CWE-941 9 個 CVE MITRE 定義 ↗

CWE-941:Incorrectly Specified Destination in a Communication Channel

概覽

CWE-941(Incorrectly Specified Destination in a Communication Channel)描述一種在漏洞資料庫與安全評估中使用的弱點類型;定義、背景與對應 CVE 見下方各節。

安全影響
安全影響:因產品與情境而異;請結合 CVE 紀錄、嚴重度評分與 MITRE 說明進行優先級判斷。

描述

The product creates a communication channel to initiate an outgoing request to an actor, but it does not correctly specify the intended destination for that actor.

適用平台

類型 名稱 普遍性 OS / CPE
language Not Language-Specific Undetermined
technology Mobile Undetermined

本庫相關 CVE

下列 CVE 在本庫中對應到該弱點,並保留以便追溯與檢索。

CVE 公開時間 摘要
CVE-2026-40118 2026-04-16 UDP Console provided by Arcserve contains an incorrectly specified destination in a communication channel vulnerability. When a user configures an activation server hostname of the affected product to…
CVE-2025-69515 2026-04-07 An issue in JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to force the infotainment system into accepting falsified GPS signals as legitimate, resulting in the device reporti…
CVE-2025-53899 2025-11-28 Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, the back-end of Kiteworks MFT is vulnerable to an incorrectly specified destination in a communication channel wh…
CVE-2025-0036 2025-06-09 In AMD Versal Adaptive SoC devices, the incorrect configuration of the SSS during runtime (post-boot) cryptographic operations could cause data to be incorrectly written to and read from invalid locat…
CVE-2024-29415 2024-05-27 The ip package through 2.0.1 for Node.js might allow SSRF because some IP addresses (such as 127.1, 01200034567, 012.1.2.3, 000:0:0000::01, and ::fFFf:127.0.0.1) are improperly categorized as globally…
CVE-2024-34947 2024-05-20 Quanxun Huiju Network Technology (Beijing) Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 was discovered to be vulnerable to an ICMP redirect attack.
CVE-2023-33198 2023-05-30 tgstation-server is a production scale tool for BYOND server management. The DreamMaker API (DMAPI) chat channel cache can possibly be poisoned by a tgstation-server (TGS) restart and reattach. This c…
CVE-2022-4847 2022-12-29 Incorrectly Specified Destination in a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.
CVE-2019-18242 2020-03-24 In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, frequent and multiple requests for short-term use may cause the web server to fa…

內容提交

名稱
CWE Content Team
組織
MITRE
日期
2014-02-13
版本
2.6

內容修訂

日期 名稱 版本 重要性 評論
2017-11-08 CWE Content Team 3.0 updated Modes_of_Introduction, References, Relationships
2020-02-24 CWE Content Team 4.0 updated Applicable_Platforms, Relationships
2021-03-15 CWE Content Team 4.4 updated Maintenance_Notes
2023-01-31 CWE Content Team 4.10 updated Description
2023-04-27 CWE Content Team 4.11 updated References, Relationships
2023-06-29 CWE Content Team 4.12 updated Mapping_Notes
2025-09-09 CWE Content Team 4.18 updated References
2025-12-11 CWE Content Team 4.19 updated Common_Consequences, Relationships, Weakness_Ordinalities
cvelogic Threat Intelligence