"CVE-2025-23254",
|
|
86420
88027
|
"CVE-2025-23266",
|
|
86421
88028
|
"CVE-2025-27520",
|
|
88029
|
+
"CVE-2025-30066",
|
|
88030
|
+
"CVE-2025-30154",
|
|
86422
88031
|
"CVE-2025-30165",
|
|
86423
88032
|
"CVE-2025-30202",
|
|
86424
88033
|
"CVE-2025-32434",
|
|
@@ -86476,6 +88085,7 @@
|
|
|
86476
88085
|
"CVE-2026-45829",
|
|
86477
88086
|
"CVE-2026-46300",
|
|
86478
88087
|
"CVE-2026-46333",
|
|
88088
|
+
"CVE-2026-48027",
|
|
86479
88089
|
"CVE-2026-5760",
|
|
86480
88090
|
"CVE-2026-9082",
|
|
86481
88091
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
@@ -87019,6 +88629,8 @@
|
|
|
87019
88629
|
"CVE-2025-10164",
|
|
87020
88630
|
"CVE-2025-1094",
|
|
87021
88631
|
"CVE-2025-27520",
|
|
88632
|
+
"CVE-2025-30066",
|
|
88633
|
+
"CVE-2025-30154",
|
|
87022
88634
|
"CVE-2025-3248",
|
|
87023
88635
|
"CVE-2025-3466",
|
|
87024
88636
|
"CVE-2025-49844",
|
|
@@ -87037,6 +88649,7 @@
|
|
|
87037
88649
|
"CVE-2026-39884",
|
|
87038
88650
|
"CVE-2026-42208",
|
|
87039
88651
|
"CVE-2026-45321",
|
|
88652
|
+
"CVE-2026-48027",
|
|
87040
88653
|
"CVE-2026-5760",
|
|
87041
88654
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
87042
88655
|
"MAL-2026-3083",
|
|
@@ -87302,6 +88915,7 @@
|
|
|
87302
88915
|
"CVE-2024-7694",
|
|
87303
88916
|
"CVE-2024-8068",
|
|
87304
88917
|
"CVE-2024-8069",
|
|
88918
|
+
"CVE-2025-0282",
|
|
87305
88919
|
"CVE-2025-10035",
|
|
87306
88920
|
"CVE-2025-10585",
|
|
87307
88921
|
"CVE-2025-11371",
|
|
@@ -87324,6 +88938,7 @@
|
|
|
87324
88938
|
"CVE-2025-21043",
|
|
87325
88939
|
"CVE-2025-21479",
|
|
87326
88940
|
"CVE-2025-21480",
|
|
88941
|
+
"CVE-2025-22457",
|
|
87327
88942
|
"CVE-2025-23254",
|
|
87328
88943
|
"CVE-2025-24016",
|
|
87329
88944
|
"CVE-2025-24201",
|
|
@@ -87340,11 +88955,15 @@
|
|
|
87340
88955
|
"CVE-2025-27915",
|
|
87341
88956
|
"CVE-2025-27920",
|
|
87342
88957
|
"CVE-2025-29635",
|
|
88958
|
+
"CVE-2025-30066",
|
|
88959
|
+
"CVE-2025-30154",
|
|
87343
88960
|
"CVE-2025-30165",
|
|
87344
88961
|
"CVE-2025-30202",
|
|
87345
88962
|
"CVE-2025-30397",
|
|
87346
88963
|
"CVE-2025-31125",
|
|
88964
|
+
"CVE-2025-31161",
|
|
87347
88965
|
"CVE-2025-31277",
|
|
88966
|
+
"CVE-2025-31324",
|
|
87348
88967
|
"CVE-2025-32432",
|
|
87349
88968
|
"CVE-2025-32433",
|
|
87350
88969
|
"CVE-2025-32434",
|
|
@@ -87519,6 +89138,7 @@
|
|
|
87519
89138
|
"CVE-2026-45829",
|
|
87520
89139
|
"CVE-2026-46300",
|
|
87521
89140
|
"CVE-2026-46333",
|
|
89141
|
+
"CVE-2026-48027",
|
|
87522
89142
|
"CVE-2026-5281",
|
|
87523
89143
|
"CVE-2026-9082",
|
|
87524
89144
|
"MAL-2026-3083",
|
|
@@ -87787,6 +89407,8 @@
|
|
|
87787
89407
|
"CVE-2025-23254",
|
|
87788
89408
|
"CVE-2025-23266",
|
|
87789
89409
|
"CVE-2025-27520",
|
|
89410
|
+
"CVE-2025-30066",
|
|
89411
|
+
"CVE-2025-30154",
|
|
87790
89412
|
"CVE-2025-30165",
|
|
87791
89413
|
"CVE-2025-30202",
|
|
87792
89414
|
"CVE-2025-32434",
|
|
@@ -88150,6 +89772,8 @@
|
|
|
88150
89772
|
"CVE-2025-23266",
|
|
88151
89773
|
"CVE-2025-25297",
|
|
88152
89774
|
"CVE-2025-27520",
|
|
89775
|
+
"CVE-2025-30066",
|
|
89776
|
+
"CVE-2025-30154",
|
|
88153
89777
|
"CVE-2025-30165",
|
|
88154
89778
|
"CVE-2025-30202",
|
|
88155
89779
|
"CVE-2025-32434",
|
|
@@ -88211,6 +89835,7 @@
|
|
|
88211
89835
|
"CVE-2026-43284",
|
|
88212
89836
|
"CVE-2026-45321",
|
|
88213
89837
|
"CVE-2026-45829",
|
|
89838
|
+
"CVE-2026-48027",
|
|
88214
89839
|
"CVE-2026-5760",
|
|
88215
89840
|
"MAL-2024-PYPI-ULTRALYTICS-XMRIG",
|
|
88216
89841
|
"MAL-2026-3083",
|
|
@@ -89855,5 +91480,19 @@
|
|
|
89855
91480
|
"rfc_refs": []
|
|
89856
91481
|
},
|
|
89857
91482
|
"related_cves": []
|
|
91483
|
+
},
|
|
91484
|
+
"CWE-305": {
|
|
91485
|
+
"name": "Authentication Bypass by Primary Weakness",
|
|
91486
|
+
"category": "Authentication",
|
|
91487
|
+
"referencing_skills": [],
|
|
91488
|
+
"skill_count": 0,
|
|
91489
|
+
"chain": {
|
|
91490
|
+
"atlas": [],
|
|
91491
|
+
"attack_refs": [],
|
|
91492
|
+
"framework_gaps": [],
|
|
91493
|
+
"d3fend": [],
|
|
91494
|
+
"rfc_refs": []
|
|
91495
|
+
},
|
|
91496
|
+
"related_cves": []
|
|
89858
91497
|
}
|
|
89859
91498
|
}
|