regscale-cli 6.27.2.0__py3-none-any.whl → 6.27.3.0__py3-none-any.whl

regscale/models/integration_models/cisa_kev_data.json

@@ -1,9 +1,54 @@
 {
     "title": "CISA Catalog of Known Exploited Vulnerabilities",
-    "catalogVersion": "2025.10.20",
-    "dateReleased": "2025-10-20T13:56:54.0593Z",
-    "count": 1447,
+    "catalogVersion": "2025.10.24",
+    "dateReleased": "2025-10-24T16:55:58.321Z",
+    "count": 1449,
     "vulnerabilities": [
+        {
+            "cveID": "CVE-2025-54236",
+            "vendorProject": "Adobe",
+            "product": "Commerce and\u202fMagento",
+            "vulnerabilityName": "Adobe Commerce and\u202fMagento Improper Input Validation Vulnerability",
+            "dateAdded": "2025-10-24",
+            "shortDescription": "Adobe Commerce and Magento Open Source contain an improper input validation vulnerability that could allow an attacker to take over customer accounts through the Commerce REST API.",
+            "requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
+            "dueDate": "2025-11-14",
+            "knownRansomwareCampaignUse": "Unknown",
+            "notes": "https:\/\/experienceleague.adobe.com\/en\/docs\/experience-cloud-kcs\/kbarticles\/ka-27397 ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-54236",
+            "cwes": [
+                "CWE-20"
+            ]
+        },
+        {
+            "cveID": "CVE-2025-59287",
+            "vendorProject": "Microsoft",
+            "product": "Windows",
+            "vulnerabilityName": "Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability",
+            "dateAdded": "2025-10-24",
+            "shortDescription": "Microsoft Windows Server Update Service (WSUS) contains a deserialization of untrusted data vulnerability that allows for remote code execution.",
+            "requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
+            "dueDate": "2025-11-14",
+            "knownRansomwareCampaignUse": "Unknown",
+            "notes": "https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2025-59287 ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-59287",
+            "cwes": [
+                "CWE-502"
+            ]
+        },
+        {
+            "cveID": "CVE-2025-61932",
+            "vendorProject": "Motex",
+            "product": "LANSCOPE Endpoint Manager",
+            "vulnerabilityName": "Motex LANSCOPE Endpoint Manager Improper Verification of Source of a Communication Channel Vulnerability",
+            "dateAdded": "2025-10-22",
+            "shortDescription": "Motex LANSCOPE Endpoint Manager contains an improper verification of source of a communication channel vulnerability allowing an attacker to execute arbitrary code by sending specially crafted packets.",
+            "requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
+            "dueDate": "2025-11-12",
+            "knownRansomwareCampaignUse": "Unknown",
+            "notes": "https:\/\/www.motex.co.jp\/news\/notice\/2025\/release251020\/ ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-61932",
+            "cwes": [
+                "CWE-940"
+            ]
+        },
         {
             "cveID": "CVE-2022-48503",
             "vendorProject": "Apple",
@@ -71,7 +116,7 @@
             "shortDescription": "Oracle E-Business Suite contains a server-side request forgery (SSRF) vulnerability in the Runtime component of Oracle Configurator. This vulnerability is remotely exploitable without authentication.",
             "requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
             "dueDate": "2025-11-10",
-            "knownRansomwareCampaignUse": "Unknown",
+            "knownRansomwareCampaignUse": "Known",
             "notes": "https:\/\/www.oracle.com\/security-alerts\/alert-cve-2025-61884.html ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-61884",
             "cwes": [
                 "CWE-918"
@@ -135,21 +180,6 @@
                 "CWE-284"
             ]
         },
-        {
-            "cveID": "CVE-2025-6264",
-            "vendorProject": "Rapid7",
-            "product": "Velociraptor",
-            "vulnerabilityName": "Rapid7 Velociraptor Incorrect Default Permissions Vulnerability",
-            "dateAdded": "2025-10-14",
-            "shortDescription": "Rapid7 Velociraptor contains an incorrect default permissions vulnerability that can lead to arbitrary command execution and endpoint takeover. To successfully exploit this vulnerability the user must already have access to collect artifacts from the endpoint.",
-            "requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
-            "dueDate": "2025-11-04",
-            "knownRansomwareCampaignUse": "Known",
-            "notes": "https:\/\/docs.velociraptor.app\/announcements\/advisories\/cve-2025-6264\/ ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-6264",
-            "cwes": [
-                "CWE-276"
-            ]
-        },
         {
             "cveID": "CVE-2016-7836",
             "vendorProject": "SKYSEA",