Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2026/02/24 3:7 p.m.5 views

CVE-2026-27519 Binardat 10G08-0800GSM Network Switch Hard-coded RC4 Encryption Key

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior use RC4 with a hard-coded key embedded in client-side JavaScript. Because the key is static and exposed, an attacker can decrypt protected values and defeat confidentiality protections...

8.7CVSS5.9AI score0.00186EPSS
Exploits0References2
CVE
CVE
added 2026/02/24 3:7 p.m.19 views

CVE-2026-27519

Binardat 10G08-0800GSM network switch firmware up to version V300SP10260209 uses RC4 with a hard-coded key embedded in client-side JavaScript. The static key enables an attacker to decrypt protected values, defeating confidentiality protections. Affected component: firmware (vulnerable RC4 implem...

8.7CVSS5.4AI score0.00186EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/02/24 3:7 p.m.22 views

CVE-2026-27519 Binardat 10G08-0800GSM Network Switch Hard-coded RC4 Encryption Key

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior use RC4 with a hard-coded key embedded in client-side JavaScript. Because the key is static and exposed, an attacker can decrypt protected values and defeat confidentiality protections...

8.7CVSS0.00186EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/24 3:4 p.m.4 views

CVE-2026-27507 Binardat 10G08-0800GSM Network Switch Hard-coded Credentials

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior contain hard-coded administrative credentials that cannot be changed by users. Knowledge of these credentials allows full administrative access to the device...

9.8CVSS5.9AI score0.00365EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/24 3:3 p.m.4 views

CVE-2026-23678 Binardat 10G08-0800GSM Network Switch Traceroute CLI Command Injection

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior contain a command injection vulnerability in the traceroute diagnostic function of the affected device web management interface. By injecting the %1a character into the hostname parameter, an authenticated attacker wi...

8.8CVSS6.2AI score0.01224EPSS
Exploits0References2
Rows per page
Query Builder