CVE-2026-27519
Published: 24 February 2026
Summary
CVE-2026-27519 is a high-severity Use of Hard-coded Cryptographic Key (CWE-321) vulnerability in Binardat 10G08-0800Gsm Firmware. Its CVSS base score is 8.7 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 8.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SC-12 (Cryptographic Key Establishment and Management) and SC-13 (Cryptographic Protection).
Deeper analysis
CVE-2026-27519 is a cryptographic vulnerability in the Binardat 10G08-0800GSM network switch firmware, affecting version V300SP10260209 and prior. The flaw stems from the use of RC4 encryption with a hard-coded key embedded directly in client-side JavaScript code. This static, exposed key enables attackers to decrypt protected values, fully defeating the confidentiality protections intended by the implementation. Published on 2026-02-24, the issue carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) and maps to CWE-321 (Use of Hard-coded Cryptographic Key) and CWE-327 (Use of a Broken or Risky Cryptographic Algorithm).
Any unauthenticated attacker with network access to the switch's web management interface can exploit this vulnerability, as it requires low complexity, no privileges, and no user interaction. By inspecting the client-side JavaScript, the attacker obtains the static RC4 key and decrypts any data protected by it, such as configuration values or other sensitive information transmitted via the interface. This results in high confidentiality impact, potentially exposing network credentials, device settings, or other protected data without disrupting integrity or availability.
Mitigation guidance is available in advisories including the VulnCheck report at https://www.vulncheck.com/advisories/binardat-10g08-0800gsm-network-switch-hard-coded-rc4-encryption-key and the vendor product page at https://www.binardat.com/products/8-port-10-gigabit-sfp-managed-switch,-support-1g-sfp-and-10g-sfp-module,-160gbps-bandwidth,-l3-web-managed,-metal-fanless-fiber-binardat-network-switch. Security practitioners should consult these for patching instructions or workarounds specific to the affected firmware.
OWASP Top 10 for Web (2025)
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-8535
Vulnerability details
Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior use RC4 with a hard-coded key embedded in client-side JavaScript. Because the key is static and exposed, an attacker can decrypt protected values and defeat confidentiality protections.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Vulnerability in unauthenticated web management interface with hard-coded RC4 key directly enables remote exploitation of a public-facing application (T1190) to decrypt and obtain credentials/configuration data (T1552).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
SC-13 requires implementation of compliant cryptographic protections, directly preventing use of broken RC4 and exposure of hard-coded keys in client-side JavaScript.
SC-12 enforces secure cryptographic key establishment and management, mitigating the static hard-coded key embedded in the firmware's JavaScript.
SI-2 mandates identification, reporting, and correction of flaws, enabling timely remediation of this cryptographic vulnerability in network switch firmware.