Description
When multiple sockets are allowed to bind to the same port, other services on that port may be stolen or spoofed.
Extended Description
On most systems, a combination of setting the SO_REUSEADDR socket option, and a call to bind() allows any process to bind to a port to which a previous process has bound with INADDR_ANY. This allows a user to bind to the specific address of a server bound to INADDR_ANY on an unprivileged port, and steal its UDP packets/TCP connection.
CVE vulnerabilities with CWE-605 (4)
7.7
CVSS
HIGH
CVE-2026-25086
pub. 2026-03-21
6.5
CVSS
MEDIUM
CVE-2024-30218
pub. 2024-04-09
3.3
CVSS
LOW
CVE-2025-15320
pub. 2026-02-06