@blamejs/exceptd-skills 0.14.26 → 0.14.28

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (17) hide show
  1. package/CHANGELOG.md +21 -0
  2. package/data/_indexes/_meta.json +10 -10
  3. package/data/_indexes/activity-feed.json +4 -4
  4. package/data/_indexes/catalog-summaries.json +9 -9
  5. package/data/_indexes/chains.json +1639 -0
  6. package/data/_indexes/frequency.json +3 -0
  7. package/data/atlas-ttps.json +29 -17
  8. package/data/attack-techniques.json +54 -37
  9. package/data/cve-catalog.json +742 -2
  10. package/data/cwe-catalog.json +53 -19
  11. package/data/framework-control-gaps.json +225 -116
  12. package/data/playbooks/framework.json +1 -0
  13. package/data/playbooks/sbom.json +1 -0
  14. package/data/zeroday-lessons.json +491 -0
  15. package/manifest.json +44 -44
  16. package/package.json +1 -1
  17. package/sbom.cdx.json +28 -28
package/data/cwe-catalog.json CHANGED
@@ -50,14 +50,14 @@
50
50
  "evidence_cves": [
51
51
  "CVE-2022-1471",
52
52
  "CVE-2024-3154",
53
+ "CVE-2025-10164",
53
54
  "CVE-2025-20393",
54
55
  "CVE-2025-54236",
55
56
  "CVE-2025-6558",
57
+ "CVE-2026-21858",
56
58
  "CVE-2026-32201",
57
59
  "CVE-2026-34197",
58
- "CVE-2026-6973",
59
- "CVE-2025-10164",
60
- "CVE-2026-21858"
60
+ "CVE-2026-6973"
61
61
  ],
62
62
  "framework_controls_partially_addressing": [
63
63
  "NIST-800-53-SI-10",
@@ -104,6 +104,7 @@
104
104
  "CVE-2024-1561",
105
105
  "CVE-2024-1708",
106
106
  "CVE-2024-24591",
107
+ "CVE-2024-31462",
107
108
  "CVE-2024-37032",
108
109
  "CVE-2024-39722",
109
110
  "CVE-2024-57728",
@@ -111,14 +112,13 @@
111
112
  "CVE-2025-2749",
112
113
  "CVE-2025-27920",
113
114
  "CVE-2025-4632",
115
+ "CVE-2025-51480",
114
116
  "CVE-2025-6218",
115
117
  "CVE-2025-67818",
116
118
  "CVE-2025-8110",
117
- "CVE-2026-25592",
118
- "CVE-2026-34926",
119
119
  "CVE-2026-22218",
120
- "CVE-2025-51480",
121
- "CVE-2024-31462"
120
+ "CVE-2026-25592",
121
+ "CVE-2026-34926"
122
122
  ],
123
123
  "framework_controls_partially_addressing": [
124
124
  "NIST-800-53-AC-3",
@@ -155,6 +155,7 @@
155
155
  "CVE-2016-10033",
156
156
  "CVE-2020-25079",
157
157
  "CVE-2023-33538",
158
+ "CVE-2024-12450",
158
159
  "CVE-2024-5565",
159
160
  "CVE-2025-10035",
160
161
  "CVE-2025-29635",
@@ -169,8 +170,7 @@
169
170
  "CVE-2026-30617",
170
171
  "CVE-2026-30624",
171
172
  "CVE-2026-30625",
172
- "MAL-2026-3083",
173
- "CVE-2024-12450"
173
+ "MAL-2026-3083"
174
174
  ],
175
175
  "framework_controls_partially_addressing": [
176
176
  "NIST-800-53-SI-10",
@@ -421,15 +421,15 @@
421
421
  "CVE-2026-1281",
422
422
  "CVE-2026-1340",
423
423
  "CVE-2026-20045",
424
+ "CVE-2026-21877",
424
425
  "CVE-2026-25592",
425
426
  "CVE-2026-30615",
426
427
  "CVE-2026-33017",
427
428
  "CVE-2026-34197",
428
429
  "CVE-2026-45829",
429
- "CVE-2026-6973",
430
- "MAL-2026-3083",
431
430
  "CVE-2026-5760",
432
- "CVE-2026-21877"
431
+ "CVE-2026-6973",
432
+ "MAL-2026-3083"
433
433
  ],
434
434
  "framework_controls_partially_addressing": [
435
435
  "NIST-800-53-SI-10",
@@ -1283,6 +1283,7 @@
1283
1283
  "CVE-2024-7399",
1284
1284
  "CVE-2024-7694",
1285
1285
  "CVE-2025-2749",
1286
+ "CVE-2025-31324",
1286
1287
  "CVE-2025-52691",
1287
1288
  "CVE-2026-21877"
1288
1289
  ],
@@ -1361,6 +1362,7 @@
1361
1362
  "CVE-2024-50050",
1362
1363
  "CVE-2024-8069",
1363
1364
  "CVE-2025-10035",
1365
+ "CVE-2025-10164",
1364
1366
  "CVE-2025-23254",
1365
1367
  "CVE-2025-24016",
1366
1368
  "CVE-2025-26399",
@@ -1377,14 +1379,13 @@
1377
1379
  "CVE-2025-59287",
1378
1380
  "CVE-2025-60455",
1379
1381
  "CVE-2025-68664",
1382
+ "CVE-2025-68665",
1380
1383
  "CVE-2025-8747",
1381
1384
  "CVE-2026-20131",
1382
1385
  "CVE-2026-20963",
1383
- "CVE-2026-31229",
1384
- "CVE-2025-68665",
1385
- "CVE-2025-10164",
1386
1386
  "CVE-2026-3059",
1387
- "CVE-2026-3060"
1387
+ "CVE-2026-3060",
1388
+ "CVE-2026-31229"
1388
1389
  ],
1389
1390
  "framework_controls_partially_addressing": [
1390
1391
  "NIST-800-53-SI-10",
@@ -1414,10 +1415,13 @@
1414
1415
  "skills_referencing": [],
1415
1416
  "evidence_cves": [
1416
1417
  "CVE-2024-3094",
1418
+ "CVE-2025-30066",
1419
+ "CVE-2025-30154",
1417
1420
  "CVE-2025-54313",
1418
1421
  "CVE-2025-59374",
1419
1422
  "CVE-2026-33634",
1420
1423
  "CVE-2026-45321",
1424
+ "CVE-2026-48027",
1421
1425
  "MAL-2026-3083",
1422
1426
  "MAL-2026-NODE-IPC-STEALER",
1423
1427
  "MAL-2026-SHAI-HULUD-OSS",
@@ -1654,10 +1658,12 @@
1654
1658
  "CVE-2024-21762",
1655
1659
  "CVE-2024-37079",
1656
1660
  "CVE-2024-42479",
1661
+ "CVE-2025-0282",
1657
1662
  "CVE-2025-14174",
1658
1663
  "CVE-2025-14733",
1659
1664
  "CVE-2025-21042",
1660
1665
  "CVE-2025-21043",
1666
+ "CVE-2025-22457",
1661
1667
  "CVE-2025-5419",
1662
1668
  "CVE-2025-6965",
1663
1669
  "CVE-2025-9242",
@@ -1895,11 +1901,11 @@
1895
1901
  "CVE-2023-43654",
1896
1902
  "CVE-2023-48022",
1897
1903
  "CVE-2023-51449",
1904
+ "CVE-2024-12450",
1898
1905
  "CVE-2024-6587",
1899
1906
  "CVE-2025-25297",
1900
1907
  "CVE-2025-56520",
1901
1908
  "CVE-2025-61884",
1902
- "CVE-2024-12450",
1903
1909
  "CVE-2026-22219"
1904
1910
  ],
1905
1911
  "framework_controls_partially_addressing": [
@@ -2202,9 +2208,9 @@
2202
2208
  "BUG-2026-NIGHTMARE-ECLIPSE-UNDEFEND",
2203
2209
  "CVE-2025-3466",
2204
2210
  "CVE-2025-40536",
2211
+ "CVE-2025-68668",
2205
2212
  "CVE-2026-21510",
2206
- "CVE-2026-21513",
2207
- "CVE-2025-68668"
2213
+ "CVE-2026-21513"
2208
2214
  ],
2209
2215
  "last_verified": "2026-05-18",
2210
2216
  "notes": "Added v0.13.17 to back the UnDefend Defender update-disruption entry. CWE-693 is the canonical parent for failures-of-protection-mechanism — Defender continues running but its update mechanism has been corrupted, so the AV protection-mechanism fails silently while the host still passes 'is Defender running?' health checks."
@@ -2373,7 +2379,9 @@
2373
2379
  ],
2374
2380
  "related_weaknesses": [],
2375
2381
  "evidence_cves": [
2382
+ "CVE-2025-0282",
2376
2383
  "CVE-2025-20352",
2384
+ "CVE-2025-22457",
2377
2385
  "CVE-2025-53521"
2378
2386
  ],
2379
2387
  "last_verified": "2026-05-18",
@@ -4433,5 +4441,31 @@
4433
4441
  "playbooks_referencing": [
4434
4442
  "identity-sso-compromise"
4435
4443
  ]
4444
+ },
4445
+ "CWE-305": {
4446
+ "id": "CWE-305",
4447
+ "name": "Authentication Bypass by Primary Weakness",
4448
+ "abstraction": "Base",
4449
+ "category": "Authentication",
4450
+ "description": "The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.",
4451
+ "top_25_rank_2024": null,
4452
+ "top_25_rank_2025": null,
4453
+ "view_memberships": [
4454
+ "CWE-1000"
4455
+ ],
4456
+ "related_attack_patterns_capec": [
4457
+ "CAPEC-115"
4458
+ ],
4459
+ "skills_referencing": [],
4460
+ "evidence_cves": [
4461
+ "CVE-2025-31161"
4462
+ ],
4463
+ "framework_controls_partially_addressing": [
4464
+ "NIST-800-53-IA-2",
4465
+ "ISO-27001-2022-A.5.17"
4466
+ ],
4467
+ "real_requirement": "Authentication paths must be evaluated against bypass via separate primary weaknesses (e.g. header-parsing flaws, race conditions in the auth handler); fuzz and audit the auth mechanism as an integrated whole, not the algorithm in isolation.",
4468
+ "lag_notes": "Authentication-bypass CVEs frequently stem from a primary weakness in request parsing or state handling rather than the auth algorithm itself; controls that audit only the credential-checking logic miss this class.",
4469
+ "last_verified": "2026-05-28"
4436
4470
  }
4437
4471
  }