cvedb.io
CVE-2026-27515
CRITICAL · CVSS 9.1
EPSS exploitation probability: 0%
Published 2026-02-24T16:24:08.830 · Last modified 2026-06-17T10:27:17.360

Summary

Binardat 10G08-0800GSM network switch firmware versions prior to V300SP10260209 generate predictable numeric session identifiers in the web management interface. An attacker can guess valid session IDs and hijack authenticated sessions.

Affected products

binardat — 10g08-0800gsm_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when binardat ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.