BaseIncomplete

CWE-1327Binding to an Unrestricted IP Address

Category: other

Description

The product assigns the address 0.0.0.0 for a database server, a cloud service/instance, or any computing resource that communicates remotely.

Common consequences· 1

  • Availability — DoS: Amplification

Potential mitigations· 2

  • [System Configuration]Assign IP addresses that are not 0.0.0.0.
  • [System Configuration]Unwanted connections to the configured server may be denied through a firewall or other packet filtering measures.

Related CAPEC attack patterns· 1

CAPEC-1

References

  1. https://cwe.mitre.org/data/definitions/1327.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternAccessing Functionality Not Properly Constrained by ACLscapec-1100%live

(incoming)5

TypeTargetConfidenceTier
VulnerabilityCVE-2025-3621cve-2025-36210%live
VulnerabilityCVE-2025-61934cve-2025-619340%live
VulnerabilityCVE-2026-24015cve-2026-240150%live
VulnerabilityCVE-2026-28395cve-2026-283950%live
VulnerabilityCVE-2026-42503cve-2026-425030%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Data Resource Access without Use of Connection Pooling
CWE
Improper Restriction of Communication Channel to Intended Endpoints
CWE
Incorrect Permission Assignment for Critical Resource
CWE
Insecure Default Variable Initialization
CVE
CVE-2026-50224
CWE
Initialization with Hard-Coded Network Resource Configuration Data
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.