Cyber Resilience

CVE-2026-27519

HighPublic PoC

Published: 24 February 2026

Published
24 February 2026
Modified
25 February 2026
KEV Added
Patch
CVSS Score v4 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0019 8.2th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-27519 is a high-severity Use of Hard-coded Cryptographic Key (CWE-321) vulnerability in Binardat 10G08-0800Gsm Firmware. Its CVSS base score is 8.7 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 8.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SC-12 (Cryptographic Key Establishment and Management) and SC-13 (Cryptographic Protection).

Deeper analysis

CVE-2026-27519 is a cryptographic vulnerability in the Binardat 10G08-0800GSM network switch firmware, affecting version V300SP10260209 and prior. The flaw stems from the use of RC4 encryption with a hard-coded key embedded directly in client-side JavaScript code. This static, exposed key enables attackers to decrypt protected values, fully defeating the confidentiality protections intended by the implementation. Published on 2026-02-24, the issue carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) and maps to CWE-321 (Use of Hard-coded Cryptographic Key) and CWE-327 (Use of a Broken or Risky Cryptographic Algorithm).

Any unauthenticated attacker with network access to the switch's web management interface can exploit this vulnerability, as it requires low complexity, no privileges, and no user interaction. By inspecting the client-side JavaScript, the attacker obtains the static RC4 key and decrypts any data protected by it, such as configuration values or other sensitive information transmitted via the interface. This results in high confidentiality impact, potentially exposing network credentials, device settings, or other protected data without disrupting integrity or availability.

Mitigation guidance is available in advisories including the VulnCheck report at https://www.vulncheck.com/advisories/binardat-10g08-0800gsm-network-switch-hard-coded-rc4-encryption-key and the vendor product page at https://www.binardat.com/products/8-port-10-gigabit-sfp-managed-switch,-support-1g-sfp-and-10g-sfp-module,-160gbps-bandwidth,-l3-web-managed,-metal-fanless-fiber-binardat-network-switch. Security practitioners should consult these for patching instructions or workarounds specific to the affected firmware.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior use RC4 with a hard-coded key embedded in client-side JavaScript. Because the key is static and exposed, an attacker can decrypt protected values and defeat confidentiality protections.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1552 Unsecured Credentials Credential Access
Adversaries may search compromised systems to find and obtain insecurely stored credentials.
Why these techniques?

Vulnerability in unauthenticated web management interface with hard-coded RC4 key directly enables remote exploitation of a public-facing application (T1190) to decrypt and obtain credentials/configuration data (T1552).

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-27520Same product: Binardat 10G08-0800Gsm
CVE-2026-27516Same product: Binardat 10G08-0800Gsm
CVE-2026-23678Same product: Binardat 10G08-0800Gsm
CVE-2026-27515Same product: Binardat 10G08-0800Gsm
CVE-2026-27507Same product: Binardat 10G08-0800Gsm
CVE-2026-27521Same product: Binardat 10G08-0800Gsm
CVE-2024-43178Shared CWE-327
CVE-2025-63912Shared CWE-327
CVE-2024-27256Shared CWE-327
CVE-2026-33266Shared CWE-321

Affected Assets

binardat
10g08-0800gsm firmware
≤ V300SP10260209

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

SC-13 requires implementation of compliant cryptographic protections, directly preventing use of broken RC4 and exposure of hard-coded keys in client-side JavaScript.

prevent

SC-12 enforces secure cryptographic key establishment and management, mitigating the static hard-coded key embedded in the firmware's JavaScript.

prevent

SI-2 mandates identification, reporting, and correction of flaws, enabling timely remediation of this cryptographic vulnerability in network switch firmware.

References