Home/CWE/Multiple Binds to the Same Port
Weakness

Multiple Binds to the Same Port

CWE-605 · Variant · Draft

When multiple sockets are allowed to bind to the same port, other services on that port may be stolen or spoofed.

Extended description

On most systems, a combination of setting the SO_REUSEADDR socket option, and a call to bind() allows any process to bind to a port to which a previous process has bound with INADDR_ANY. This allows a user to bind to the specific address of a server bound to INADDR_ANY on an unprivileged port, and steal its UDP packets/TCP connection.

Weakness Relationships

Where this weakness sits in the CWE hierarchy. Walk up to broader classes or down to more specific variants.
Parent of this (broader)
ChildOfCWE-666 · Operation on Resource in Wrong Phase of Lifetime
ChildOfCWE-675 · Multiple Operations on Resource in Single-Operation Context

CVEs With This Weakness

4
CVEs tagged with this weakness.
CVECVE-2026-25086
CVECVE-2026-25086
CVECVE-2025-15320
CVECVE-2024-30218
External lookups - second-class, for what we don’t hold ourselves
MITRE CWE
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin