What is CVE-2026-6807?

CVE-2026-6807 is a medium-severity vulnerability in Nsa Grassmarlin, classified under Improper Restriction of XML External Entity Reference (XXE). CVSS score: 5.5/10. Published 2026-04-28.

How severe is CVE-2026-6807?

Medium severity. CVSS v3 base score is 5.5 out of 10.

Is CVE-2026-6807 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

XXE in Nsa Grassmarlin

CVE-2026-6807

A vulnerability in GRASSMARLIN v3.2.1 allows crafted session data to trigger improper handling of XML input, which may result in unintended exposure of sensitive information. The flaw stems from insufficient hardening of the XML parsing…

Vulnerability class: XXE (XML External Entity)

EPSS: 0.000 (0.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Nsa Grassmarlin — versions All versions

Weakness classification (CWE)

CWE-611 — Improper Restriction of XML External Entity Reference (XXE)

Public proof-of-concept exploits

SecTestAnnaQuinn/Grassmarlin-CVE-2026-6807-XXE-POC

References

Frequently asked questions

What is CVE-2026-6807?: CVE-2026-6807 is a medium-severity vulnerability in Nsa Grassmarlin, classified under Improper Restriction of XML External Entity Reference (XXE). CVSS score: 5.5/10. Published 2026-04-28.
How severe is CVE-2026-6807?: Medium severity. CVSS v3 base score is 5.5 out of 10.
Is CVE-2026-6807 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.