CWE-1327: Binding to an Unrestricted IP Address

Base Incomplete Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

The product assigns the address 0.0.0.0 for a database server, a cloud service/instance, or any computing resource that communicates remotely.

常见后果

影响范围: Availability

技术影响: DoS: Amplification

潜在缓解措施

阶段: System Configuration

描述: Assign IP addresses that are not 0.0.0.0.

有效性: High

阶段: System Configuration

策略: Firewall

描述: Unwanted connections to the configured server may be denied through a firewall or other packet filtering measures.

有效性: High

观察示例

参考: CVE-2022-21947

Desktop manager for Kubernetes and container management binds a service to 0.0.0.0, allowing users on the network to make requests to a dashboard API.

引入模式

阶段	说明
System Configuration	-

适用平台

编程语言

Other (Undetermined)

操作系统

Not OS-Specific (Undetermined)

技术

Web Server (Undetermined) Client Server (Undetermined) Cloud Computing (Undetermined)

关键信息

CWE ID: CWE-1327

抽象级别: Base

结构: Simple

状态: Incomplete

CWE-1327: Binding to an Unrestricted IP Address

弱点描述

常见后果

潜在缓解措施

观察示例

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

相关攻击模式

CWE-1327: Binding to an Unrestricted IP Address

弱点描述

常见后果

潜在缓解措施

观察示例

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

ChildOf CWE-668

相关攻击模式