CVEbaza.plCWE DictionaryCWE-605
Common Weakness Enumeration

CWE-605

Multiple Binds to the Same Port

Category: VariantCVE: 4
Description

When multiple sockets are allowed to bind to the same port, other services on that port may be stolen or spoofed.

Extended Description

On most systems, a combination of setting the SO_REUSEADDR socket option, and a call to bind() allows any process to bind to a port to which a previous process has bound with INADDR_ANY. This allows a user to bind to the specific address of a server bound to INADDR_ANY on an unprivileged port, and steal its UDP packets/TCP connection.

CVE vulnerabilities with CWE-605 (4)
7.7
CVSS
HIGH
CVE-2026-25086

Under certain conditions, an attacker could bind to the same port used by WebCTRL. This could allow the attacker to craft and send malicious packets and impersonate the WebCTRL service without requiring code injection into the WebCTRL software.

pub. 2026-03-21
6.5
CVSS
MEDIUM
CVE-2024-30218

The ABAP Application Server of SAP NetWeaver as well as ABAP Platform allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. This leads to a considerable impact on availability.

pub. 2024-04-09
3.3
CVSS
LOW
CVE-2025-15320

Tanium addressed a denial of service vulnerability in Tanium Client.

pub. 2026-02-06
Information
ID: CWE-605
Type: Variant
Vulnerabilities: 4
MITRE CWE ↗
← CWE Dictionary
CWE-605 — Multiple Binds to the Same Port | CWE Dictionary | CVEbaza.pl