Vulnerabilities

Report: Ultimate Guide: CVE-2026-6807 - NSA GRASSMARLIN Improper Restriction of XML External Entity Reference

2026-04-28 0 views admin

CVE ID :CVE-2026-6807 Published : April 28, 2026, 7:37 p.m. | 1 hour, 2 minutes ago Description :A vulnerability in GRASSMARLIN v3.2.1 allows crafted session data to trigger improper handling of XML input, which may result in unintended exposure of sensitive information. The flaw stems from insufficient hardening of the XML parsing process. Severity: 5.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-6807

Severity

MEDIUM

Published

April 28, 2026

🏷️ Tags

reportultimateguidegrassmarlinimproperrestrictionexternalentityreferencecve

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Ultimate Guide: CVE-2026-6807 - NSA GRASSMARLIN Improper Restriction of XML External Entity Reference

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-42421 - OpenClaw < 2026.4.8 - WebSocket Session Persistence via Shared Gateway Token Rot

Report: CVE-2026-42420 - OpenClaw < 2026.4.8 - Improper Base64 Decoding Size Validation

Report: CVE-2026-41916 - OpenClaw < 2026.4.8 - Stale Authentication State via Config Reload

Report: CVE-2026-41915 - OpenClaw < 2026.4.8 - Git Environment Variable Injection via Unfiltered Exec Env

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting