CVE-2026-27520
Insecure Password Storage in Binardat 10G08-0800GSM Switch Firmware
Publication date: 2026-02-24
Last updated on: 2026-02-25
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| binardat | 10g08-0800gsm_firmware | to V300SP10260209 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-312 | The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
[{'type': 'paragraph', 'content': "CVE-2026-27520 affects the Binardat 10G08-0800GSM network switch firmware versions prior to V300SP10260209. The vulnerability involves storing a user password in a client-side cookie as a Base64-encoded value accessible through the device's web interface."}, {'type': 'paragraph', 'content': 'Since Base64 encoding is reversible and does not provide any confidentiality, an attacker who can access this cookie can easily decode it to retrieve the plaintext password.'}, {'type': 'paragraph', 'content': 'This issue is classified under CWE-312 (Cleartext Storage of Sensitive Information) and allows remote attackers to obtain sensitive credentials without any privileges or user interaction.'}] [1]
How can this vulnerability impact me? :
An attacker who can access the Base64-encoded cookie can decode it to recover the plaintext user password.
This allows remote attackers to obtain sensitive credentials without needing any privileges or user interaction, posing a significant security risk.
With the recovered password, an attacker could potentially gain unauthorized access to the network switch, leading to further compromise of the network infrastructure.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
[{'type': 'paragraph', 'content': "This vulnerability can be detected by inspecting the cookies set by the Binardat 10G08-0800GSM network switch's web interface for the presence of Base64-encoded user passwords."}, {'type': 'paragraph', 'content': 'You can use network traffic capture tools such as Wireshark or tcpdump to capture HTTP traffic between your browser and the switch, then look for cookies containing Base64-encoded strings.'}, {'type': 'paragraph', 'content': "Alternatively, you can use browser developer tools to inspect cookies set by the switch's web interface."}, {'type': 'paragraph', 'content': 'For command-line detection, you might use commands like:'}, {'type': 'list_item', 'content': "tcpdump -i <interface> -A -s 0 'tcp port 80 or tcp port 443' | grep 'Cookie'"}, {'type': 'list_item', 'content': 'curl -I http://<switch-ip> # to inspect headers including cookies'}, {'type': 'list_item', 'content': "echo '<Base64-encoded-cookie-value>' | base64 --decode # to decode the Base64 string and check if it reveals a password"}] [1]
What immediate steps should I take to mitigate this vulnerability?
[{'type': 'paragraph', 'content': 'The immediate mitigation step is to upgrade the Binardat 10G08-0800GSM network switch firmware to version V300SP10260209 or later, where this vulnerability is fixed.'}, {'type': 'paragraph', 'content': "Until the firmware is updated, restrict access to the switch's web interface to trusted networks or users to reduce the risk of an attacker accessing the Base64-encoded password cookie."}, {'type': 'paragraph', 'content': 'Additionally, monitor network traffic for suspicious access attempts and consider changing user passwords after the firmware upgrade.'}] [1]