CVE-2026-25086

Published: Mar 21, 2026 Last Modified: Mar 21, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,7

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: none

Description

AI Translation Available

Under certain conditions, an attacker could bind to the same port used
by WebCTRL. This could allow the attacker to craft and send malicious
packets and impersonate the WebCTRL service without requiring code
injection into the WebCTRL software.

605

Multiple Binds to the Same Port

Draft

Abstraction: Variant Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality Integrity

Potential Impacts:

Read Application Data

Applicable Platforms

All platforms may be affected

View CWE Details

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/…

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-0…

https://www.automatedlogic.com/en/company/security-commitme…

https://www.automatedlogic.com/en/company/security-commitment/

https://www.cisa.gov/news-events/ics-advisories/icsa-26-078…

https://www.cisa.gov/news-events/ics-advisories/icsa-26-078-08

CVE-2026-25086

Description

Multiple Binds to the Same Port

Common Consequences

Applicable Platforms

Iscriviti alla newsletter