NIST 800-53 r5 · Controls catalogue · Family RA

RA-6Technical Surveillance Countermeasures Survey

Employ a technical surveillance countermeasures survey at {{ insert: param, ra-06_odp.01 }} {{ insert: param, ra-06_odp.02 }}.

Last updated: 09 May 2026 03:25 UTC

Implementations targeting this control (0)

CWEs ranked by how often they appear in real CVEs. The rationale describes how this control reduces exploitability of each weakness class.

CWE	Name	CVEs	Why this control addresses it
`CWE-200`	Exposure of Sensitive Information to an Unauthorized Actor	10,204	TSCM surveys directly detect and remove covert collection devices that would otherwise expose sensitive information to unauthorized actors.
`CWE-668`	Exposure of Resource to Wrong Sphere	779	By locating and eliminating surveillance devices, TSCM prevents resources from being exposed to an adversary-controlled sphere.
`CWE-506`	Embedded Malicious Code	80	TSCM directly targets and removes embedded malicious hardware or code planted for ongoing technical surveillance.
`CWE-912`	Hidden Functionality	79	TSCM surveys discover and eliminate hidden surveillance functionality that would otherwise remain undetected in the environment.
`CWE-300`	Channel Accessible by Non-Endpoint	53	Periodic TSCM surveys identify unauthorized access points or taps that make communication channels reachable by non-endpoint adversaries.
`CWE-420`	Unprotected Alternate Channel	37	TSCM surveys detect and neutralize unprotected alternate channels introduced by surveillance equipment or modifications.
`CWE-419`	Unprotected Primary Channel	12	TSCM employment uncovers unprotected primary channels that have been physically or technically compromised for surveillance.

CVE	Risk	CVSS	EPSS	Match
No CVEs annotated to this control yet — the per-CVE backfill is in progress.