GCVE - cpe:2.3:a:softing:smartlink_sw-ht:1.43:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:softing:smartlink_sw-ht:1.43:*:*:*:*:*:*:*

part: a version: 1.43 update: *

Vendor	Softing (`4b32be6d-69ed-5932-83e7-5560b6afc48d`)
Product	Smartlink Sw Ht (`5178a4aa-285e-5806-9b75-4a3217e0f7db`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-13406`	vulnerable	2026-06-03 14:58:46.018353	Scanning for higher HART revision device leads into NULL pointer dereference in live list NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT (Webserver modules) allows HTTP DoS.This issue affects smartLink SW-HT: 1.43. Published: 2026-03-17T14:32:21.500Z Updated: 2026-03-27T08:09:49.360Z Open on db.gcve.eu Reference links https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-13406.html https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-13406.json	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-10685`	not_vulnerable	2026-06-03 14:58:34.559191	HTTP POST with specific higher content length leads into heap corruption Heap-based buffer overflow vulnerability in Softing Industrial Automation GmbH smartLink SW-PN and smartLink SW-HT (Webserver modules) allows overflow buffers.This issue affects: smartLink SW-PN: through 1.03 smartLink SW-HT: through 1.42 Published: 2026-03-16T13:14:49.030Z Updated: 2026-03-27T08:12:30.109Z Open on db.gcve.eu Reference links https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10685.html https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10685.json	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-10461`	not_vulnerable	2026-06-03 14:58:34.176087	Global file reads caused by improper URL checks in webserver Global file reads caused by improper URL checks in webserver in Softing Industrial Automation GmbH smartLinks on docker (filesystem modules) allows file access. This issue affects smartLink SW-HT: through 1.42 smartLink SW-PN: through 1.03. Published: 2026-03-16T13:27:21.381Z Updated: 2026-03-27T08:13:41.200Z Open on db.gcve.eu Reference links https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10461.html https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10461.json	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.