Binardat network switches are vulnerable to unauthenticated session hijacking due to the generation of predictable session identifiers in the web management console.

The web management interface uses a weak algorithm to generate session IDs, resulting in predictable numeric values. An unauthenticated attacker can perform a brute-force or prediction attack to identify a valid, active session ID belonging to a logged-in administrator, thereby gaining full access without credentials.

With a CVSS score of 9.1, this vulnerability allows for the complete takeover of network hardware management. An attacker who hijacks an admin session can change routing tables, disable security features, or create backdoors for persistent access. This poses a severe risk to the confidentiality and availability of all data passing through the switch.

Immediate Action: Update the firmware of the Binardat 10G08-0800GSM switch to version V300SP10260209 or later to implement secure session management.

Proactive Monitoring: Audit the web management logs for multiple rapid login attempts or session access from multiple IP addresses simultaneously.

Compensating Controls: Disable the web-based management interface if it is not required, or restrict access to a trusted management workstation via IP-based firewall rules.

Public Exploit Available: No

Session management is a cornerstone of web security. The predictable nature of these IDs makes the switch a high-value target. Administrators should apply the firmware update immediately and enforce short session timeouts to reduce the window of opportunity for an attacker to hijack an active session.