You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-6807
About this tag
CVE-2026-6807 is a medium-severity information-disclosure vulnerability in NSA GRASSMARLIN, an industrial network mapping tool used by operational technology (OT) teams. The flaw stems from improper XML input handling (CWE-611), enabling XML External Entity (XXE) attacks that could expose sensitive data. CISA's ICS Advisory ICSA-26-118-01 details the issue and recommends mitigations such as sandboxing and input validation. WindowsForum.com discussions focus on practical steps for OT defenders to apply these mitigations, including restricting XML parser features and monitoring for suspicious XML payloads. The tag covers advisory analysis, risk assessment for OT environments, and deployment of security controls to reduce exposure.
NSA GRASSMARLIN Vulnerability Brief — CVE-2026-6807
Executive summary
CISA has published ICS Advisory ICSA-26-118-01 for NSA GRASSMARLIN, identifying CVE-2026-6807, a medium-severity information-disclosure vulnerability tied to improper handling of XML input. The vulnerability is classified as...